[rabbitmq-discuss] RabbitMQ 3.3.0 Can not login with Open Ldap

dwang7630 at gmail.com dwang7630 at gmail.com
Fri May 23 11:13:47 BST 2014


*Dear All*
*I'm try login to RabbitMQ, LDAP bind have return success. But I can not 
login, and  this is the log file*


>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
> *=INFO REPORT==== 23-May-2014::16:49:53 ===LDAP CHECK: login for David 
> Wang=INFO REPORT==== 23-May-2014::16:49:53 ===        LDAP filling template 
> "cn=${username},ou=Users,ou=Accounts,dc=scholar,dc=com" with            
> [{username,<<"David Wang">>}]=INFO REPORT==== 23-May-2014::16:49:53 ===    
>     LDAP template result: "cn=David 
> Wang,ou=Users,ou=Accounts,dc=scholar,dc=com"=INFO REPORT==== 
> 23-May-2014::16:49:53 ===    LDAP connecting to servers: 
> ["10.0.10.10"]=INFO REPORT==== 23-May-2014::16:49:53 ===    LDAP network 
> traffic: bind request = {'BindRequest',3,                                  
>         "cn=David Wang,ou=Users,ou=Accounts,dc=scholar,dc=com",            
>                               {simple,<<"321`Rewq">>}}=INFO REPORT==== 
> 23-May-2014::16:49:53 ===    LDAP network traffic: bind reply = {ok,        
>                                 {'LDAPMessage',1,                          
>                {bindResponse,                                          
> {'BindResponse',success,[],[],                                          
>  asn1_NOVALUE,asn1_NOVALUE}},                                        
>  asn1_NOVALUE}}=INFO REPORT==== 23-May-2014::16:49:53 ===    LDAP bind 
> succeeded: cn=David Wang,ou=Users,ou=Accounts,dc=scholar,dc=com=INFO 
> REPORT==== 23-May-2014::16:49:53 ===        LDAP filling template 
> "cn=${username},ou=Users,ou=Accounts,dc=scholar,dc=com" with            
> [{username,<<"David Wang">>}]=INFO REPORT==== 23-May-2014::16:49:53 ===    
>     LDAP template result: "cn=David 
> Wang,ou=Users,ou=Accounts,dc=scholar,dc=com"=INFO REPORT==== 
> 23-May-2014::16:49:53 ===    LDAP CHECK: does David Wang have tag 
> administrator?=INFO REPORT==== 23-May-2014::16:49:53 ===    LDAP evaluating 
> query: {constant,true}=INFO REPORT==== 23-May-2014::16:49:53 ===    LDAP 
> evaluated constant: true=INFO REPORT==== 23-May-2014::16:49:53 ===    LDAP 
> DECISION: does David Wang have tag administrator? true=INFO REPORT==== 
> 23-May-2014::16:49:53 ===    LDAP CHECK: does David Wang have tag 
> management?=INFO REPORT==== 23-May-2014::16:49:53 ===    LDAP evaluating 
> query: {constant,true}=INFO REPORT==== 23-May-2014::16:49:53 ===    LDAP 
> evaluated constant: true=INFO REPORT==== 23-May-2014::16:49:53 ===    LDAP 
> DECISION: does David Wang have tag management? true=INFO REPORT==== 
> 23-May-2014::16:49:53 ===LDAP DECISION: login for David Wang: ok=ERROR 
> REPORT==== 23-May-2014::16:49:53 ===webmachine error: 
> path="/api/whoami""Unauthorized"*


*I'm using command ldapsearch to find uid=david.wang*


> *dn: cn=David Wang,ou=Users,ou=Accounts,dc=scholar,dc=com*
> *uidNumber: 1311*
> *gidNumber: 63000*
> *homeDirectory: /home/david.wang*
> *pcnSHAPassword: {sha}***********************
> *pcnMicrosoftNTPassword: **********************
> *pcnMicrosoftLanmanPassword: ********************
> *pcnWebconfigFlag: TRUE*
> *givenName: David*
> *sn: Wang*
> *.*
> *.*
> *.*
> *pcnProxyFlag: TRUE*
> *pcnOpenVPNFlag: TRUE*
> *pcnPPTPFlag: TRUE*
> *pcnWebFlag: TRUE*
> *loginShell: /bin/bash*
> *pcnFTPFlag: FALSE*
> *pcnMailFlag: FALSE*
> *pcnGoogleAppsFlag: FALSE*
> *uid: david.wang**cn: David Wang*


*And this is the contents of LDAP config*

  {rabbitmq_auth_backend_ldap,
   [ {servers,               ["10.0.10.10"]},
     {user_dn_pattern,       
"cn=${username},ou=Users,ou=Accounts,dc=scholar,dc=com"},
     {dn_lookup_base,        "dc=scholar,dc=com"},
     {other_bind,           
{"cn=manager,cn=internal,dc=scholar,dc=com","eRwFTGDFTooNI5ca"}},
     {use_ssl,               false},
     {port,                  389},
     {log,                   network},
     {vhost_access_query,    {in_group,
                              "ou=Users,ou=Accounts,dc=scholar,dc=com"}},
     {resource_access_query,
      {for, [{permission, configure, {in_group, 
"ou=Users,ou=Accounts,dc=scholar,dc=com"}},
             {permission, write,
              {for, [{resource, queue,    {in_group, 
"ou=Users,ou=Accounts,dc=scholar,dc=com"}},
                     {resource, exchange, {constant, true}}]}},
             {permission, read,
              {for, [{resource, exchange, {in_group, 
"ou=Users,ou=Accounts,dc=scholar,dc=com"}},
                     {resource, queue,    {constant, true}}]}}
            ]
      }},
     {tag_queries,           [{administrator, {constant, true}},
                              {management,    {constant, true}}]}
   ]
  }

*Anybody Help me please ...!!!*
*Thanks so much*
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.rabbitmq.com/pipermail/rabbitmq-discuss/attachments/20140523/a03fe71a/attachment.html>


More information about the rabbitmq-discuss mailing list