LinuxQuestions.org
Visit the LQ Articles and Editorials section
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Server
User Name
Password
Linux - Server This forum is for the discussion of Linux Software used in a server related context.

Notices

Reply
 
Search this Thread
Old 06-05-2011, 01:05 PM   #1
Ypebe
LQ Newbie
 
Registered: May 2011
Posts: 12

Rep: Reputation: Disabled
Virtual LDAP server and virtual mediawiki host; can't login with users from LDAP


In the past I found some great help on this forum, so here goes. Bare with me because it's a long story. I'll try to be as complete as possible.

I've installed and configured OpenLdap on a virtual machine with ip 192.168.39.134. I've added 2 users via LAM. In the ou WikiUsers and the domain is wiki.local.

I've then created another host with ip 192.168.39.133 with mediawiki installed on it. Then I added the extension LDAPAuthenthication.
In the LdapAuthentication file I added this code (only the last paragraph is mine, I added the others to show it's location in the script):

Quote:
$path = array( $IP, "$IP/includes", "$IP/languages" );
set_include_path( implode( PATH_SEPARATOR, $path ) . PATH_SEPARATOR . get_include_path() );

require_once( "$IP/includes/DefaultSettings.php" );

require_once( "$IP/extensions/LdapAuthentication/LdapAuthentication.php" );
$wgAuth = new LdapAuthenticationPlugin();
$wgLDAPDomainNames = array( "wiki.local" );
$wgLDAPServerNames = array( "wiki.local"=>"192.168.39.134" );
$wgLDAPSearchStrings = array( "wiki.local"=>"uid=USER-NAME,ou=WikiUsers,dc=wiki,dc=local" );
$wgLDAPSearchAttributes = array( "wiki.local"=>"uid" );
$wgLDAPUseSSL = array( "wiki.local"=>"ssl" );
$wgMinimalPasswordLength = 1;
I know I'm close because I can't register any new users or accounts on the mediawiki site. Although I could before I added the LDAP service.

Any suggestions?
This is indeed all just to test and get to know how LDAP works. That's why it's all virtual in VMWare.
I did not really configure anything on the LDAP, i just installed it and chose a domain (wiki.local).

Any tips or suggestions are highly appreciated.
 
Old 06-05-2011, 01:19 PM   #2
acid_kewpie
Moderator
 
Registered: Jun 2001
Location: UK
Distribution: Gentoo, RHEL, Fedora, Centos
Posts: 43,398

Rep: Reputation: 1965Reputation: 1965Reputation: 1965Reputation: 1965Reputation: 1965Reputation: 1965Reputation: 1965Reputation: 1965Reputation: 1965Reputation: 1965Reputation: 1965
listing things as "virtual" is very confusing when it's totally irrelevant. It's just an ldap server. being a VM is not a point of concern.

so you sound like you're tryin to make far too many jumps in one go, or at least not telling us about the ones in between. Can you do an ldap search from the wiki server? If you can't do that I could care less about a mediawiki plugin... What do the openldap and mediawiki logs say about the ldap connections etc?
 
Old 06-05-2011, 01:32 PM   #3
Ypebe
LQ Newbie
 
Registered: May 2011
Posts: 12

Original Poster
Rep: Reputation: Disabled
It might be irrelevant, but I tried to be as complete as my noob mind is be able too.

The ldapsearch from the wiki server would indeed be a great test to see if my initial setup is correct. I've googled it, but; how do I do that?

Sorry, I'm really new at this. Thus the reason why I don't have a list of log files to explain more. (would not even know how to extract such a list to be honest.)
 
Old 06-05-2011, 01:36 PM   #4
acid_kewpie
Moderator
 
Registered: Jun 2001
Location: UK
Distribution: Gentoo, RHEL, Fedora, Centos
Posts: 43,398

Rep: Reputation: 1965Reputation: 1965Reputation: 1965Reputation: 1965Reputation: 1965Reputation: 1965Reputation: 1965Reputation: 1965Reputation: 1965Reputation: 1965Reputation: 1965
well you should already have it installed, it'll be in a package called "openldap-tools" or "openldap-client" etc.
 
Old 06-05-2011, 01:53 PM   #5
Ypebe
LQ Newbie
 
Registered: May 2011
Posts: 12

Original Poster
Rep: Reputation: Disabled
Indeed.

Ldapsearch (ldapsearch -x -b "dc=wiki,dc=local") from the wiki server gives:

Quote:
ldap_sasl_bind(SIMPLE): Can't contact LDAP server (-1)
This will be a long night I'll have to figure out how to link those two hosts (the wiki and the ldap).
 
Old 06-07-2011, 08:01 PM   #6
Ypebe
LQ Newbie
 
Registered: May 2011
Posts: 12

Original Poster
Rep: Reputation: Disabled
Succes. I got the basic setup working.
I can now login on the Wiki-client (Debian) with a uid from the LDAP-server.

Still, on the wikimedia page, I can not login with those accounts.

Any advice now I did my best to get the basic setup going?

Thx
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
Is there anyway for one Virtual Server to access the main host, or another Virtual Se abefroman Linux - Security 5 01-08-2010 08:06 PM
LXer: Postfix Virtual Hosting With LDAP Backend And With Dovecot As IMAP/POP3 Server LXer Syndicated Linux News 0 12-09-2009 03:31 PM
LXer: Postfix Virtual Hosting With LDAP Backend & Dovecot As IMAP/POP3 Server On Ubun LXer Syndicated Linux News 0 08-03-2008 01:41 PM
Qmail and MediaWiki on a virtual server Gethyn Linux - Software 2 12-19-2006 06:43 PM
virtual users and virtual host need to stay at /home nephish Linux - Networking 3 01-14-2006 01:36 PM


All times are GMT -5. The time now is 05:21 AM.

Main Menu
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration