Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

接入ldap,使用中有少部分用户无法连接。报错如下 #3345

Open
Daniel777777 opened this issue Oct 15, 2019 · 7 comments

Comments

@Daniel777777
Copy link

@Daniel777777 Daniel777777 commented Oct 15, 2019

2019-10-15 19:20:12 [signals_handlers DEBUG] Query 1 times using 0.00s terminal
2019-10-15 19:20:12 [signals_handlers DEBUG] Query 1 times using 0.00s terminal_task
2019-10-15 19:20:12 [signals_handlers DEBUG] Query 4 times using 0.00s total
2019-10-15 19:20:20 [ldap INFO] Authentication LDAP backend
2019-10-15 19:20:20 [ldap INFO] Authenticate user: None
2019-10-15 19:20:20 [signals_handlers DEBUG] Query 2 times using 0.00s users_user
2019-10-15 19:20:20 [signals_handlers DEBUG] Query 2 times using 0.00s total
2019-10-15 19:20:20 [signals_handlers DEBUG] Query 1 times using 0.00s captcha_captchastore
2019-10-15 19:20:20 [signals_handlers DEBUG] Query 1 times using 0.00s total

大多用户都是能够正常使用ldap的,只有少部分用户登录不上,出现该报错。
这些无法登陆的用户再ldap中是存在的,在堡垒机导入的ldap信息中也是能查到的,但是就是登不上。请帮忙看一下是啥情况。感谢

@BaiJiangJie

This comment has been minimized.

Copy link
Member

@BaiJiangJie BaiJiangJie commented Oct 17, 2019

看日志,应该是在 LDAP Server 端认证没有成功。

@Daniel777777

This comment has been minimized.

Copy link
Author

@Daniel777777 Daniel777777 commented Oct 17, 2019

redis缓存也都清空了,密码也重置过。其他接该ldap的平台都是能正常登录,只有堡垒机上不去。

@BaiJiangJie

This comment has been minimized.

Copy link
Member

@BaiJiangJie BaiJiangJie commented Oct 21, 2019

在 Jumpserver 的 LDAP 设置中,用户 OU 下大概有多少用户?

@Daniel777777

This comment has been minimized.

Copy link
Author

@Daniel777777 Daniel777777 commented Oct 23, 2019

在Jumpserver的LDAP设置中,用户OU下大概有多少用户?

超过500个

@BaiJiangJie

This comment has been minimized.

Copy link
Member

@BaiJiangJie BaiJiangJie commented Oct 28, 2019

image

@BaiJiangJie

This comment has been minimized.

Copy link
Member

@BaiJiangJie BaiJiangJie commented Oct 28, 2019

升级到 v1.5.4 版本,在 config.yml 文件中添加配置 :
AUTH_LDAP_OPTIONS_OPT_REFERRALS: 0
重启 Jumpserver,然后登录 LDAP 用户

@Daniel777777

This comment has been minimized.

Copy link
Author

@Daniel777777 Daniel777777 commented Oct 31, 2019

升级到v1.5.4版本,在config.yml文件中添加配置:
AUTH_LDAP_OPTIONS_OPT_REFERRALS:0
重新启动Jumpserver,然后登录LDAP用户

行 我先升级下1.5.4的新版本试试看

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Projects
None yet
2 participants
You can’t perform that action at this time.