Re: OM integration with zimbra ldap
hola, if you can configure a searchscope where users of all domains are in subtree, it could work, but i think it would be very slow, if all users in subtree are requested for search (dependent on how many users we are talking about). -> within Active Directory there usually exists a group like "authenticated user" - this group could contain users of all domains... -> u could try using a group like that within Zimbra (i am not confident with it... ;-)) -> but all users would be assigned to the default org at the moment... see ya Smoeker On 30 Apr., 11:59, nehal dattani wrote: > On Fri, Apr 30, 2010 at 3:22 PM, smoeker wrote: > > hola, > > > at the moment there is no relation between LDAP groups and OM > > Organizations... > > ok. What my concern is "How Should i configure ldap to manage > authentication for more than one domain?" > > say there are two users na...@company1.com and name2.company2.com. How > this can be managed within om_ldap.cfg? > > > > > -> after successful firsat ldap login, the user is created locally > > within local database and he gets assigned to the default > > organization... > > -> a possible extension would be to define a field from ldap result > > that has to cope a OM organizations name - in that case, the user > > could be assigned to that org > > -> check issue list and discussions - there already were some threads > > concering that topic > > > see ya > > Regards, > Nehal Dattani > > -- > You received this message because you are subscribed to the Google Groups > "OpenMeetings User" group. > To post to this group, send email to openmeetings-u...@googlegroups.com. > To unsubscribe from this group, send email to > openmeetings-user+unsubscr...@googlegroups.com. > For more options, visit this group > athttp://groups.google.com/group/openmeetings-user?hl=en. -- You received this message because you are subscribed to the Google Groups "OpenMeetings User" group. To post to this group, send email to openmeetings-u...@googlegroups.com. To unsubscribe from this group, send email to openmeetings-user+unsubscr...@googlegroups.com. For more options, visit this group at http://groups.google.com/group/openmeetings-user?hl=en.
Re: OM integration with zimbra ldap
On Fri, Apr 30, 2010 at 3:22 PM, smoeker wrote: > hola, > > at the moment there is no relation between LDAP groups and OM > Organizations... ok. What my concern is "How Should i configure ldap to manage authentication for more than one domain?" say there are two users na...@company1.com and name2.company2.com. How this can be managed within om_ldap.cfg? > > -> after successful firsat ldap login, the user is created locally > within local database and he gets assigned to the default > organization... > -> a possible extension would be to define a field from ldap result > that has to cope a OM organizations name - in that case, the user > could be assigned to that org > -> check issue list and discussions - there already were some threads > concering that topic > > > see ya Regards, Nehal Dattani -- You received this message because you are subscribed to the Google Groups "OpenMeetings User" group. To post to this group, send email to openmeetings-u...@googlegroups.com. To unsubscribe from this group, send email to openmeetings-user+unsubscr...@googlegroups.com. For more options, visit this group at http://groups.google.com/group/openmeetings-user?hl=en.
Re: OM integration with zimbra ldap
hola, at the moment there is no relation between LDAP groups and OM Organizations... -> after successful firsat ldap login, the user is created locally within local database and he gets assigned to the default organization... -> a possible extension would be to define a field from ldap result that has to cope a OM organizations name - in that case, the user could be assigned to that org -> check issue list and discussions - there already were some threads concering that topic see ya Smoeker On 30 Apr., 11:46, nehal dattani wrote: > Hi, > Thanks again for prompt reply. > > On Fri, Apr 30, 2010 at 3:07 PM, smoeker wrote: > > hola, > > > your log says : > > > ne...@mycompany.com not authenticated. > > > did u try to login without attached domain name? > > > NAME instead of n...@mycompany.com > > It worked like charm. A big Thanx. > But there is one more question. We are having 11 domains on our zimbra > ldap server. How can i configure it for om? > I am thinking of creating 11 org. in om > but will auth. system work? (with n...@mycompany.com) > > Regards, > Nehal Dattani > > -- > You received this message because you are subscribed to the Google Groups > "OpenMeetings User" group. > To post to this group, send email to openmeetings-u...@googlegroups.com. > To unsubscribe from this group, send email to > openmeetings-user+unsubscr...@googlegroups.com. > For more options, visit this group > athttp://groups.google.com/group/openmeetings-user?hl=en. -- You received this message because you are subscribed to the Google Groups "OpenMeetings User" group. To post to this group, send email to openmeetings-u...@googlegroups.com. To unsubscribe from this group, send email to openmeetings-user+unsubscr...@googlegroups.com. For more options, visit this group at http://groups.google.com/group/openmeetings-user?hl=en.
Re: OM integration with zimbra ldap
Hi, Thanks again for prompt reply. On Fri, Apr 30, 2010 at 3:07 PM, smoeker wrote: > hola, > > your log says : > > ne...@mycompany.com not authenticated. > > did u try to login without attached domain name? > > NAME instead of n...@mycompany.com It worked like charm. A big Thanx. But there is one more question. We are having 11 domains on our zimbra ldap server. How can i configure it for om? I am thinking of creating 11 org. in om but will auth. system work? (with n...@mycompany.com) Regards, Nehal Dattani -- You received this message because you are subscribed to the Google Groups "OpenMeetings User" group. To post to this group, send email to openmeetings-u...@googlegroups.com. To unsubscribe from this group, send email to openmeetings-user+unsubscr...@googlegroups.com. For more options, visit this group at http://groups.google.com/group/openmeetings-user?hl=en.
Re: OM integration with zimbra ldap
hola, your log says : ne...@mycompany.com not authenticated. did u try to login without attached domain name? NAME instead of n...@mycompany.com -> if openLdap is configured in your config, OM trys to resolve users CN by entered username - has to match ldap data... see ya Smoeker On 30 Apr., 11:06, nehal dattani wrote: > HI > , > thanks for your prompt reply. > > On Fri, Apr 30, 2010 at 2:07 PM, smoeker wrote: > > hola, > > > seems to be a configuration error : > > > LDAP: error code 34 - invalid DN > > > is "uid:nehal,OU:people,DC:mycompany,DC:com" really a valid DN for > > your admin user? > > Yes, > pls see the attached screenshot. > > > > > > > see ya > > > Smoeker > > > On 30 Apr., 10:25, nehal dattani wrote: > >> Hi All, > > >> We are using om and now want to integrate it with ldap. We have > >> already a huge userbase of zimbra and we want to integrate om with > >> zimbra's ldap > > >> I have enabled ldap and configured its absolute path also. > > >> here are the contents of my om_ldap.cfg > > >> #ConfigurationFile for LDAP Auth > >> #ConfigKey 'ldap_config_path' must be set in DataBase Configration of > >> OM and point to this file > >> #o.becherer,14.01.2009 > > >> #specify the LDAP Server type > >> ldap_server_type=OpenLDAP > > >> #LDAP URL > >> ldap_conn_url=ldap://10.1.21.32:389 > > >> #Login distinguished name (DN) for Authentification on LDAP Server - > >> keep emtpy if not requiered > >> ldap_admin_dn=uid:nehal,OU:people,DC:mycompany,DC:com > > >> #Loginpass for Authentification on LDAP Server - keep emtpy if not > >> requiered > >> ldap_passwd=secret > > >> #base to search for userdata(of user, that wants to login > >> ldap_search_base=OU:people,DC:mycompany,DC:com > > >> # Fieldnames (can differ between Ldap servers) > >> field_user_principal=uid > > >> # Ldap auth type(SIMPLE,NONE) > >> ldap_auth_type=SIMPLE > > >> However when i m trying to login,it says invalid password. > > >> openmeetings.log: > > >> DEBUG 04-30 12:41:47.171 LdapLoginManagement.java 106191 100 > >> org.openmeetings.app.ldap.LdapLoginManagement [NioProcessor-1] - > >> LdapLoginmanagement.isLdapConfigured > >> WARN 04-30 12:41:47.178 MainService.java 106198 254 > >> org.openmeetings.app.remote.MainService [NioProcessor-1] - loginUser > >> 111: 9cf159175add05b5a78b53255e236189 ne...@mycompany.com > >> DEBUG 04-30 12:41:47.179 Usermanagement.java 106199 1384 > >> org.openmeetings.app.data.user.Usermanagement [NioProcessor-1] - > >> Usermanagement.getUserByLoginOrEmail : ne...@mycompany.com > >> DEBUG 04-30 12:41:47.240 MainService.java 106260 271 > >> org.openmeetings.app.remote.MainService [NioProcessor-1] - Ldap Login > >> DEBUG 04-30 12:41:47.241 LdapLoginManagement.java 106261 173 > >> org.openmeetings.app.ldap.LdapLoginManagement [NioProcessor-1] - > >> LdapLoginmanagement.doLdapLogin > >> DEBUG 04-30 12:41:47.241 LdapLoginManagement.java 106261 126 > >> org.openmeetings.app.ldap.LdapLoginManagement [NioProcessor-1] - > >> LdapLoginmanagement.getLdapConfigData > >> DEBUG 04-30 12:41:47.255 LdapLoginManagement.java 106275 149 > >> org.openmeetings.app.ldap.LdapLoginManagement [NioProcessor-1] - > >> LdapLoginmanagement.readConfig : > >> /usr/local/openmeetings/red5/webapps/openmeetings/conf/om_ldap.cfg > >> DEBUG 04-30 12:41:47.258 LdapLoginManagement.java 106278 78 > >> org.openmeetings.app.ldap.LdapLoginManagement [NioProcessor-1] - > >> isValidAuthType > >> DEBUG 04-30 12:41:47.259 LdapLoginManagement.java 106279 223 > >> org.openmeetings.app.ldap.LdapLoginManagement [NioProcessor-1] - > >> Searching userdata with LDAP Search Filter :(uid=ne...@mycompany.com) > >> DEBUG 04-30 12:41:47.262 LdapAuthBase.java 106282 65 > >> org.openmeetings.app.ldap.LdapAuthBase [NioProcessor-1] - LdapAuthBase > >> DEBUG 04-30 12:41:47.262 LdapLoginManagement.java 106282 231 > >> org.openmeetings.app.ldap.LdapLoginManagement [NioProcessor-1] - > >> authenticating admin... > >> DEBUG 04-30 12:41:47.263 LdapAuthBase.java 106283 82 > >> org.openmeetings.app.ldap.LdapAuthBase [NioProcessor-1] - > >> authenticateUser > >> DEBUG 04-30 12:41:47.264 LdapAuthBase.java 106284 98 > >> org.openmeetings.app.ldap.LdapAuthBase [NioProcessor-1] - > > >> Authentification to LDAP - Server start > >> DEBUG 04-30 12:41:47.264 LdapAuthBase.java 106284 130 > >> org.openmeetings.app.ldap.LdapAuthBase [NioProcessor-1] - > >> loginToLdapServer > >> DEBUG 04-30 12:41:47.410 LdapLoginManagement.java 106430 234 > >> org.openmeetings.app.ldap.LdapLoginManagement [NioProcessor-1] - > >> Checking server type... > >> DEBUG 04-30 12:41:47.411 LdapLoginManagement.java 106431 238 > >> org.openmeetings.app.ldap.LdapLoginManagement [NioProcessor-1] - LDAP > >> server is OpenLDAP > >> DEBUG 04-30 12:41:47.412 LdapLoginManagement.java 106432 239 > >> org.openmeetings.app.ldap.LdapLoginManagement [NioProcessor-1] - LDAP > >> search baseOU=people,DC=bhaskarnet,DC=com > >> DEBUG 04-30 12:41:49.345 LdapAuthBase.java 108365 82 > >> org.openmeetings.app.ldap.LdapAu
Re: OM integration with zimbra ldap
hola, seems to be a configuration error : LDAP: error code 34 - invalid DN is "uid:nehal,OU:people,DC:mycompany,DC:com" really a valid DN for your admin user? see ya Smoeker On 30 Apr., 10:25, nehal dattani wrote: > Hi All, > > We are using om and now want to integrate it with ldap. We have > already a huge userbase of zimbra and we want to integrate om with > zimbra's ldap > > I have enabled ldap and configured its absolute path also. > > here are the contents of my om_ldap.cfg > > #ConfigurationFile for LDAP Auth > #ConfigKey 'ldap_config_path' must be set in DataBase Configration of > OM and point to this file > #o.becherer,14.01.2009 > > #specify the LDAP Server type > ldap_server_type=OpenLDAP > > #LDAP URL > ldap_conn_url=ldap://10.1.21.32:389 > > #Login distinguished name (DN) for Authentification on LDAP Server - > keep emtpy if not requiered > ldap_admin_dn=uid:nehal,OU:people,DC:mycompany,DC:com > > #Loginpass for Authentification on LDAP Server - keep emtpy if not requiered > ldap_passwd=secret > > #base to search for userdata(of user, that wants to login > ldap_search_base=OU:people,DC:mycompany,DC:com > > # Fieldnames (can differ between Ldap servers) > field_user_principal=uid > > # Ldap auth type(SIMPLE,NONE) > ldap_auth_type=SIMPLE > > However when i m trying to login,it says invalid password. > > openmeetings.log: > > DEBUG 04-30 12:41:47.171 LdapLoginManagement.java 106191 100 > org.openmeetings.app.ldap.LdapLoginManagement [NioProcessor-1] - > LdapLoginmanagement.isLdapConfigured > WARN 04-30 12:41:47.178 MainService.java 106198 254 > org.openmeetings.app.remote.MainService [NioProcessor-1] - loginUser > 111: 9cf159175add05b5a78b53255e236189 ne...@mycompany.com > DEBUG 04-30 12:41:47.179 Usermanagement.java 106199 1384 > org.openmeetings.app.data.user.Usermanagement [NioProcessor-1] - > Usermanagement.getUserByLoginOrEmail : ne...@mycompany.com > DEBUG 04-30 12:41:47.240 MainService.java 106260 271 > org.openmeetings.app.remote.MainService [NioProcessor-1] - Ldap Login > DEBUG 04-30 12:41:47.241 LdapLoginManagement.java 106261 173 > org.openmeetings.app.ldap.LdapLoginManagement [NioProcessor-1] - > LdapLoginmanagement.doLdapLogin > DEBUG 04-30 12:41:47.241 LdapLoginManagement.java 106261 126 > org.openmeetings.app.ldap.LdapLoginManagement [NioProcessor-1] - > LdapLoginmanagement.getLdapConfigData > DEBUG 04-30 12:41:47.255 LdapLoginManagement.java 106275 149 > org.openmeetings.app.ldap.LdapLoginManagement [NioProcessor-1] - > LdapLoginmanagement.readConfig : > /usr/local/openmeetings/red5/webapps/openmeetings/conf/om_ldap.cfg > DEBUG 04-30 12:41:47.258 LdapLoginManagement.java 106278 78 > org.openmeetings.app.ldap.LdapLoginManagement [NioProcessor-1] - > isValidAuthType > DEBUG 04-30 12:41:47.259 LdapLoginManagement.java 106279 223 > org.openmeetings.app.ldap.LdapLoginManagement [NioProcessor-1] - > Searching userdata with LDAP Search Filter :(uid=ne...@mycompany.com) > DEBUG 04-30 12:41:47.262 LdapAuthBase.java 106282 65 > org.openmeetings.app.ldap.LdapAuthBase [NioProcessor-1] - LdapAuthBase > DEBUG 04-30 12:41:47.262 LdapLoginManagement.java 106282 231 > org.openmeetings.app.ldap.LdapLoginManagement [NioProcessor-1] - > authenticating admin... > DEBUG 04-30 12:41:47.263 LdapAuthBase.java 106283 82 > org.openmeetings.app.ldap.LdapAuthBase [NioProcessor-1] - > authenticateUser > DEBUG 04-30 12:41:47.264 LdapAuthBase.java 106284 98 > org.openmeetings.app.ldap.LdapAuthBase [NioProcessor-1] - > > Authentification to LDAP - Server start > DEBUG 04-30 12:41:47.264 LdapAuthBase.java 106284 130 > org.openmeetings.app.ldap.LdapAuthBase [NioProcessor-1] - > loginToLdapServer > DEBUG 04-30 12:41:47.410 LdapLoginManagement.java 106430 234 > org.openmeetings.app.ldap.LdapLoginManagement [NioProcessor-1] - > Checking server type... > DEBUG 04-30 12:41:47.411 LdapLoginManagement.java 106431 238 > org.openmeetings.app.ldap.LdapLoginManagement [NioProcessor-1] - LDAP > server is OpenLDAP > DEBUG 04-30 12:41:47.412 LdapLoginManagement.java 106432 239 > org.openmeetings.app.ldap.LdapLoginManagement [NioProcessor-1] - LDAP > search baseOU=people,DC=bhaskarnet,DC=com > DEBUG 04-30 12:41:49.345 LdapAuthBase.java 108365 82 > org.openmeetings.app.ldap.LdapAuthBase [NioProcessor-1] - > authenticateUser > DEBUG 04-30 12:41:49.346 LdapAuthBase.java 108366 98 > org.openmeetings.app.ldap.LdapAuthBase [NioProcessor-1] - > > Authentification to LDAP - Server start > DEBUG 04-30 12:41:49.347 LdapAuthBase.java 108367 130 > org.openmeetings.app.ldap.LdapAuthBase [NioProcessor-1] - > loginToLdapServer > ERROR 04-30 12:41:49.710 LdapAuthBase.java 108730 104 > org.openmeetings.app.ldap.LdapAuthBase [NioProcessor-1] - > > Authentification on LDAP Server failed : [LDAP: error code 34 - invalid DN] > ERROR 04-30 12:41:49.712 LdapLoginManagement.java 108732 247 > org.openmeetings.app.ldap.LdapLoginManagement [NioProcessor-1] - > ne...@mycompany.com not authenticated. > > Can anybody help me? > > Thanks in advance. >
