Home » Forums » ejabberd & XMPP » ejabberd Administration

Problems with domain name

Submitted by ipx on Thu, 2010-01-14 15:53

Hello!

Im trying to set up a jabber server with ejabberd 2.0.5 installed through apt-get in ubuntu 9.10 server.
I have been able to make a standard configuration, and login via an ldap-server (active directory).

Now to the problem:

When configuring jabber, I seem to be forced to use a (random) subdomain before my domain name (eg. random.example.com) instead of directly use my domain name as it is in active directory (user@example.com). If I configure ejabberd.cfg to use host random.example.com, I can connect with an AD-user using user@random.example.com, but if i set the host to example.com and try to login as user@example.com, I get authentication failure. I want my users to login with the same e-mail they otherwise use in the domain.

To find the client I use the following DNS-records in my bind9-server:

klient  IN      A       10.214.8.11
server  IN      A       10.214.9.10
jabber  IN      A       10.214.9.10
dc      IN      A       10.0.252.105

_xmpp-server._tcp.example.com.       21600    IN      SRV    5       0       5269    jabber.example.com.
_xmpp-client._tcp.example.com.       1600     IN      SRV    5       0       5222    jabber.example.com.
_jabber._tcp.example.com.            21600    IN      SRV    5       0       5269    jabber.example.com.

This is the interesting parts of my ejabberd.cfg:

{hosts, ["example.com"]}.
%% Authentication using LDAP
%%
{auth_method, ldap}.
%%
%% List of LDAP servers:
{ldap_servers, ["dc.example.com"]}.
%%
%% Encryption of connection to LDAP servers (LDAPS):
{ldap_encrypt, tls}.
%%
%% Port connect to LDAP server:
%%{ldap_port, 636}.
%%
%% LDAP manager:
{ldap_rootdn, "cn=admin,ou=Staff,dc=example,dc=com"}.
%%
%% Password to LDAP manager:
{ldap_password, "adminpw"}.
%%
%% Search base of LDAP directory:
{ldap_base, "DC=example,DC=com"}.
%%
%% LDAP attribute that holds user ID:
{ldap_uids, [{"sAMAccountName"}]}.
%%
%% LDAP filter:
{ldap_filter, "(memberOf=*)"}.

Did I miss something fundamentally? I've been struggling with this problem for weeks now and is now seeking support from the community!

Update:
I can set any domain I'd like, for example waffls.com and it works! As soon as I use the domain that my domain controller use (example.com) it does not. I guess this is some authorization control from active directory...

Superupdate:
I just wanted to let you know that I fixed this problem. This was due to a configuration miss from my side, where I for some reason configured a virtual host with this command:

{host_config, "example.com", [{auth_method, [anonymous]}]}.

Dont ask me why. I did this a long time ago and forgot about it totally.
Administrators can lock or remove this thread!

Regards,
Viktor

‹ running ejabberd for the domain on a subdomain host. Increase maximum resource count per user ? ›
Syndicate content

User login