I am having an issue getting users to authenticate using the Active
Directory backend. I've installed the
ovirt-engine-extension-aaa-ldap-setup package and ran
ovirt-engine-extension-aaa-ldap-setup to configure everything however
users are unable to authenticate. Testing using my own account results
in a "credentials incorrect" error as shown below.
2018-06-12 14:16:55,700-04 INFO End of enabled extensions list
2018-06-12 14:16:55,700-04 INFO
========================================================================
2018-06-12 14:16:55,701-04 INFO
============================== Execution ===============================
2018-06-12 14:16:55,701-04 INFO
========================================================================
2018-06-12 14:16:55,702-04 INFO Iteration: 0
2018-06-12 14:16:55,704-04 INFO Profile='dartcontainer.com'
authn='dartcontainer.com-authn' authz='dartcontainer.com-authz'
mapping='null'
2018-06-12 14:16:55,705-04 INFO API:
-->Authn.InvokeCommands.AUTHENTICATE_CREDENTIALS
profile='dartcontainer.com' user='d861703'
2018-06-12 14:16:55,869-04 INFO API:
<--Authn.InvokeCommands.AUTHENTICATE_CREDENTIALS
profile='dartcontainer.com' result=CREDENTIALS_INCORRECT
2018-06-12 14:16:55,879-04 SEVERE Authn.Result code is:
CREDENTIALS_INCORRECT
Is there a way to enable more verbose logging or is there an alternative
to using LDAP such as keycloak integration?