search

shinken-monitoring / mod-webui

Shinken Web User Interface
GNU Affero General Public License v3.0
79 stars 71 forks source link

Connexion LDAP failed #566

Closed Method68 closed 4 years ago

Method68 commented 7 years ago

Hi, after install auth-active-directory, i configure auth_active_directory.cfg

define module { module_name auth-active-directory module_type ad_webui ldap_uri ldaps://ldap.slash16.local username cn=admin,dc=slash16,dc=local password secret basedn dc=slash16,dc=local mode openldap }

--------------webui2.cfg----------------

define module { module_name webui2 module_type webui2 modules auth-active-directory host 0.0.0.0 #; All interfaces = 0.0.0.0 port 7767 ..........

-------------------brokerd.log---------------------

1495119242] INFO: [broker-master] [WebUI] Requesting authentication for user: vroche [1495119242] INFO: [broker-master] [WebUI] Authenticating user 'vroche' [1495119242] INFO: [broker-master] [WebUI] Internal htpasswd authentication [1495119242] INFO: [broker-master] [WebUI] Internal alignak backend authentication [1495119242] INFO: [broker-master] [WebUI] Internal contact authentication [1495119242] INFO: [broker-master] [WebUI-auth-cfg-password] Authenticating user 'vroche' [1495119242] ERROR: [broker-master] [WebUI-auth-cfg-password] You need to have a contact having the same name as your user: vroche [1495119242] WARNING: [broker-master] [WebUI] The user 'vroche' has not been authenticated. [1495119242] WARNING: [broker-master] [WebUI] user 'vroche' access denied, redirection to: /user/login?error=Invalid user or Password [1495119242] WARNING: [broker-master] [WebUI] login page with error message: Invalid user or Password

i don't understand how to call auth_active_directory for ldap connexion !

Thanks for any help.

maethor commented 7 years ago

This seems to be the right configuration.

What LDAP field are you using for authentication? Upstream auth-active-directory only search for o and mail (line 93 of the module.py). On my setup I had to add uid.

serge-marie commented 7 years ago

Hi,

Do you have a local cfg file ? in you log : "[1495119242] ERROR: [broker-master] [WebUI-auth-cfg-password] You need to have a contact having the same name as your user: vroche"

Because you must have a "/etc/shinken/contacts/vroche.cfg" file.

Like : define contact{ use generic-contact contact_name vroche is_admin 1 expert 1 }

And restart arbiter.

Serge