LDAP Authentication Problems

[Matthew]

 

Hello,

I’m trying to get my LDAP authentication working but I keep encountering this error using the web form login: "Could not authorize you from LDAP because "Invalid credentials” "

Please help, below is more information.  Please let me know if you would like to see more information

Error log:

I, [2014-05-26T16:49:59.765317 #31758]  INFO -- omniauth: (ldap) Callback phase initiated.
E, [2014-05-26T16:49:59.901058 #31758] ERROR -- omniauth: (ldap) Authentication failure! invalid_credentials encountered.

Server:

$> cat /etc/centos-release
CentOS release 6.5 (Final)

Config:

 ldap:
    enabled: true
    host: ’server.ourdomain.com'
    base: 'dc=ourdomain,dc=com'
    port: 636
    uid: 'uid'
    method: 'ssl' # "ssl" or "plain"
    bind_dn: 'cn=admin,dc=ourdomain,dc=com'
    password: 'adminpassword'
    allow_username_or_email_login: true

According to the test, it works:

$> bundle exec rake gitlab:ldap:check[100] RAILS_ENV=production
Checking LDAP ...
LDAP users with access to your GitLab server (only showing the first 100 results)
DN: uid=user1,ou=Users,dc=ourdomain,dc=com uid: ["user1"]
DN: uid=user2,ou=Users,dc=ourdomain,dc=com uid: ["user2"]
DN: uid=user3,ou=Users,dc=ourdomain,dc=com uid: ["user3"]
Checking LDAP … Finished

[Matthew]

*RESOLVED*

The issue happened to be with my LDAP setup. I was using plain text passwords, where it seems Gitlab requires (at this time) SSHA, SHA or MD5 passwords. Changing passwords back to SHA allowed the user accounts to authenticate.

[Luis Mario Carvajal Asenjo]

Where did you changed that feature?