mparker2

Forum Replies Created

Viewing 2 replies - 1 through 2 (of 2 total)
  • Forum: Plugins
    In reply to: [Active Directory Integration] Problem with the integration of more then one AD
    mparker2

    (@mparker2)

    11 years, 8 months ago

    (Failed Attempts x3)

    [INFO] method authenticate() called
    [INFO] ——————————————
    PHP version: 5.5.9-1ubuntu4
    WP version: 3.9.1
    ADI version: 1.1.5dev
    OS Info : Linux server-name-server 3.13.0-24-generic #46-Ubuntu SMP Thu Apr 10 19:11:08 UTC 2014 x86_64
    Web Server : apache2handler
    adLDAP ver.: 3.3.2 EXTENDED (201302271401)
    ——————————————
    [INFO] LDAP paging: enabled
    [NOTICE] username: user1
    [NOTICE] password: **not shown**
    [INFO] Options for adLDAP connection:
    – account_suffix: @dc2.name2;@dc1.name1
    – base_dn: dc=dc2,dc=name2;dc=dc1,dc=name1
    – domain_controllers: dc1.name1;dc2.name2
    – ad_port: 389
    – use_tls: 0
    – network timeout: 120
    [NOTICE] adLDAP object created.
    [INFO] max_login_attempts: 50
    [INFO] users failed logins: 0
    [NOTICE] trying account suffix “@dc2.name2”
    [NOTICE] trying account suffix “@dc1.name1”
    [ERROR] Authentication failed
    [WARN] storing failed login for user “user1”

    (Successful 4th attempt)

    AD Integration Logon Test

    openLDAP installed

    [INFO] method authenticate() called
    [INFO] ——————————————
    PHP version: 5.5.9-1ubuntu4
    WP version: 3.9.1
    ADI version: 1.1.5dev
    OS Info : Linux server-name-server 3.13.0-24-generic #46-Ubuntu SMP Thu Apr 10 19:11:08 UTC 2014 x86_64
    Web Server : apache2handler
    adLDAP ver.: 3.3.2 EXTENDED (201302271401)
    ——————————————
    [INFO] LDAP paging: enabled
    [NOTICE] username: user1
    [NOTICE] password: **not shown**
    [INFO] Options for adLDAP connection:
    – account_suffix: @dc2.name2;@dc1.name1
    – base_dn: dc=dc2,dc=name2;dc=dc1,dc=name1
    – domain_controllers: dc1.name1;dc2.name2
    – ad_port: 389
    – use_tls: 0
    – network timeout: 120
    [NOTICE] adLDAP object created.
    [INFO] max_login_attempts: 50
    [INFO] users failed logins: 3
    [NOTICE] trying account suffix “@dc2.name2”
    [NOTICE] Authentication successfull for “[email protected]
    [NOTICE] cleaning up failed logins for user “user1”
    [DEBUG] ATTRIBUTES TO LOAD: Array
    (
    [0] => cn
    [1] => givenname
    [2] => sn
    [3] => displayname
    [4] => description
    [5] => mail
    [6] => samaccountname
    [7] => userprincipalname
    [8] => useraccountcontrol
    )

    [DEBUG] USERINFO[0]:

    [NOTICE] Creating user ‘user1’ with following data:
    – email :
    – first name :
    – last name :
    – display name : user1
    – account suffix:
    – role :
    [DEBUG] Setting local password to the used for this login.
    [NOTICE] – user_id : 101
    [DEBUG] cn is empty. Local value of meta key adi_cn left unchanged.
    [DEBUG] givenname is empty. Local value of meta key adi_givenname left unchanged.
    [DEBUG] sn is empty. Local value of meta key adi_sn left unchanged.
    [DEBUG] displayname is empty. Local value of meta key adi_displayname left unchanged.
    [DEBUG] description is empty. Local value of meta key adi_description left unchanged.
    [DEBUG] mail is empty. Local value of meta key adi_mail left unchanged.
    [DEBUG] samaccountname is empty. Local value of meta key adi_samaccountname left unchanged.
    [DEBUG] userprincipalname is empty. Local value of meta key adi_userprincipalname left unchanged.
    [DEBUG] useraccountcontrol is empty. Local value of meta key adi_useraccountcontrol left unchanged.
    [NOTICE] FINISHED

    User logged on.

    Forum: Plugins
    In reply to: [Active Directory Integration] Problem with the integration of more then one AD
    mparker2

    (@mparker2)

    11 years, 8 months ago

    I am having the exact same issue and was hoping version 1.1.5 would have fixed it. New users have to log on 2-3 times before it works.
    All DC Names, URL’s and IP’s have been replaced with generic text for security on this public forum.

    Domain Controllers: name.name;2ndname.2ndname
    Port: 389
    Use TLS: <unchecked>
    LDAP Network Timeout: 120 (I increased this thinking it would work)
    Base DN: dc=name,dc=name;dc=2ndname,dc=2ndname
    (I tried Base DN: with a comma separating the two domains first. Then the semi-colon thinking that might be an issue)

    This plug-in works perfectly with a single domain for either of my two DC’s but not when both are configured in the plug-in settings.

    This plug-in also does not pull in any of the user information specifically the email address since it is a required field in our Word Press theme.

    Below are what the logs show.

    apache2
    error.log
    [Tue Sep 30 12:32:51.618083 2014] [:error] [pid 28951] [client 00.00.00.00:00000] PHP Warning: ldap_get_entries() expects parameter 2 to be resource, boolean given in /var/www/html/wp-content/plugins/active-directory-integration/ad_ldap/adLDAP.php on line 1224, referer: http://name.name.com/wp-login.php

    [Tue Sep 30 12:32:51.618009 2014] [:error] [pid 28951] [client 00.00.00.00:00000] PHP Warning: ldap_search(): Search: No such object in /var/www/html/wp-content/plugins/active-directory-integration/ad_ldap/adLDAP.php on line 1223, referer: http://name.name.com/wp-login.php

    adLDAP.php
    1223 – $sr=ldap_search($this->_conn,$this->_base_dn,$filter,$fields);
    1224 – $entries = ldap_get_entries($this->_conn, $sr);

    Any help from the developer would be greatly appreciated.

Viewing 2 replies - 1 through 2 (of 2 total)