sipcapture / homer-app

HOMER 7.x Front-End and API Server
http://sipcapture.io
GNU Affero General Public License v3.0
207 stars 85 forks source link

ldap authentication #392

Closed bmgante closed 4 years ago

bmgante commented 4 years ago

Hi,

I am having the following errors from ldap: ​​{​​"level":"error","msg":"Couldn't auth user: unable to read LDAP response packet: read tcp 10.63.25.118:50736-\u003e10.21.3.142:389: read: connection reset by peer","time":"2020-10-14T14:15:52Z"} ​​{​​"level":"error","msg":"Couldn't auth user: LDAP Result Code 200 \"Network Error\": ldap: connection closed","time":"2020-10-14T14:16:23Z"}​​

My ldap config is: "ldap_config": { "admingroup": "admin", "adminmode": true, "anonymous": false, "attributes": [ "givenName", "sn", "mail", "uid" ], "base": "dc=truphone,dc=local", "binddn": "cn=Grafana_AD,ou=Grafana,ou=xxxx Service Accounts,dc=xxxx,dc=xxxx", "bindpassword": "xxxxxxxxxxxxxxx", "groupfilter": "(memberUid=%s)", "host": "x.x.x.x", "port": 389, "skiptls": true, "skipverify": true, "userfilter": "(sAMAccountName=%s)", "usessl": false }

homer-app version 1.2.5

adubovikov commented 4 years ago

you have to check your LDAP's log

adubovikov commented 4 years ago

Are you sure that your port 389 is not TLS ?

lmangani commented 4 years ago

A little insight as of what's on the other side would help provide advice. The error suggests the connection is reset and closed, likely by a firewall rule.

bmgante commented 4 years ago

Attached the pcap from homer server. Homer-app is 10.63.24.196 and ldap 10.21.3.142. From the homer server i am able to telnet ldap on port 389 (so firewall is ok) but maybe for some reason ldap does not allow to establish session with this homer server.

ldap.zip

adubovikov commented 4 years ago

I dont see anything that can help - ONLY SYNC/RST - no PSH (data)

try to use ldapsearch

adubovikov commented 4 years ago

looks like it's not related to homer-app. I close the issue. Please reopen if needed