Re: ejabberd and ldap

To: lista debian-edu progetto <debian-edu@lists.debian.org>
Subject: Re: ejabberd and ldap
From: Petter Reinholdtsen <pere@hungry.com>
Date: Thu, 3 Jun 2010 12:17:24 +0200
Message-id: <[🔎] 20100603101724.GE23722@login1.uio.no>
In-reply-to: <[🔎] 4C077D60.6070103@seebergit.dk>
References: <[🔎] 4C077D60.6070103@seebergit.dk>

[Joakim Seeberg]
> Hi, what do I need to change below to make ejabberd authenticate
> against ldap.

Not sure, but here are some proposals:

> %% List of LDAP servers:
> {ldap_servers, ["tjener.intern"]}.

Use ldap.intern instead, to make it easier to relocate the LDAP
service using a DNS change.

> %%
> %% Encryption of connection to LDAP servers (LDAPS):
> {ldap_encrypt, tls}.

Do you need to add certificate information?  The server certificate is
in /etc/ldap/ssl/.  TLS/certificate problems is the most common
problem with authentication, so I would start here.

> %% LDAP filter:
> {ldap_filter, "(objectClass=shadowAccount)"}.

I thought we used posixAccount.  Suspect shawodAccount work too.

Happy hacking,
-- 
Petter Reinholdtsen

Reply to:

Follow-Ups:
- Re: ejabberd and ldap
  - From: Jonas Smedegaard <dr@jones.dk>

References:
- ejabberd and ldap
  - From: Joakim Seeberg <kontakt@seebergit.dk>

Prev by Date: ejabberd and ldap
Next by Date: Re: ejabberd and ldap
Previous by thread: ejabberd and ldap
Next by thread: Re: ejabberd and ldap
Index(es):
- Date
- Thread