[racktables-users] Re: LDAP stopped working
- From: "Ragsdale, Justin" <ragsdalej@xxxxxxx>
- To: "racktables-users@xxxxxxxxxxxxx" <racktables-users@xxxxxxxxxxxxx>
- Date: Wed, 30 Jul 2014 19:59:44 +0000
We don't have our passwords set to never expire with the exception of the LDAP
service account. Any log file that would be beneficial for us to look at?
Justin Ragsdale * Director of Network Operations * Technology Services *
Wentworth Institute of Technology * 550 Huntington Ave, Boston MA 02115 *
Lync/Voice 617-989-4584 * Fax 617-989-4502 * email/im ragsdalej@xxxxxxx *
www.wit.edu/dts * Follow us on Twitter @ DTSatWIT
Think before you print
CONFIDENTIALITY: This e-mail (including any attachments) may contain
confidential, proprietary and privileged information, and unauthorized
disclosure or use is prohibited. If you received this e-mail in error, please
notify the sender and delete this e-mail from your system.
-----Original Message-----
From: racktables-users-bounce@xxxxxxxxxxxxx
[mailto:racktables-users-bounce@xxxxxxxxxxxxx] On Behalf Of Brian Menges
Sent: Wednesday, July 30, 2014 2:54 PM
To: racktables-users@xxxxxxxxxxxxx
Subject: [racktables-users] Re: LDAP stopped working
Is the user associated with the LDAP setup set to have a never expiring
password? This is often missed, and the password expires making integration
endpoints stop working in strange ways.
~B
---------------------------------------------------------
Brian S. Menges
________________________________
From: racktables-users-bounce@xxxxxxxxxxxxx
[racktables-users-bounce@xxxxxxxxxxxxx] on behalf of Ragsdale, Justin
[ragsdalej@xxxxxxx]
Sent: Wednesday, July 30, 2014 11:43
To: racktables-users@xxxxxxxxxxxxx
Subject: [racktables-users] Re: LDAP stopped working
Thank you Matthew. We have a database backup from the 24th that we could
restore, although I don’t think it’s a database issue. Otherwise we can install
again and do a restore but rather not have to do that with some of our
customizations.
1. There haven’t been any raccode changes
2. Yes LDAP is authenticating
3. No recent GPOs or patches preformed (was working on a Friday and
stopped working on a Monday)
4. LDAP
$LDAP_options = array
(
'server' => 'ldaps://sldap.wit.edu:636',
'domain' => 'wit.edu',
'search_attr' => 'sAMAccountName',
'search_dn' => 'dc=wit,dc=private', // The following
credentials will be used when searching for the user's DN:
'search_bind_rdn' => 'CN=LDAP-RACKTABLES,OU=WIT System
Accounts,DC=wit,DC=private',
'search_bind_password' => '*************',
'displayname_attrs' => 'givenName sn',
'options' => array (LDAP_OPT_PROTOCOL_VERSION => 3,
LDAP_OPT_REFERRALS => 0),
'use_tls' => 0, // 0 == don't attempt, 1 == attempt, 2
== require
);
5. For the error message it keeps trying eventually it gives the HTML
banner that we have in the secret.php file.
Justin Ragsdale * Director of Network Operations * Technology Services *
Wentworth Institute of Technology * 550 Huntington Ave, Boston MA 02115 *
Lync/Voice 617-989-4584<tel:6179894584> * Fax 617-989-4502 * email/im
ragsdalej@xxxxxxx<mailto:ragsdalej@xxxxxxx> *
www.wit.edu/dts<http://www.wit.edu/dts> * Follow us on Twitter @
DTSatWIT<http://twitter.com/DTSatWIT>
P Think before you print
CONFIDENTIALITY: This e-mail (including any attachments) may contain
confidential, proprietary and privileged information, and unauthorized
disclosure or use is prohibited. If you received this e-mail in error, please
notify the sender and delete this e-mail from your system.
From: racktables-users-bounce@xxxxxxxxxxxxx
[mailto:racktables-users-bounce@xxxxxxxxxxxxx] On Behalf Of Matthew Castanien
Sent: Tuesday, July 29, 2014 6:52 PM
To: racktables-users@xxxxxxxxxxxxx
Cc: racktables-users@xxxxxxxxxxxxx
Subject: [racktables-users] Re: LDAP stopped working
1. Anyone make raccode changes?
2. Have you used something like softerra's ldap browser and validate the user
binding for racktables is authenticating?
3. any group policy changes or patches auto installed on DCs?
4. Can you provide the ldap section, minus password, from your racktables
config?
5. What is the error message in the Browser?
Matthew Castanien
Sent from my phone
On Jul 29, 2014, at 6:33 PM, "Ragsdale, Justin"
<ragsdalej@xxxxxxx<mailto:ragsdalej@xxxxxxx>> wrote:
Today our LDAP authentication stopped working on our racktables 0.20.5 install.
As far as we can tell no changes were made to our racktables
installation/config files or our active directory environment. Out local admin
account is still working. Any suggestions of what could have caused this? We
did a quick look through the apache logs and didn’t see anything in there that
was helpful.
Justin Ragsdale * Director of Network Operations * Technology Services *
Wentworth Institute of Technology * 550 Huntington Ave, Boston MA 02115 *
Lync/Voice 617-989-4584<tel:6179894584> * Fax 617-989-4502 * email/im
ragsdalej@xxxxxxx<mailto:ragsdalej@xxxxxxx> *
www.wit.edu/dts<http://www.wit.edu/dts> * Follow us on Twitter @
DTSatWIT<http://twitter.com/DTSatWIT>
P Think before you print
CONFIDENTIALITY: This e-mail (including any attachments) may contain
confidential, proprietary and privileged information, and unauthorized
disclosure or use is prohibited. If you received this e-mail in error, please
notify the sender and delete this e-mail from your system.
________________________________
The information contained in this message, and any attachments, may contain
confidential and legally privileged material. It is solely for the use of the
person or entity to which it is addressed. Any review, retransmission,
dissemination, or action taken in reliance upon this information by persons or
entities other than the intended recipient is prohibited. If you receive this
in error, please contact the sender and delete the material from any computer.
Other related posts:
