View Issue Details

WikiJump to Notes
IDProjectCategoryView StatusDate SubmittedLast Update
0017688mantisbtauthenticationpublic2014-09-22 03:572015-01-15 16:18
Reporteranshley Assigned Todregad  
PrioritynormalSeverityminorReproducibilityhave not tried
Status closedResolutionno change required 
Platformmantisbt-1.2.17 
Product Version1.2.17 
Summary0017688: LDAP AUTHENTICATION
Description

As per below logs, authentication is successful but still user is unable to log(Error: Your account may be disabled or blocked or the username/password you entered is incorrect.)
At table level, user is enabled.
Logs:
2014-09-22 09:46 CEST ldap Binding to LDAP server
2014-09-22 09:46 CEST ldap Attempting connection to LDAP URI 'ldap://srv2.xx.mu:389'.
2014-09-22 09:46 CEST ldap Connection accepted by LDAP server
2014-09-22 09:46 CEST ldap Setting LDAP protocol version to 3
2014-09-22 09:46 CEST ldap Attempting bind to ldap server with username and password
2014-09-22 09:46 CEST ldap Bind to ldap server successful
2014-09-22 09:46 CEST ldap Searching for (&( sAMAccountName=j_smith))
2014-09-22 09:46 CEST ldap Checking CN=john Smith,CN=Users,DC=xxx,DC=mu
2014-09-22 09:46 CEST ldap Unbinding from LDAP server
2014-09-22 09:46 CEST ldap User 'j_smith' authenticated

Config

$g_login_method = LDAP ;
$g_reauthentication = OFF;
$g_allow_signup=OFF;
$g_ldap_server = 'ldap://srv2.xx.mu:389';
#$g_ldap_root_dn = 'ou=staffs,dc=xxx,dc=mu' ;
$g_ldap_root_dn = 'ou=staffs,dc=xxx,dc=mu' ;
$g_ldap_protocol_version = 3;
$g_ldap_bind_dn = 'CN=otrs,OU=Staffs,DC=xxx,DC=mu';
$g_ldap_bind_passwd = '****';
$g_ldap_uid_field = ' sAMAccountName';
$g_use_ldap_email = ON;
$g_use_ldap_realname = ON;
$g_ldap_organization = '';
$g_ldap_realname_field = 'cn';

TagsNo tags attached.

Activities

dregad

dregad

2014-09-22 05:37

developer   ~0041265

Did you check if there have been too many failed login attempts for this account ?
anshley

anshley

2014-09-22 05:55

reporter   ~0041267

I have tried with different users and also i have tried to reset failed login count. Still same issue.
anshley

anshley

2014-09-30 02:52

reporter   ~0041320

Any Update pls
dregad

dregad

2014-09-30 06:34

developer   ~0041322

Based on the log data you provided, the LDAP authentication is successful (function ldap_authenticate_by_username()); consequently, the login failure must occur later in auth_attempt_login().

It's quite difficult to troubleshoot this remotely, so I suggest you look at (trace) the code in authentication_api.php to identify what is causing the login to fail.
anshley

anshley

2014-09-30 09:30

reporter   ~0041325

Dear Dregad,
As per my understanding, i need to create user on Mantis(with same user name as ldap) and login with this specific user.(Correct me if am wrong)
With above logs, i tried login with a login i have not created on Mantis.

But when login with a user that exist both on Mantis and Ldap, no logs are being generated but error message "Your account may be disabled or blocked or the username/password you entered is incorrect." is being displayed

Any idea where i should look?
dregad

dregad

2014-09-30 10:45

developer   ~0041326

If your system is configured for LDAP, Mantis should automatically create the user record for you upon successful authentication. However if the user already exists in Mantis, it should use it.

Could it be an issue with case sensitivity (of the username and/or the password) ?
dregad

dregad

2014-12-29 18:20

developer   ~0042075

anshley,

You did not provide any feedback; I am therefore resolving this issue as "no change required".

Feel free to reopen the issue at a later time and provide the requested information.