LDAP not working and no error logs

Julian · April 18, 2019, 11:14am

Dears,

I’m trying to configure LDAP authentication for my XWiki 10.11.4 system but I can’t get it working.
System is running on Windows 10 x64 and Apache Tomcat 9.0.17
I installed LDAP Application 9.3.6 via extension manager

I tried to configure it but I wasn’t successful. For me it’s also a problem that I can’t find any log files why it’s not working even I enabled LDAP debug log in WEB-INF/classes/logback.xml:

Of course I restarted XWiki (Tomcat).

xwiki.authentication.authclass=org.xwiki.contrib.ldap.XWikiLDAPAuthServiceImpl
xwiki.authentication.ldap=1
xwiki.authentication.ldap.server=
xwiki.authentication.ldap.port=389
xwiki.authentication.ldap.bind_DN=doamin.local\cn={0}
xwiki.authentication.ldap.bind_pass={1}
xwiki.authentication.ldap.base_DN=DC=domain,DC=local
xwiki.authentication.ldap.fields_mapping=sAMAccountName,last_name=sn,first_name=givenName,fullname=displayName,email=mail,ldap_dn=dn
xwiki.authentication.ldap.update_user=1

Can you help me please?

tmortagne · April 18, 2019, 12:32pm

This is your problem. Some old xwiki.cfg file you kept ?

You can find the right one at the beginning of https://extensions.xwiki.org/xwiki/bin/view/Extension/LDAP/Authenticator/#HGenericLDAPconfiguration.

Julian · April 18, 2019, 12:59pm

Thank you for the answer but I made a mistake. I just copied the wrong row. I already had:

#-# LDAP authentication service
xwiki.authentication.authclass=org.xwiki.contrib.ldap.XWikiLDAPAuthServiceImpl

tmortagne · April 18, 2019, 1:16pm

I can’t find any log files

It would help a lot. In standard Tomcat the file is usually named catalina.out so you might want to try to search this file name in general.

Julian · April 18, 2019, 1:23pm

You’re right. Without log files it’s very hard.
In Tomcat folder I only find catalina.2019-04-18.log and if I open it I find nothing regarding ldap.

tmortagne · April 18, 2019, 1:27pm

But do you find XWiki stuff ?

Julian · April 18, 2019, 1:29pm

No in logfile is nothing about XWiki
XWiki is in C:\Program Files (x86)\Apache Software Foundation\Tomcat 9.0\webapps\xwiki

tmortagne · April 18, 2019, 1:29pm

OK so it’s definitely not the right file then. XWiki always log a few information at startup at the very least.

vmassol · April 18, 2019, 2:10pm

Are you running with the Xwiki docker image? If so you can use « docker logs ».

bstewart · April 18, 2019, 3:21pm

This configuration line looks incorrect:

xwiki.authentication.ldap.bind_DN=doamin.local\cn={0}

I believe you need to double the \\; e.g.:

xwiki.authentication.ldap.bind_DN=doamin.local\\cn={0}

This is because \ is a string ‘escape’ character.

wolfgangT · April 23, 2019, 12:38pm

Hi Julian,

it might help to have a look to this thread: Difficulty getting sAMAccountName as login, where I wrote what I configured a our system with a Windows LDAP-server.

Wolfgang

Julian · April 24, 2019, 9:42am

Do you where the logfiles could be?

Julian · April 24, 2019, 9:43am

Thanks but it could not solve my Problem

Do you have any log files on your System for LDAP and where they are?