LDAP enable SSO error

Help / Discuss
,
1

I’m not able to enable ldap sso and i’m getting error as shared my details below. kindly support us!

LDAP enable SSO error

extension link: https://extensions.xwiki.org/xwiki/bin/view/Extension/LDAP/Authenticator/
xwiki 15.7
tomcat 9

configuration:

xwiki.authentication.authclass=com.xwiki.activedirectory.internal.ActiveDirectoryAuthServiceImpl
xwiki.authentication.ldap=1
xwiki.authentication.ldap.trylocal=1
xwiki.authentication.ldap.server=
xwiki.authentication.ldap.port=
xwiki.authentication.ldap.bind_DN=CN=company\user,OU=Users,DC=corp,DC=company,DC=com
xwiki.authentication.ldap.bind_pass=
xwiki.authentication.ldap.fields_mapping=name=sAMAccountName,last_name=sn,first_name=GivenName,email=mail,ldap_dn=dn
xwiki.authentication.ldap.update_user=1

Test

Hit the URL and login with company email and system password is not working

Logs from tomcat:

[2023-09-22 16:39:29] [info] 2023-09-22 16:39:29,442 [http-nio-443-exec-10 - URL/xwiki/bin/logi n/XWiki/XWikiLogin?xredirect=%2Fxwiki%2Fbin%2Fview%2FXWiki%2F%2524escapetool.xml%2528%2524ssxHref%2529] DEBUG x.c.l.XWikiLDAPAu thServiceImpl - The provided user is null. We don’t try to authenticate, it probably means the user is in non logged mode.
22581 [2023-09-22 16:39:29] [info] 2023-09-22 16:39:29,443 [http-nio-443-exec-10 - URL/xwiki/bin/logi n/XWiki/XWikiLogin?xredirect=%2Fxwiki%2Fbin%2Fview%2FXWiki%2F%2524escapetool.xml%2528%2524ssxHref%2529] DEBUG x.c.l.XWikiLDAPAu thServiceImpl - XWikiUser: null

2

Nop, you are not using the generic LDAP authenticator here. You might want to check again the documentation you linked for the class you are supposed to use.

Those are not errors, it’s just telling you it does not have any credential to authenticate. Have you actually tried to login ?

3

Thanks for your swift response.

Even I’ve tested with following generic LDAP configuration is not working.

xwiki.authentication.authclass=org.xwiki.contrib.ldap.XWikiLDAPAuthServiceImpl
xwiki.authentication.ldap=1
xwiki.authentication.ldap.trylocal=1
xwiki.authentication.ldap.server=IP address
xwiki.authentication.ldap.port=389
xwiki.authentication.ldap.bind_DN=cn=username,OU=Users,DC=corp,DC=company,DC=com
xwiki.authentication.ldap_base_DN=
xwiki.authentication.ldap.bind_pass=password
xwiki.authentication.ldap.fields_mapping=name=sAMAccountName,last_name=sn,first_name=GivenName,email=mail,ldap_dn=dn
xwiki.authentication.ldap.update_user=1

if you share some example configuration would be helpful to implement in our organization.

Thanks in advance and looking forward your response :slight_smile:

4

You have plenty of those on https://extensions.xwiki.org/xwiki/bin/view/Extension/LDAP/Authenticator/UseCases/.

But as indicated in the documentation, the best is to enable debug log (which you seem to have done) and login to see step by step what works and what does not during the authentication.

5

We have changed few settings, now it is working ifne. BTW @tmortagne thanks for your support.