Hi
I have a domain mydomain.com with a global LDAP catalog. Inside this domain I got various OU depending on the area of the users: glo,fr, zh, us, en...
Each of these OU have their own LDAP server which is a replica of the main LDAP server but only for the concerned OU
I have an ejabberd server for the administration that works fine, the server authenticate to a remote server which is the master LDAP server.
Now I setup another LDAP server for each of my OU. This server is configured to authenticate via LDAP on the corresponding replica server (fr.mydomain.com or zh.mydomain.com...)
Those server can't authenticate to the local LDAP server but if I setup ejabberd to authenticate to my master LDAP server it works. I mean if I switch from {ldap_servers, ["mydomain.com"]} to {ldap_servers, ["fr.mydomain.com"]}
The DNS records for LDAP are fine for both domain (mydomain.com and fr.mydomain.com)
The logs I have are the following
=INFO REPORT==== 2008-03-30 16:04:53 ===
I(<0.250.0>:ejabberd_listener:112) : (#Port<0.366>) Accepted connection {{222,71,6,49},3433} -> {{XX,YY,ZZ,AA},5222}
=INFO REPORT==== 2008-03-30 16:04:53 ===
D(<0.330.0>:ejabberd_receiver:297) : Received XML on stream = "<stream:stream to=\"fr.mydomain.com\" xmlns=\"jabber:client\" xmlns:stream=\"http://etherx.jabber.org/streams\" version=\"1.0\" >"
=INFO REPORT==== 2008-03-30 16:04:53 ===
D(<0.331.0>:ejabberd_c2s:1335) : Send XML on stream = "<?xml version='1.0'?><stream:stream xmlns='jabber:client' xmlns:stream='http://etherx.jabber.org/streams' id='2591715416' from='fr.mydomain.com' version='1.0' xml:lang='en'>"
=INFO REPORT==== 2008-03-30 16:04:53 ===
D(<0.331.0>:ejabberd_c2s:1335) : Send XML on stream = "<stream:features><starttls xmlns='urn:ietf:params:xml:ns:xmpp-tls'/><mechanisms xmlns='urn:ietf:params:xml:ns:xmpp-sasl'><mechanism>PLAIN</mechanism></mechanisms><register xmlns='http://jabber.org/features/iq-register'/></stream:features>"
=INFO REPORT==== 2008-03-30 16:04:53 ===
D(<0.330.0>:ejabberd_receiver:297) : Received XML on stream = "<starttls xmlns=\"urn:ietf:params:xml:ns:xmpp-tls\"/>"
=INFO REPORT==== 2008-03-30 16:04:53 ===
D(<0.330.0>:ejabberd_receiver:297) : Received XML on stream = []
=INFO REPORT==== 2008-03-30 16:04:54 ===
D(<0.330.0>:ejabberd_receiver:297) : Received XML on stream = []
=INFO REPORT==== 2008-03-30 16:04:54 ===
D(<0.330.0>:ejabberd_receiver:297) : Received XML on stream = []
=INFO REPORT==== 2008-03-30 16:04:55 ===
D(<0.330.0>:ejabberd_receiver:297) : Received XML on stream = "<stream:stream to=\"fr.mydomain.com\" xmlns=\"jabber:client\" xmlns:stream=\"http://etherx.jabber.org/streams\" version=\"1.0\" >"
=INFO REPORT==== 2008-03-30 16:04:55 ===
D(<0.331.0>:ejabberd_c2s:1335) : Send XML on stream = "<?xml version='1.0'?><stream:stream xmlns='jabber:client' xmlns:stream='http://etherx.jabber.org/streams' id='356624423' from='fr.mydomain.com' version='1.0' xml:lang='en'>"
=INFO REPORT==== 2008-03-30 16:04:55 ===
D(<0.331.0>:ejabberd_c2s:1335) : Send XML on stream = "<stream:features><mechanisms xmlns='urn:ietf:params:xml:ns:xmpp-sasl'><mechanism>PLAIN</mechanism></mechanisms><register xmlns='http://jabber.org/features/iq-register'/></stream:features>"
=INFO REPORT==== 2008-03-30 16:04:55 ===
D(<0.330.0>:ejabberd_receiver:297) : Received XML on stream = "<auth mechanism=\"PLAIN\" xmlns=\"urn:ietf:params:xml:ns:xmpp-sasl\">Y3B1ZWNoQGZyLmFtcGxleGlvLm5ldABjcHVlY2gAa2V5bG9jUF6Dv9a=</auth>"
=INFO REPORT==== 2008-03-30 16:04:55 ===
I(<0.331.0>:ejabberd_c2s:561) : ({socket_state,tls,{tlssock,#Port<0.366>,#Port<0.375>},<0.330.0>}) Failed authentication for
=INFO REPORT==== 2008-03-30 16:04:55 ===
D(<0.331.0>:ejabberd_c2s:1335) : Send XML on stream = "<failure xmlns='urn:ietf:params:xml:ns:xmpp-sasl'><not-authorized/></failure>"
=INFO REPORT==== 2008-03-30 16:04:57 ===
D(<0.330.0>:ejabberd_receiver:297) : Received XML on stream = []
Does any one have any idea?
forgot to say that I'm using
forgot to say that I'm using ejabberd 2.0.0 and openldap 2.3.38