Hello All
I'm install ejabberd on CentOS 6.4, and authentication via LDAPS on ClearOS
I config on ejabberd:
%%%%%%%%%%%
{auth_method, ldap}.
{ldap_servers, ["10.0.x.x"]}.
{ldap_encrypt, tls}.
{ldap_port, 636}.
{ldap_rootdn, "cn=manager,cn=internal,dc=abcd,dc=com"}.
{ldap_password, "*****"}.
{ldap_base, "dc=abcd,dc=com"}.
{ldap_uids, [{"uid", "%u@abcd.com"}]}.
{ldap_filter, ""}.
%%%%%%%%%%%%%%%%%%%%%%%%
however it not work
This in entry of log:
%%%%%%%%%%%%%
=WARNING REPORT==== 2014-03-07 11:38:30 ===
W(<0.413.0>:ejabberd_web_admin:224) : Access of "ngoc.tang" from "10.0.65.57" failed with error: "inexistent-account"
=INFO REPORT==== 2014-03-07 11:47:03 ===
I(<0.273.0>:eldap:976) : LDAP connection on 10.0.x.x:636
=ERROR REPORT==== 2014-03-07 11:48:06 ===
E(<0.283.0>:eldap:1009) : LDAP connection failed:
** Server: 10.0.8.6:636
** Reason: etimedout
** Socket options: [{packet,asn1},{active,true},{keepalive,true},binary]
%%%%%%%%%%%%
Reason connect failed is "etimedout", I don't understand it.
Please Help me.
Thanks so much ..!!!
same for me:
same for me: http://www.ejabberd.im/node/22849
1) check your ClearOS
1) check your ClearOS firewall, ensure you can connect LDAPS via port 636
- in : Firewall > Incoming Firewall> Allowed Incoming Connections > [add] LDAPS TCP 636
2) here are my config
================
{host_config, "chat.test.vn", [{auth_method, ldap},
%% List of LDAP servers:
{ldap_servers, ["10.204.38.xx"]},
%% Encryption of connection to LDAP servers:
{ldap_encrypt, tls},
%% Port to connect to on LDAP servers:
{ldap_port, 636},
%% LDAP manager:
{ldap_rootdn, "cn=manager,ou=Internal,dc=test,dc=vn"},
%% Password of LDAP manager: replace pass by your password
{ldap_password, "pass"},
%% Search base of LDAP directory:
{ldap_base, "dc=test,dc=vn"},
%% LDAP attribute that holds user ID:
{ldap_uids, [{"uid", "%u"}]},
%% LDAP filter:
{ldap_filter, "(objectClass=shadowAccount)"} ] }.
check clearos firewall port
check clearos firewall port open 631 ít it ok, you can connect to it