[OGo-Users] ldap+kerberos authentication

Sat, 03 Mar 2007 20:15:42 +0100

Adam Tauno Williams schrieb:
>>>>    LDAPInitialBindPW = "{SSHA}S0bmzeGvCwcCkCuT43GL54xCGTe70uBN";
>>>>         
>>> Uhm? You need to specify the password here.
>>>       
>> I tested both, the cleartext password and the bove hashed string of the 
>> password.
>> For both I get no error messages from ldap-authentication and the
>>     
>
> Sure, the bind just fails.
>   
Not so sure. The failure of an anonymous bind is documented in the webui 
logfile.
The errormessage in this logfile only disappears after setting the DN, 
PW and BindSpecific Parameters.
>  
>   
>> behavior of the server is equal.
>>     
>
> Increase your logging level.
>   
For which application?
How can I do this for OGo??
>   
>> Is there any way to see what username ogo tries to login after the 
>> apache2 authenticates him?
>>     
>
> This is recorded in the ogo-webui-*.err file
>
>   
I don't have such a file on the system.
>> Or is there a way to see what the OGo user tries to do on his database?
>> For now I can only see OGo to connect to postgres...
>>     
>
> OGo connects to PostgreSQL using the parameters defined in
> LSConnectionDictionary.
>
>   
Not definitly. After standard debian installation and building a ogo 
instance with ogo-create-instance script, I have db named ogo and dbuser 
called ogo.
In my LSConnectionDictionary are these credentials configured (ogo,ogo). 
All is fine.

But after enabling mod-auth-kerb my browser tells me a connection error 
to postgres. Postgres logs show connection errors for user OGo@127.0.0.1

I was not able to change this behaviour and therefor changed my 
database, dbuser and LSConnectionDictionary to OGo,OGo