Topic on Extension talk:LDAP Authentication

Incorrect password entered error - yet password is correct

2 comments • 10:53, 20 December 2017 6 years ago
2
MintSauce~mediawikiwiki (talkcontribs)

Hi,

I'm using MediaWiki 1.16.5 and the latest LdapAuthentication extensions from svn trunk on an Ubuntu server that already uses LDAP successfully with a Plone CMS and phpBB.

I've added the configuration below and as you can see from the logs, it seems to connect to LDAP fine (indeed, removing the config results in non-LDAP users being told their username doesn't exist), however, no user can login successfully, all are presented with the error: "Incorrect password entered. Please try again.". I've triple checked against the ldap db that the passwords are correct.

The only thing I can see that might be wrong in the logs is the capitalisation of the first letter of the uid.

Any ideas?

LocalSettings.php:

require_once($IP."/extensions/LdapAuthentication/LdapAuthentication.php");
$wgAuth = new LdapAuthenticationPlugin();
$wgLDAPDomainNames = array(
  'anonymous-coward'
);
$wgLDAPServerNames = array(
  'anonymous-coward' => '127.0.0.1'
);
$wgLDAPSearchStrings = array(
  'anonymous-coward' => 'uid=USER-NAME,ou=people,dc=anonymous-coward,dc=org'
);
$wgLDAPEncryptionType = array(
  "'anonymous-coward'"=>"clear"
  );
$wgLDAPDebug = 3;
$wgDebugLogGroups["ldap"] = "/tmp/ldapdebug.log" ;

Debug file:

2011-07-27 20:00:36  wikidb: 1.2e Entering validDomain
2011-07-27 20:00:36  wikidb: 1.2e User is using a valid domain (anonymous-coward).
2011-07-27 20:00:36  wikidb: 1.2e Setting domain as: anonymous-coward
2011-07-27 20:00:36  wikidb: 1.2e Entering getCanonicalName
2011-07-27 20:00:36  wikidb: 1.2e Username isn't empty.
2011-07-27 20:00:36  wikidb: 1.2e Munged username: Jbloggs
2011-07-27 20:00:36  wikidb: 1.2e Entering userExists
2011-07-27 20:00:36  wikidb: 1.2e
2011-07-27 20:00:36  wikidb: 1.2e Entering authenticate
2011-07-27 20:00:36  wikidb: 1.2e
2011-07-27 20:00:36  wikidb: 1.2e Entering Connect
2011-07-27 20:00:36  wikidb: 1.2e Using TLS or not using encryption.
2011-07-27 20:00:36  wikidb: 1.2e Using servers:  ldap://127.0.0.1
2011-07-27 20:00:36  wikidb: 1.2e Using TLS
2011-07-27 20:00:36  wikidb: 1.2e Failed to start TLS.
2011-07-27 20:00:36  wikidb: 1.2e Connected successfully
2011-07-27 20:00:36  wikidb: 1.2e Entering getSearchString
2011-07-27 20:00:36  wikidb: 1.2e Doing a straight bind
2011-07-27 20:00:36  wikidb: 1.2e userdn is: uid=Jbloggs,ou=people,dc=anonymous-coward,dc=org
2011-07-27 20:00:36  wikidb: 1.2e
2011-07-27 20:00:36  wikidb: 1.2e Binding as the user
2011-07-27 20:00:36  wikidb: 1.2e Failed to bind as uid=Jbloggs,ou=people,dc=anonymous-coward,dc=org
2011-07-27 20:00:36  wikidb: 1.2e with password: xxxxxx
2011-07-27 20:00:36  wikidb: 1.2e Entering allowPasswordChange
2011-07-27 20:00:36  wikidb: 1.2e Entering modifyUITemplate

This post was posted by MintSauce~mediawikiwiki, but signed as MintSauce.

Reply Edited by Flow talk page manager 02:28, 10 July 2015 8 years ago
Ryan lane (talkcontribs)

Well, this is obviously wrong:

$wgLDAPEncryptionType = array(
  "'anonymous-coward'"=>"clear"
  );

It should be:

$wgLDAPEncryptionType = array(
  "anonymous-coward"=>"clear"
  );
Reply 22:22, 22 August 2011 12 years ago
Reply to "Incorrect password entered error - yet password is correct"
Retrieved from "https://www.mediawiki.org/wiki/Topic:Q3hn0jzlngclyey5"