Hi Geoff, Deepak shared his settings and logs in his previous email. According to his latest email, his problem is resolved.
~Rajani On 07-Jul-2014, at 3:07 pm, Geoff Higginbottom <geoff.higginbot...@shapeblue.com> wrote: > Hi Rajani, > > I wrote that blog article. > > If you can share the settings you have used for all of LDAP configuration > within CloudStack, and also confirm you AD configuration I will check the > setting for you. > > Regards > > Geoff Higginbottom > > D: +44 20 3603 0542 | S: +44 20 3603 0540 | M: +447968161581 > > geoff.higginbot...@shapeblue.com > > -----Original Message----- > From: Rajani Karuturi [mailto:rajani.karut...@citrix.com] > Sent: 07 July 2014 10:24 > To: users@cloudstack.apache.org > Subject: Re: Unable to fetch Active Directory Users Information ! > > Everything seems to be correct. I don’t see anything in the logs as well. > I am not sure if this is the issue but, can you remove the quotes around > basedn and bind.principal and try again? > > remove the quotes, remove the ldap server(ip and port) and add again. check > the logs to see for any exception. > > BTW, when you query the ldap from command line, is it returning users? > ldap server should have some users listed under the basedn provided and > accessible to bind.principal with bind.password. > Can you confirm this by command line query to ldap outside of cloudstack? > > > ~Rajani > > > > On 07-Jul-2014, at 1:52 pm, Deepak Yadav <deepak....@gmail.com> wrote: > >> Hi >> >> >> Please find the log and screen shot from this location ! >> >> https://ci.mindeservices.com/data/ >> >> >> On Mon, Jul 7, 2014 at 12:49 PM, Rajani Karuturi >> <rajani.karut...@citrix.com >>> wrote: >> >>> -e param specifies the encryption type and the default is file. looks >>> like it accepts only file and web. i don't know how to specify none >>> there. (I use the dev mvn build and its always disabled there) >>> >>> ldap integration should work fine even with encryption enabled. if >>> its just for sharing the configuration values, can you put the >>> screenshot somewhere and share the url? >>> >>> if you want to disable encryption for different reasons, please start >>> a new thread with correct subject to attract others attention. >>> >>> ~Rajani >>> >>> >>> >>> On 07-Jul-2014, at 11:53 am, Deepak Yadav <deepak....@gmail.com> wrote: >>> >>>> Hi >>>> >>>> >>>> When I am again deploying Cloud stack from scratch It automatically >>>> use db.cloud.encryption.type=file ! >>>> >>>> I am using this command while setup new database : >>>> cloudstack-setup-databases cloud:PassWord@localhost --deploy-as=root >>>> >>>> >>>> On Mon, Jul 7, 2014 at 11:20 AM, Deepak Yadav <deepak....@gmail.com> >>> wrote: >>>> >>>>> I am getting this out put while executing Api call. >>>>> >>>>> >>>>> >>>>> >>> http://localhost:8096/client/api?command=listLdapUsers&listtype=new&r >>> esponse=json&apiKey=bzujkgpBXBoQGQgBf1948nCK3pparYHoYzbStJeGb4LNOCpcY >>> U9OeZlPXNisYAZO7ceF6wSbaD13x45CfZPVgw&signature=TXgt_exc6VMMvjAMYkcrm >>> yP9LfF9URejJbK0RB5IqP6UQ8ngOESmdEjAPNTgBaDUF9BxcPHJ-Nr4AUw0knZbNg >>>>> >>>>> OUTPUT : >>>>> >>>>> { "ldapuserresponse" : { } } >>>>> >>>>> >>>>> On Mon, Jul 7, 2014 at 10:54 AM, Rajani Karuturi < >>>>> rajani.karut...@citrix.com> wrote: >>>>> >>>>>> On port 8080, you should specify session key. Look for this api >>>>>> call >>> and >>>>>> the output in firebug when you are on the add ldap account dialog. >>>>>> >>>>>> or you cloud use cloud monkey >>>>>> >>> https://cwiki.apache.org/confluence/display/CLOUDSTACK/CloudStack+clo >>> udmonkey+CLI >>>>>> >>>>>> >>>>>> to disable encryption, set db.cloud.encryption.type=none in >>> db.properties. >>>>>> you will have to redeploy database and do all the configuration >>>>>> again after this. >>>>>> >>>>>> >>>>>> to share the config values, either copy paste the values from the >>>>>> ui or put the screenshot somewhere and share the url. >>>>>> >>>>>> >>>>>> ~Rajani >>>>>> >>>>>> >>>>>> >>>>>> On 07-Jul-2014, at 10:38 am, Deepak Yadav <deepak....@gmail.com >>> <mailto: >>>>>> deepak....@gmail.com>> wrote: >>>>>> >>>>>> I am able to connect both the port from Cloud Server : 389, 3268. >>>>>> >>>>>> Still I am not getting any data after removing >>>>>> ldap.search.group.principle from Global Settings. >>>>>> >>>>>> I am not able to connect this web URL from my cloud system because >>>>>> this >>>>>> 8096 port is not running on my system, When I use my default port >>>>>> 8080 >>> I >>>>>> am >>>>>> getting error " Unable to verify the user credential and or/ >>>>>> request Signature. >>>>>> >>>>>> And As i know that I am not using any encryption on my system so >>>>>> please let me know how can disable and share u required log ! >>>>>> >>>>>> >>>>>> >>>>>> >>>>>> >>>>>> >>>>>> On Mon, Jul 7, 2014 at 10:11 AM, Rajani Karuturi < >>>>>> rajani.karut...@citrix.com<mailto:rajani.karut...@citrix.com> >>>>>> wrote: >>>>>> >>>>>> looks like you have encryption enabled. hence, I wasn't able to >>>>>> read >>> the >>>>>> configuration table values. >>>>>> >>>>>> few observations: >>>>>> Are you able to connect to your ldap server on port 389 outside >>>>>> cloudstack?? the default port of AD is 3268 >>>>>> >>>>>> ldap.search.group.principle is not a compulsory field. its just a >>>>>> way >>> to >>>>>> limit this users to only that group. you can remove that and try. >>>>>> >>>>>> Can you check the listldapusers api call output? >>>>>> >>>>>> >>> http://localhost:8096/client/api?command=listLdapUsers&listtype=new&r >>> esponse=json >>>>>> May be you are hitting this UI Issue? >>>>>> https://issues.apache.org/jira/browse/CLOUDSTACK-6487 >>>>>> >>>>>> if none of this helps, share the unencrypted configuration values. >>>>>> >>>>>> ~Rajani >>>>>> >>>>>> >>>>>> >>>>>> On 07-Jul-2014, at 9:51 am, Deepak Yadav <deepak....@gmail.com<mailto: >>>>>> deepak....@gmail.com><mailto: >>>>>> deepak....@gmail.com<mailto:deepak....@gmail.com>>> wrote: >>>>>> >>>>>> Thnaks for your response ! >>>>>> >>>>>> >>>>>> Please find the attached output of the command. >>>>>> >>>>>> >>>>>> On Mon, Jul 7, 2014 at 9:45 AM, Rajani Karuturi < >>>>>> rajani.karut...@citrix.com<mailto:rajani.karut...@citrix.com><mailto: >>>>>> rajani.karut...@citrix.com>> wrote: >>>>>> images are stripped. >>>>>> >>>>>> Can you share the output of following two queries? >>>>>> mysql> select * from ldap_configuration; select * from >>>>>> mysql> configuration where name like '%ldap%'; >>>>>> >>>>>> ~Rajani >>>>>> >>>>>> >>>>>> >>>>>> On 07-Jul-2014, at 9:24 am, Deepak Yadav <deepak....@gmail.com<mailto: >>>>>> deepak....@gmail.com><mailto: >>>>>> deepak....@gmail.com<mailto:deepak....@gmail.com>>> wrote: >>>>>> >>>>>> Hi, >>>>>> >>>>>> >>>>>> I want to join my cloud stack application to Active Directory LDAP >>>>>> to >>> get >>>>>> user ! >>>>>> >>>>>> I am following this Blog to configure my LDAP settings ! >>>>>> >>>>>> >>>>>> >>>>>> >>> http://shapeblue.com/cloudstack/using-cloudstack-4-3-with-microsoft-a >>> ctive-directory/ >>>>>> >>>>>> But I am unable to fetch user account from my LDAP data. I am also >>>>>> attaching screen shot of my Configuration ! >>>>>> >>>>>> Please let me know the correct way to configure LDAP in cloud stack ! >>>>>> >>>>>> >>>>>> >>>>>> >>>>>> -- >>>>>> Thanks & Regards >>>>>> Deepak Yadav >>>>>> >>>>>> >>>>>> >>>>>> >>>>>> >>>>>> -- >>>>>> Thanks & Regards >>>>>> Deepak Yadav >>>>>> M +91 9015150337 | >>>>>> E deepak.ya...@mind-infotech.com<mailto: >>> deepak.ya...@mind-infotech.com >>>>>>> <mailto:deepak.ya...@mind-infotech.com> >>>>>> | www.mind-infotech.com<http://www.mind-infotech.com/>< >>>>>> http://www.mind-infotech.com/> | >>>>>> >>>>>> >>>>>> >>>>>> >>>>>> -- >>>>>> Thanks & Regards >>>>>> Deepak Yadav >>>>>> M +91 9015150337 | >>>>>> E deepak.ya...@mind-infotech.com<mailto: >>> deepak.ya...@mind-infotech.com >>>>>>> <mailto:deepak.ya...@mind-infotech.com> >>>>>> | www.mind-infotech.com<http://www.mind-infotech.com/>< >>>>>> http://www.mind-infotech.com/> | >>>>>> >>>>>> >>>>>> <output.txt> >>>>>> >>>>>> >>>>>> >>>>>> >>>>>> -- >>>>>> Thanks & Regards >>>>>> Deepak Yadav >>>>>> >>>>>> >>>>> >>>>> >>>>> -- >>>>> Thanks & Regards >>>>> Deepak Yadav >>>>> >>>>> >>>>> >>>>> >>>> >>>> >>>> >>>> -- >>>> Thanks & Regards >>>> Deepak Yadav >>>> M +91 9015150337 | >>>> E deepak.ya...@mind-infotech.com | www.mind-infotech.com | >>> >>> >> >> >> -- >> Thanks & Regards >> Deepak Yadav >> M +91 9015150337 | >> E deepak.ya...@mind-infotech.com | www.mind-infotech.com | > > Find out more about ShapeBlue and our range of CloudStack related services > > IaaS Cloud Design & Build<http://shapeblue.com/iaas-cloud-design-and-build//> > CSForge – rapid IaaS deployment framework<http://shapeblue.com/csforge/> > CloudStack Consulting<http://shapeblue.com/cloudstack-consultancy/> > CloudStack Infrastructure > Support<http://shapeblue.com/cloudstack-infrastructure-support/> > CloudStack Bootcamp Training > Courses<http://shapeblue.com/cloudstack-training/> > > This email and any attachments to it may be confidential and are intended > solely for the use of the individual to whom it is addressed. Any views or > opinions expressed are solely those of the author and do not necessarily > represent those of Shape Blue Ltd or related companies. If you are not the > intended recipient of this email, you must neither take any action based upon > its contents, nor copy or show it to anyone. Please contact the sender if you > believe you have received this email in error. Shape Blue Ltd is a company > incorporated in England & Wales. ShapeBlue Services India LLP is a company > incorporated in India and is operated under license from Shape Blue Ltd. > Shape Blue Brasil Consultoria Ltda is a company incorporated in Brasil and is > operated under license from Shape Blue Ltd. ShapeBlue is a registered > trademark.
