[mitreid-connect] ldap-openid-connect-server questions

Richer, Justin P. jricher at mitre.org
Tue Nov 18 16:41:36 EST 2014 

Adam,

The mitreid-connect at mit.edu<mailto:mitreid-connect at mit.edu> list is the right list. If you join the list before posting, your posts won't get put in the moderator queue in the future.

As for the LDAP configuration, here's an example of one that's used in production right now at MIT:

https://github.com/MIT-Mobile/oidc.mit.edu/blob/master/oidc-mit-overlay/src/main/webapp/WEB-INF/user-context.xml

You might want to turn up the debugging in the server, and look at the Tomcat log files to see what's going wrong (like catalina.out).

 -- Justin

On Nov 18, 2014, at 2:16 PM, Adam Singer <adam.singer at duke.edu<mailto:adam.singer at duke.edu>> wrote:

Hello MITREid Connect group!

We’re trying to set up the ldap-openid-connect-server project for local testing to see if it will meet our needs for authentication. I don’t see a forum or other means to submit questions directly on the site or I would start there. Please let me know if there is a better resource to work with. I don’t know the social rules of github so apologize, too, if connecting this way is a faux pas.

I’ve been able to compile the code and get the site running in a local Tomcat 8 instance. However, when I navigate to the site I can’t log in no matter what changes I make to the user-context.xml file. I’ve set the server:ldap-server url to our domain, added my name (in several syntaxes) to the admins property set, and try adding userDn and password properties to the contextSource bean (as well as setting the url and base to appropriate values).

Can you provide any pointers to where I could look for logs or any other settings to tweak? I don’t see anything being written on failed attempts that would clue me in to what’s still not connecting properly.

Thank you in advance for any help you can provide-

Cheers,
Adam Singer
Developer 3, Tech Lead
Duke University Health System
adam.singer at duke.edu<mailto:adam.singer at duke.edu>; (919) 668-0596

P.S. I first emailed 'mitreid-connect at mit.edu<mailto:mitreid-connect at mit.edu>' (listed on https://github.com/mitreid-connect) but received a notice back that my message is awaiting moderator approval since I’m not in the list. Apologies if you receive this twice.

-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://mailman.mit.edu/pipermail/mitreid-connect/attachments/20141118/0077d2e2/attachment.htm

More information about the mitreid-connect mailing list