Homepage | Products | OX Knowledge Base | Support | Try Now | Contact | Company
OX Logo
Page 1 of 2 12 LastLast
Results 1 to 10 of 12
  1. #1
    linux-mad Guest

    Cool Open-Xchange 6 & Active Directory

    Dear OX Pros,
    I went through all the guide to set up OX6 on ubuntu 8.10 and it works fine. Now I'm trying to authenticate users to our AD through "OX LDAP Sync". Again I went through all the steps in that guide at least the one I understand. Unfortunately up to now I could not get any good results. what I try to login I got this in the log-file:
    Code:
    25 Feb, 2009 9:34:56 AM com.openexchange.ajax.Login doGet
    SEVERE: LGI-0005 Category=5 Message=Login not possible at the moment. Please try again later. exceptionID=1334134695-4
    LGI-0005 Category=5 Message=Login not possible at the moment. Please try again later. exceptionID=1334134695-4
    .......
    Caused by: javax.naming.CommunicationException: localhost:389 [Root exception is java.net.ConnectException: Connection refused]
    .....
    Caused by: java.net.ConnectException: Connection refused
    I like to find out something; as you say "OX LDAP Sync" is not a direct authenticate to our AD it just copy the users details form AD to the OX. Hence, should not OX has also an Openldap server or what?. sorry for this dump Q!!. Again, how that "ldapauth.properties" could authinticate to an ldap-server while OX doesn't have one??!
    here is my "ldapauth.properties":
    Code:
    java.naming.provider.url=ldap://localhost:389/dc=example,dc=edu
    java.naming.security.authentication=simple
    com.sun.jndi.ldap.connect.timeout=10000
    com.sun.jndi.ldap.read.timeout=10000
    uidAttribute=uid
    baseDN=ou=Users,ou=OxObjects,dc=example,dc=edu
    Also to mention that "oxldapsync.pl" works fine and I got all the users I need. Also here is how I configure the "ldapsyn-ads.conf ".
    Code:
    ....
    userbasedn              = ou=IT,dc=example,dc=edu
    groupbasedn             = ou=IT,dc=example,dc=edu
    ...
    Last edited by linux-mad; 02-25-2009 at 08:17 AM.

  2. #2
    Join Date
    Feb 2007
    Location
    Germany
    Posts
    3,695

    Default

    Hi,

    OX does not provide an LDAP Service, therefor you'll need to configure an (existing) external LDAP service for authentication.

  3. #3
    Carsten Hoeger is offline Open-Xchange Professional Services
    Join Date
    Mar 2007
    Posts
    703

    Default

    The OX authentication-ldap module just does what you did configure. It connects to an ldap server running on the local host, which obviously isn't the case... :-)

    Your AD does not run on the same machine, I'm quite sure.

    OX needs to authenticate against an external LDAP server, e.g. AD, check http://www.open-xchange.com/wiki/ind...#Prerequisites for more information.
    Last edited by Carsten Hoeger; 02-25-2009 at 10:00 AM.
    OXpedia.org - the answer to almost all questions.

  4. #4
    linux-mad Guest

    Default

    Very grateful to your replies guys. What I got is that I have to install an Ldap server in my OX machine, so it could authenticate via it. So is this the logic:

    * "oxldapsync.pl" will copy user details from the REAL External AD using the configuration in ldapsyn-ads.conf.
    * I have to install an LDAP-server in OX machine so OX could authenticate to it.
    ............
    ?? but then how the ldap-server in my OX machine will get the list of the users. Does "oxldapsync.pl" feed it..???

    Or what?

  5. #5
    Carsten Hoeger is offline Open-Xchange Professional Services
    Join Date
    Mar 2007
    Posts
    703

    Default

    oxldapsync feeds the ox database, not another ldap server, as documented at http://www.open-xchange.com/wiki/ind...LDAPSync_Guide

    You still need the external ldap server to authenticate against it, as documented at http://www.open-xchange.com/wiki/ind...#Prerequisites
    OXpedia.org - the answer to almost all questions.

  6. #6
    linux-mad Guest

    Default

    Very clear now, I thought that before too, but reading a thread about undirect auth with AD server mixes things in my mind. Nevermore, now I keep getting this message "Login failed. Please check your user name and password and try again". I don't know where the problem is it in my "ldapauth.properties" or it is time to do something with "ldap.properties". By the way how really should that last file look like, there is no guide about it.

  7. #7
    linux-mad Guest

    Default

    Guys, Help,

    I'm still not able to authenticate against our Active Directory. I have tried all the possible tricks in "ldapauth.properties", but it still not working!!

    Any body could explain it in a very boring detail how to set up the "ldapauth.properties" putting all the options and the tricks that it could possibly setup-ed in our stupid Active Directory server.!!

  8. #8
    linux-mad Guest

    Unhappy

    Hi folks,

    Sorry, but was my Q that hard?, or it turns that I'm so much dump that I should not ask???!?!?

    I really like Open Source stuff and Linux world, I dream of seeing all the world using LINUX only not the MS crap systems. I'm working in environment with MS everywhere, but I promised our Network Admin to find a good real stable solution for our MS-Exchange E-mail server problem. so please help me...

  9. #9
    Carsten Hoeger is offline Open-Xchange Professional Services
    Join Date
    Mar 2007
    Posts
    703

    Default

    Sorry, never did such stuff.
    You might want to contact rccsoftware/sourcegarden directly:

    http://www.open-xchange.com/forum/member.php?u=3822

    http://www.sourcegarden.de/kontakt.html

    They did the implementation of oxldapsync
    OXpedia.org - the answer to almost all questions.

  10. #10
    linux-mad Guest

    Default ldap.properties

    Thanks for your help, unfortunately that website is in German and I barely know English lol. Even trying to translate it to English didn't work well. By the way how should I fix "ldap.properties" to fit out AD server needs?. what it is main job?. It possible that it is the problem that I can get my users authenticated against the AD server?!.

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •