LDAP connection trouble

hannes_brt · October 5, 2015, 1:47pm

I have trouble authenticating Rancher using LDAP. I’m using a straightforward OpenLDAP server rather than Active Directory and the “Default Login Domain” seems to create problems with authentication. I typically authenticate a user with cn=username,dc=mydomain,dc=com. When I set “Default Login Domain” to mydomain.com the error message on my LDAP server is

openldap_1     | 5611ff17 conn=1243 fd=26 ACCEPT from IP=54.236.229.91:53391 (IP=172.17.0.1:389)
openldap_1     | 5611ff17 conn=1243 op=0 do_bind: invalid dn (mydomain.com\username)
openldap_1     | 5611ff17 conn=1243 op=0 RESULT tag=97 err=34 text=invalid DN
openldap_1     | 5611ff17 conn=1243 fd=26 closed (connection lost)

I see that Rancher is trying to authenticate using the Windows-like “DOMAIN\user” syntax, but I don’t know how to configure my OpenLDAP server to accept that.

denise · October 5, 2015, 4:25pm

There is an open issue to get OpenLDAP working.

Topic		Replies	Views
Can't get LDAP auth working Rancher 2.x	6	8497	April 3, 2020
LDAP support on Rancher v0.35.0 Rancher 1.x	17	4745	June 3, 2016
Error connecting to an external server OpenLDAP Rancher 1.x	1	1511	November 6, 2015
[Help needed] Rancher and OpenLDAP Groups Rancher 1.x	0	984	December 6, 2017
Issues with LDAP groups - v1.4.1 Rancher 1.x	1	1281	March 3, 2017

LDAP connection trouble

Related Topics