Ask Your Question
0

What changed in SDC LDAP auth for 3.0.2 (from 2.7.1)

asked 2018-01-14 01:07:50 -0500

mstang gravatar image

Hi,
I just upgraded to 3.0.2 from 2.7.1 but now my ldap authentication (to freeipa) is broken and I'm trying to figure out why and what changed... I now get j_security_check added to my URL and a "Log in Failed" box.

testing with ldapsearch I can test sucessfully: ldapsearch -LLL -H ldap://hostname:389 -x -D "uid=username,cn=users,cn=accounts,dc=nj,dc=us,dc=eld,dc=company,dc=se" -W -b "cn=groups,cn=accounts,dc=nj,dc=us,dc=eld,dc=company,dc=se" "(&(objectClass=groupofnames)(member="uid=username,cn=users,cn=accounts,dc=nj,dc=us,dc=eld,dc=company,dc=se"))"

LDAP config looks like: ldap {
com.streamsets.datacollector.http.LdapLoginModule required
debug="true"
useLdaps="false"
useStartTLS="false"
contextFactory="com.sun.jndi.ldap.LdapCtxFactory"
hostname="hostname"
port="389"
authenticationMethod="simple"
bindDn="uid=sdc_search,cn=users,cn=accounts,dc=nj,dc=us,dc=eld,dc=company,dc=se"
bindPassword="password"
forceBindingLogin="true"
userBaseDn="cn=users,cn=accounts,dc=nj,dc=us,dc=eld,dc=company,dc=se"
userRdnAttribute="uid"
userIdAttribute="uid"
userPasswordAttribute="userPassword"
userObjectClass="inetorgperson"
userFilter="uid={uid}"
roleBaseDn="cn=groups,cn=accounts,dc=nj,dc=us,dc=eld,dc=company,dc=se"
roleNameAttribute="cn"
roleMemberAttribute="member"
roleObjectClass="groupofnames"
roleFilter="uid={uid},cn=users,cn=accounts,dc=nj,dc=us,dc=eld,dc=company,dc=se";
};

The new parameters were roleFilter and userFilter as far as I can tell... any ideas? userFilter was the only new param not used in the LDAP setup tests in the docs, so it's the one I'm least sure of.
Turned on debugging but counldn't figure out where to get info from it.

All of the tests in the docs had typos, they are missing the "" around the filter and they are also missing the ) at the end of the filter. https://streamsets.com/documentation/...

edit retag flag offensive close merge delete

1 Answer

Sort by ยป oldest newest most voted
0

answered 2018-01-14 12:52:05 -0500

mstang gravatar image

nvm, I found I had problems in my updating of sdc.properties. Once that was cleared up I was able to find the correct values ended up being the defaults (uid={user} and member={dn})

edit flag offensive delete link more
Login/Signup to Answer

Question Tools

1 follower

Stats

Asked: 2018-01-14 01:07:50 -0500

Seen: 29 times

Last updated: Jan 14