Hi Troy,

You can enable debugging for login by going to your.observium.hostname/debug - if you're logged out.

You'll need to enable the $config['web_debug_unprivileged'] configuration option (i.e. set it to TRUE) because by default we don't allow non-administrators to see debug information. It's a bit of a catch-22 as you can't be an administrator before logging in successfully, but the default is disabled (and i'd set it back once you've solved your issue) because you could leak LDAP server and content data to any unprivileged anonymous passerby.

Tom

On 04/08/2017 09:52, Troy wrote:
Happy end of the week!

I'm struggling with LDAP auth (we use Jumpcloud - so I think we have an added layer of weirdness to contend with).

I can't find any information about how to generate (or where it might end up) debugging output so I can work out what I am doing wrong.

I've configured the server details via the GUI and the config.php file has:

$config['auth_mechanism'] = "ldap";    // default, other options: ldap, http-auth, please see documentation for config help
$config['auth_ldap_binddn'] = "uid=ldap,ou=Users,o={AN_ACTUAL_VALUE},dc=jumpcloud,dc=com"; // Initial LDAP bind dn and password, leave empty for bind with user's dn
$config['auth_ldap_bindpw'] = "{AN_ACTUAL_VALUE}";
$config['auth_ldap_bindanonymous'] = FALSE;
$config['auth_ldap_groups']['observium']['level'] = 10;
$config['auth_ldap_prefix'] = "uid=";
$config['auth_ldap_suffix'] = ",ou=Users,o={AN_ACTUAL_VALUE},dc=jumpcloud,dc=com";
$config['auth_ldap_groupbase'] = "cn=observium,ou=Users,o={AN_ACTUAL_VALUE},dc=jumpcloud,dc=com";
$config['auth_ldap_groupmemberattr'] = "memberUid";

I'm trying to auth with an account that is a member of that group, but when I attempt to login the page just appears to refresh with no feedback. I've tried /?debug=yes , /?debug=on - but they don't output pre-auth.

I've also had a look at the documentation for debugging - but it's geared more towards operational debugging - and makes no mention of transactional debugging.

The group data is below, any help would be appreciated! Thank you in advance.

      cn:
observium

description:
tagGroup

member:
uid={A_USERNAME},ou=Users,o={A_VALUE},dc=jumpcloud,dc=com
uid={A_USERNAME},ou=Users,o={A_VALUE},dc=jumpcloud,dc=com
uid={A_USERNAME},ou=Users,o={A_VALUE},dc=jumpcloud,dc=com

objectClass:
top
groupOfNames


ou:
observium

Aperim Pty Ltd ACN 150 699 737
Disclaimer - Unless clearly stated otherwise this email and any files transmitted with it should be considered without prejudice and are confidential and contain privileged or copyright information.
You must not present this message to another party without gaining permission from the sender. If you are not the intended recipient you must not copy, distribute or use this email or the information contained in it for any purpose other than to notify us.
Any views expressed in this message are those of the individual sender, except where the sender specifically states them to be the views of this company or its subsidiaries.


_______________________________________________
observium mailing list
observium@observium.org
http://postman.memetic.org/cgi-bin/mailman/listinfo/observium