Bugzilla with LDAP fails - Failing to login with AD user

Hi,

I have been trying to integrate Bugzilla with Active directory and have below configuration set. Error: The login or password you entered is not valid.

The access log showing no error, showing 201 as status code. Any help is much appreciated.

1. LDAP is enabled.
2. LDAP configuration is set as below
   LDAPserver = test-domain.com
   LDAPbinddn = CN=Mansing Shinde,OU=Users,OU=test-domain,DC=test-domain,DC=com:<password>
   LDAPBaseDN = OU=Users,OU=test-domain,DC=test-domain,DC=com
   LDAPuidattribute = SamAccountName
   LDAPmailattribute = mail

Thank you.
0
maan
8/7/2019 4:07:00 AM
mozilla.support.bugzilla 10091 articles. 0 followers. Post Follow

5 Replies
8 Views

Similar Articles

[PageSpeed] 45

Guten Tag maan sing,
am Mittwoch, 7. August 2019 um 06:07 schrieben Sie:

> I have been trying to integrate Bugzilla with Active directory and
> have below configuration set. Error: The login or password you entered is=
 not valid.

This means searching your LDAP was successfully in general, but either
your username wasn't found or the password is incorrect. Bugzilla
first searches LDAP for the username and then verifies the password by
binding to the LDAP using the formerly found distinguished name and
the password one has entered. Only if both of these operations
succeed, login is granted. You can simply lookup the details in the
following function:

> Bugzilla::Auth::Verify::check_credentials

So I suggest double checking your LDAPuidattribute and what you
actually input into the login form, especially things like "username"
vs. "username@example.com" etc. The fields configured for
LDAPuidattribute should normally contain "username" only and
LDAPmailattribute should contain "username@example.com". So depending
on how you want to login, you might use "mail" as LDAPuidattribute and
make LDAPmailattribute empty or such.

Mit freundlichen Gr=FC=DFen,

Thorsten Sch=F6ning

--=20
Thorsten Sch=F6ning       E-Mail: Thorsten.Schoening@AM-SoFT.de
AM-SoFT IT-Systeme      http://www.AM-SoFT.de/

Telefon...........05151-  9468- 55
Fax...............05151-  9468- 88
Mobil..............0178-8 9468- 04

AM-SoFT GmbH IT-Systeme, Brandenburger Str. 7c, 31789 Hameln
AG Hannover HRB 207 694 - Gesch=E4ftsf=FChrer: Andreas Muchow

0
windows
8/7/2019 7:13:42 AM
On Wednesday, August 7, 2019 at 12:43:55 PM UTC+5:30, Thorsten Sch=C3=B6nin=
g wrote:
> Guten Tag maan sing,
> am Mittwoch, 7. August 2019 um 06:07 schrieben Sie:
>=20
> > I have been trying to integrate Bugzilla with Active directory and
> > have below configuration set. Error: The login or password you entered =
is not valid.
>=20
> This means searching your LDAP was successfully in general, but either
> your username wasn't found or the password is incorrect. Bugzilla
> first searches LDAP for the username and then verifies the password by
> binding to the LDAP using the formerly found distinguished name and
> the password one has entered. Only if both of these operations
> succeed, login is granted. You can simply lookup the details in the
> following function:
>=20
> > Bugzilla::Auth::Verify::check_credentials
>=20
> So I suggest double checking your LDAPuidattribute and what you
> actually input into the login form, especially things like "username"
> vs. "username@example.com" etc. The fields configured for
> LDAPuidattribute should normally contain "username" only and
> LDAPmailattribute should contain "username@example.com". So depending
> on how you want to login, you might use "mail" as LDAPuidattribute and
> make LDAPmailattribute empty or such.
>=20
> Mit freundlichen Gr=C3=BC=C3=9Fen,
>=20
> Thorsten Sch=C3=B6ning
>=20
> --=20
> Thorsten Sch=C3=B6ning       E-Mail: Thorsten.Schoening@AM-SoFT.de
> AM-SoFT IT-Systeme      http://www.AM-SoFT.de/
>=20
> Telefon...........05151-  9468- 55
> Fax...............05151-  9468- 88
> Mobil..............0178-8 9468- 04
>=20
> AM-SoFT GmbH IT-Systeme, Brandenburger Str. 7c, 31789 Hameln
> AG Hannover HRB 207 694 - Gesch=C3=A4ftsf=C3=BChrer: Andreas Muchow

Hi, Thanks for your response, I have tried those permutations and combinati=
ons but still no go. Where would I put Bugzilla::Auth::Verify::check_creden=
tials  and try?

Thank you.
0
maan
8/7/2019 10:09:28 AM
Guten Tag maan sing,
am Mittwoch, 7. August 2019 um 12:09 schrieben Sie:

> Hi, Thanks for your response, I have tried those permutations and
> combinations but still no go.

That's not of much help... Instead it would be better to actually
provide how exactly your samAccountName looks like, which AD-field
stores mail addresses, what exactly you have configured for which
attempt to login, what exactly you have put into the Bugzilla login
form as username and password etc.

> Where would I put
> Bugzilla::Auth::Verify::check_credentials  and try?

You put it nowhere, it's there already and you can have a look at how
things work internally. Just have a look at the following file:

> Bugzilla\Auth\Verify\LDAP.pm

Mit freundlichen Gr=C3=BC=C3=9Fen,

Thorsten Sch=C3=B6ning

--=20
Thorsten Sch=C3=B6ning       E-Mail: Thorsten.Schoening@AM-SoFT.de
AM-SoFT IT-Systeme      http://www.AM-SoFT.de/

Telefon...........05151-  9468- 55
Fax...............05151-  9468- 88
Mobil..............0178-8 9468- 04

AM-SoFT GmbH IT-Systeme, Brandenburger Str. 7c, 31789 Hameln
AG Hannover HRB 207 694 - Gesch=C3=A4ftsf=C3=BChrer: Andreas Muchow

0
utf
8/7/2019 12:01:28 PM
On Wednesday, 7 August 2019 17:31:43 UTC+5:30, Thorsten Sch=C3=B6ning  wrot=
e:
> Guten Tag maan sing,
> am Mittwoch, 7. August 2019 um 12:09 schrieben Sie:
>=20
> > Hi, Thanks for your response, I have tried those permutations and
> > combinations but still no go.
>=20
> That's not of much help... Instead it would be better to actually
> provide how exactly your samAccountName looks like, which AD-field
> stores mail addresses, what exactly you have configured for which
> attempt to login, what exactly you have put into the Bugzilla login
> form as username and password etc.
>=20
> > Where would I put
> > Bugzilla::Auth::Verify::check_credentials  and try?
>=20
> You put it nowhere, it's there already and you can have a look at how
> things work internally. Just have a look at the following file:
>=20
> > Bugzilla\Auth\Verify\LDAP.pm
>=20
> Mit freundlichen Gr=C3=BC=C3=9Fen,
>=20
> Thorsten Sch=C3=B6ning
>=20
> --=20
> Thorsten Sch=C3=B6ning       E-Mail: Thorsten.Schoening@AM-SoFT.de
> AM-SoFT IT-Systeme      http://www.AM-SoFT.de/
>=20
> Telefon...........05151-  9468- 55
> Fax...............05151-  9468- 88
> Mobil..............0178-8 9468- 04
>=20
> AM-SoFT GmbH IT-Systeme, Brandenburger Str. 7c, 31789 Hameln
> AG Hannover HRB 207 694 - Gesch=C3=A4ftsf=C3=BChrer: Andreas Muchow

Sorry for the delay in reply. Further to your last response, I did cross ch=
eck the attributes name of Email and found the one I had in Bugzilla config=
uration is incorrect, so I entered the correct one and issue has been fixed=
, your response was really helpful so BIH THANK YOU. Great help buddy!
0
mansingshinde86
8/9/2019 6:36:59 AM
Guten Tag mansingshinde86@gmail.com,
am Freitag, 9. August 2019 um 08:36 schrieben Sie:

> Sorry for the delay in reply. Further to your last response, I did
> cross check the attributes name of Email and found the one I had in
> Bugzilla configuration is incorrect, so I entered the correct one
> and issue has been fixed, your response was really helpful so BIH THANK Y=
OU. Great help buddy!

Good news, but for the next time please be so kind exactly telling us
what was incorrect. Simply because others might make the same error
and currently still don't know what to look at exactly. :-)

Mit freundlichen Gr=C3=BC=C3=9Fen,

Thorsten Sch=C3=B6ning

--=20
Thorsten Sch=C3=B6ning       E-Mail: Thorsten.Schoening@AM-SoFT.de
AM-SoFT IT-Systeme      http://www.AM-SoFT.de/

Telefon...........05151-  9468- 55
Fax...............05151-  9468- 88
Mobil..............0178-8 9468- 04

AM-SoFT GmbH IT-Systeme, Brandenburger Str. 7c, 31789 Hameln
AG Hannover HRB 207 694 - Gesch=C3=A4ftsf=C3=BChrer: Andreas Muchow

0
utf
8/9/2019 8:37:03 AM
Reply: