LDAP login fails without any clues as to why

[Johannes Hass]

So, I added LDAP authentication to Opencast. Used the credentials I used for several other services and I also tested that the LDAP server is reachable from the Opencast server.

I'm not getting any error messages in the logs upon starting or running the server so the configuration should be correct.

However, users still cannot authenticate against the LDAP.

And I do not know why - there are no errors, warning or even infos anywhere. Nothing I can base a search on the ultimate issue on. The login form simply states "Wrong username / password" and that's it.

Is there a debug setting somewhere so I can see at which point the authentication actually fails?

[Christoph Reifers]

Hi Johannes,

LDAP can be weird. You can add these lines to the
org.ops4j.pax.logging.cfg to get debug level output for LDAP:
log4j2.logger.userdirectory.name = org.opencastproject.userdirectory
log4j2.logger.userdirectory.level = DEBUG

There is an example for the ingest module in that file, you can add
these lines below.

There are actually two files that you can/must configure for LDAP to
work, org.opencastproject.userdirectory.ldap-<ID>.cfg and
security/mh_default_org.xml in the section LDAP Support. Unfortunately I
can not explain why you need to configure LDAP in two places. There is
an issue already https://github.com/opencast/opencast/issues/2532

Regards

Christoph

> --
> To unsubscribe from this group and stop receiving emails from it, send
> an email to users+un...@opencast.org.