Login not possible with new user
-
Hello,
for some time (unfortunately I cannot exactly determine the period of time) I cannot login with newly created users. “Old” users work continuously.
Log output:[25-Jan-2021 20:58:38 UTC] [AuthLDAP] User 'newuser' logging in [25-Jan-2021 20:58:38 UTC] [AuthLDAP] about to do LDAP authentication [25-Jan-2021 20:58:38 UTC] [AuthLDAP] connect to LDAP server [25-Jan-2021 20:58:38 UTC] [AuthLDAP] No bind successfull. Exception thrown in line 70 [25-Jan-2021 20:58:38 UTC] PHP Notice: No bind successfull. Exception thrown in line 70 in /var/www/clients/client1/web1/web/wp-content/plugins/authldap/authLdap.php on line 455 [25-Jan-2021 20:59:20 UTC] [AuthLDAP] User 'existinguser' logging in [25-Jan-2021 20:59:20 UTC] [AuthLDAP] about to do LDAP authentication [25-Jan-2021 20:59:20 UTC] [AuthLDAP] connect to LDAP server [25-Jan-2021 20:59:20 UTC] [AuthLDAP] LDAP authentication successfull [25-Jan-2021 20:59:20 UTC] [AuthLDAP] Existing user, uid = 1 [25-Jan-2021 20:59:20 UTC] [AuthLDAP] Array ( [administrator] => 5078 [editor] => 5081 [author] => 5079 [contributor] => 5080 [subscriber] => 5083 ) [25-Jan-2021 20:59:20 UTC] [AuthLDAP] Array ( [administrator] => 5078 [editor] => 5081 [author] => 5079 [contributor] => 5080 [subscriber] => 5083 ) ...But the new user can login on some other webapps with LDAP support, so I think there is a problem with this plugin and not the user itself.
Can I supply you with some other helpful information?
Thanks in advance!
-
Hi Andreas,
thanks for your quick reply and your support! I’m sorry to have bothered you with this as it’s my mistake. Your comment “an issue with finding the new user” pointed me to the solution: some time in the past the underlying LDAP management obviously changed from setting the user supplied e-mail for a new user to “mail” and “mailPrimaryAddress” in the directory to setting it only to “mailPrimaryAddress”. But I had AuthLDAP configured to look into “mail”…
Digging into this with your hints I stumbled upon another thing: a user who has been an author but got this right revoked (and therefore is in no WordPress-related group in LDAP anymore) can still login (this is expected) but continues to have his old rights (which I did not expect, as I’ve set “LDAP Groups override role of existing users?” to yes). I expected the old right/group-membership to get deleted then, resetting the user to “subscriber”?! What is more, the user is recognized as not having an entry in the WP-Database but the creation of said entry fails then as of course the entry is already there?
[30-Jan-2021 09:04:49 UTC] [AuthLDAP] User '[email protected]' logging in [30-Jan-2021 09:04:49 UTC] [AuthLDAP] about to do LDAP authentication [30-Jan-2021 09:04:49 UTC] [AuthLDAP] connect to LDAP server [30-Jan-2021 09:04:49 UTC] [AuthLDAP] LDAP authentication successfull [30-Jan-2021 09:04:49 UTC] [AuthLDAP] Array ( [administrator] => 5078 [editor] => 5081 [author] => 5079 [contributor] => 5080 [subscriber] => 5083 ) [30-Jan-2021 09:04:49 UTC] [AuthLDAP] Array ( [administrator] => 5078 [editor] => 5081 [author] => 5079 [contributor] => 5080 [subscriber] => 5083 ) [30-Jan-2021 09:04:49 UTC] [AuthLDAP] Group Filter: "(&(objectClass=posixGroup)(uniqueMember=uid=existinguser1,ou=Users,ou=MyOrg,dc=int,dc=my-org,dc=de))" [30-Jan-2021 09:04:49 UTC] [AuthLDAP] Group Base: [30-Jan-2021 09:04:49 UTC] [AuthLDAP] LDAP groups: [] [30-Jan-2021 09:04:49 UTC] [AuthLDAP] Role from LDAP group: [30-Jan-2021 09:04:49 UTC] [AuthLDAP] role from group mapping: [30-Jan-2021 09:04:49 UTC] [AuthLDAP] no role yet, set default role [30-Jan-2021 09:04:49 UTC] [AuthLDAP] The LDAP user does not have an entry in the WP-Database, a new WP account will be created [30-Jan-2021 09:04:49 UTC] [AuthLDAP] Error creating user : Diese E-Mail-Adresse wird bereits verwendet!What’s the best way to show the configuration of AuthLDAP here for you?
Thanks!
- The topic ‘Login not possible with new user’ is closed to new replies.
