we use a ldaps connection for user authentication in our xwiki settings, that worked well so far. Yesterday evening we upgraded our xwiki docker installation from version 13.10.5 to 13.10.9 and this morning two users complained about login issues. One of these users changed his ldap password, it didn’t fix the login issue. The logs say, that we have 16 different users with successful logins and 4 users with ‘Authentication failure with login’.
Looking forward to your response and some good ideas. Thanks!
Falk
1/ Can you confirm whether those users have local accounts, or accounts populated from your ldap server?
2/ Does the old password work when logging into xwik via the ldap account?
3/ Are the users with the login problem in the same part of the ldap directory tree as the users without a problem?
I don’t know what the problem is, so you may have to enable the debugging on the ldap connector to get the information you need to debug why their logins are not working.
hi, the problem was, that the ldap response was truncated somewhere. so the users that weren’t able to login have not been included into the ldap response string, that was shown in the xwiki debug log. we modified the ldap filter. after that the missing users are included into the response and can successfully login now.
thanks for your support