Re: [ovirt-users] LDAP
----- Original Message -----
From: "Koen Vanoppen" <vanoppen.koen(a)gmail.com>
To: users(a)ovirt.org
Sent: Thursday, November 20, 2014 10:51:06 AM
Subject: [ovirt-users] LDAP
Hello everybody,
We updated our ovirt to 3.5, but now we see some errors concerning LDAP. I
already searched oonline for a guide for the AAA config, but can't seem to
find something...
Does anybody already has a clear how-to for the AAA config?
This is the error we get sometimes in our engine.log (we are still able to
login with ldap btw):
2014-11-20 06:42:06,539 ERROR
[org.ovirt.engine.extensions.aaa.builtin.kerberosldap.DirectorySearcher]
(ajp--127.0.0.1-8702-32) Failed ldap search server
ldap://***.brussels.airport:*** using user ****(a)BRUSSELS.AIRPORT due to :
[LDAP: error code 34 - 0000208F: LdapErr: DSID-0C09074B, comment: Error
processing name, data 0, v23f0]; nested exception is
javax.naming.InvalidNameException: : [LDAP: error code 34 - 0000208F:
LdapErr: DSID-0C09074B, comment: Error processing name, data 0, v23f0];
remaining name ''. We should try the next server
CCing Yair he might have a clue.
Would you like to test the next generation of LDAP provider? It should be much simpler
than current provider, it uses only LDAP protocol, and enable you to customize almost
everything.
It is available in ovirt-engine-3.5-snapshots repository, package name is
ovirt-engine-extension-aaa-ldap, documentation is available within package and here[1], I
will be glad to help if you decide to check it out.
Regards,
Alon Bar-Lev.
[1]
http://gerrit.ovirt.org/gitweb?p=ovirt-engine-extension-aaa-ldap.git;a=bl...