Hi all,
I am testing ejabberd to possibly replace an older openfire server at my IT dept which is a Microsoft shop except for some servers (i.e. our chatroom). I have installed ejabberd on a new Ubuntu 14.04 server and I have been banging my head trying to get Active Directory authentication working with ejabberd... Below is a sample from my ejabberd.cfg file. Does anyone see what's wrong? (I created a "Chat Admin" AD account on the mywork.org domain which is in the "Misc" OU.)
{auth_method, ldap}.
{ldap_servers, ["ad0.mywork.org", "ad1.mywork.org"]}.
{ldap_encrypt, none}.
{ldap_rootdn, "cn=Chat Admin,ou=Misc,dc=mywork,dc=org"}.
{ldap_password, "secret"}.
{ldap_base, "dc=mywork,dc=org"}.
{ldap_uids, [{"sAMAccountName", "%u"}]}.
{ldap_filter, "(OU=Employees,DC=mywork,DC=org)"}.
In testing, after I try to login with pidgin, I tried adding a "username@mywork.org" account and when enabling the account fails, I look at the ejabberd.log file on the server and see errors like the following ("username" is the AD username for the user in the "Employees" OU).
=INFO REPORT==== 2016-04-14 11:51:53 ===
I(<0.474.0>:ejabberd_listener:281) : (#Port<0.2014>) Accepted connection {{10,90,0,124},50971} -> {{10,90,0,164},5222}
=INFO REPORT==== 2016-04-14 11:51:58 ===
I(<0.478.0>:ejabberd_c2s:649) : ({socket_state,tls,{tlssock,#Port<0.2014>,#Port<0.2036>},<0.477.0>}) Failed authentication for
If you have any tips about how I can get this working it would be very, very appreciated!
Best,
Chris