When running setup for openldap , bind is successful with the provided user and pass but login fails.
[ INFO ] Connection succeeded
Enter search user DN (for example uid=username,dc=example,dc=com or leave empty for anonymous): cn=admin,dc=exalt,dc=ps
Enter search user password:
[ INFO ] Attempting to bind using 'cn=admin,dc=exalt,dc=ps'
Please enter base DN (dc=exalt,dc=ps) [dc=exalt,dc=ps]: ou=users,dc=exalt,dc=ps
Are you going to use Single Sign-On for Virtual Machines (Yes, No) [Yes]:
NOTE:
Profile name has to match domain name, otherwise Single Sign-On for Virtual Machines will not work.
Please specify profile name that will be visible to users [ldap23.exalt.ps]:
[ INFO ] Stage: Setup validation
NOTE:
It is highly recommended to test drive the configuration before applying it into engine.
Login sequence is executed automatically, but it is recommended to also execute Search sequence manually after successful Login sequence.
Please provide credentials to test login flow:
Enter user name: uid=user,ou=users,dc=exalt,dc=ps
You are supposed to enter only the username and not the LDAP DN. So according to above you should enter only 'user'
Enter user password:
[ INFO ] Executing login sequence...
Login output:
2018-09-19 15:29:22,982+03 INFO ========================================================================
2018-09-19 15:29:22,999+03 INFO ============================ Initialization ============================
2018-09-19 15:29:23,000+03 INFO ========================================================================
2018-09-19 15:29:23,025+03 INFO Loading extension 'ldap23.exalt.ps-authn'
2018-09-19 15:29:23,086+03 INFO Extension 'ldap23.exalt.ps-authn' loaded
2018-09-19 15:29:23,089+03 INFO Loading extension 'ldap23.exalt.ps'
2018-09-19 15:29:23,098+03 INFO Extension 'ldap23.exalt.ps' loaded
2018-09-19 15:29:23,099+03 INFO Initializing extension 'ldap23.exalt.ps-authn'
2018-09-19 15:29:23,101+03 INFO [ovirt-engine-extension-aaa-ldap.authn::ldap23.exalt.ps-authn] Creating LDAP pool 'authz'
2018-09-19 15:29:23,796+03 INFO [ovirt-engine-extension-aaa-ldap.authn::ldap23.exalt.ps-authn] LDAP pool 'authz' information: vendor='null' version='null'
2018-09-19 15:29:23,797+03 INFO [ovirt-engine-extension-aaa-ldap.authn::ldap23.exalt.ps-authn] Creating LDAP pool 'authn'
2018-09-19 15:29:24,196+03 INFO [ovirt-engine-extension-aaa-ldap.authn::ldap23.exalt.ps-authn] LDAP pool 'authn' information: vendor='null' version='null'
2018-09-19 15:29:24,197+03 INFO Extension 'ldap23.exalt.ps-authn' initialized
2018-09-19 15:29:24,197+03 INFO Initializing extension 'ldap23.exalt.ps'
2018-09-19 15:29:24,198+03 INFO [ovirt-engine-extension-aaa-ldap.authz::ldap23.exalt.ps]Creating LDAP pool 'authz'
2018-09-19 15:29:24,614+03 INFO [ovirt-engine-extension-aaa-ldap.authz::ldap23.exalt.ps]LDAP pool 'authz' information: vendor='null' version='null'
2018-09-19 15:29:24,615+03 INFO [ovirt-engine-extension-aaa-ldap.authz::ldap23.exalt.ps] Available Namespaces: [ou=users,dc=exalt,dc=ps]
2018-09-19 15:29:24,615+03 INFO Extension 'ldap23.exalt.ps' initialized
2018-09-19 15:29:24,615+03 INFO Start of enabled extensions list
2018-09-19 15:29:24,616+03 INFO Instance name: 'ldap23.exalt.ps-authn', Extension name: ' ovirt-engine-extension-aaa-ldap.authn', Version: '1.3.7', Notes: 'Display name: ovirt-engine-extension-aaa-ldap-1.3.7-1.el7.centos', License: 'ASL 2.0', Home: 'http://www.ovirt.org', Author 'The oVirt Project', Build interface Version: '0', File: '/tmp/tmphILEhJ/extensions.d/ldap23.exalt.ps-authn.properties', Initialized: 'true'
2018-09-19 15:29:24,616+03 INFO Instance name: 'ldap23.exalt.ps', Extension name: 'ovirt-engine-extension-aaa-ldap.authz', Version: '1.3.7', Notes: 'Display name: ovirt-engine-extension-aaa-ldap-1.3.7-1.el7.centos', License: 'ASL 2.0', Home: 'http://www.ovirt.org', Author 'The oVirt Project', Build interface Version: '0', File: '/tmp/tmphILEhJ/extensions.d/ldap23.exalt.ps.properties', Initialized: 'true'
2018-09-19 15:29:24,616+03 INFO End of enabled extensions list
2018-09-19 15:29:24,616+03 INFO ========================================================================
2018-09-19 15:29:24,616+03 INFO ============================== Execution ===============================
2018-09-19 15:29:24,616+03 INFO ========================================================================
2018-09-19 15:29:24,617+03 INFO Iteration: 0
2018-09-19 15:29:24,617+03 INFO Profile='ldap23.exalt.ps' authn='ldap23.exalt.ps-authn' authz='ldap23.exalt.ps' mapping='null'
2018-09-19 15:29:24,618+03 INFO API: -->Authn.InvokeCommands.AUTHENTICATE_CREDENTIALS profile='ldap23.exalt.ps' user='uid=user,ou=users,dc=exalt,dc=ps'
2018-09-19 15:29:24,638+03 INFO API: <--Authn.InvokeCommands.AUTHENTICATE_CREDENTIALS profile='ldap23.exalt.ps' result=CREDENTIALS_INVALID
2018-09-19 15:29:24,642+03 SEVERE Authn.Result code is: CREDENTIALS_INVALID
[ ERROR ] Login sequence failed
Please investigate details of the failure (search for lines containing SEVERE log level).
Select test sequence to execute (Done, Abort, Login, Search) [Abort]:
_______________________________________________
Users mailing list -- users@ovirt.org
To unsubscribe send an email to users-leave@ovirt.org
Privacy Statement: https://www.ovirt.org/site/privacy-policy/
oVirt Code of Conduct: https://www.ovirt.org/community/about/community-guidelines/
List Archives: https://lists.ovirt.org/archives/list/users@ovirt.org/message/YKT6KVEQUHAUI2AW5XSHBWR3JNMCO5LB/