AD integrated ejabberd

Dear All,
I have successfully integrated AD with ejabberd. I am able to view all the users having mail configured (Exchange integrated) on AD in the web admin interface with administrator as admin user. But I have some problem :
1. I am not able to login to chat client (jwchat,ijab,spark,pidgin) not with administrator login nor with user login.

Please help me to login to chat client....

I am attaching the configuration of my ejabberd




{loglevel, 5}.

{watchdog_admins, [""]}.

{hosts, [""]}.

{5222, ejabberd_c2s, [
{certfile, "C:\\Program Files\\ejabberd-2.1.6\\conf\\server.pem"}, starttls,
{access, c2s},
{shaper, c2s_shaper},
{max_stanza_size, 65536}
%% To enable the old SSL connection method in port 5223:
%%{5223, ejabberd_c2s, [
%% {certfile, "C:\\Program Files\\ejabberd-2.1.6\\conf\\server.pem"}, tls,
%% {access, c2s},
%% {shaper, c2s_shaper},
%% {max_stanza_size, 65536}
%% ]},

{5269, ejabberd_s2s_in, [
{shaper, s2s_shaper},
{max_stanza_size, 131072}
%% ejabberd_service: Interact with external components (transports...)
%%{8888, ejabberd_service, [
%% {access, all},
%% {shaper_rule, fast},
%% {ip, {127, 0, 0, 1}},
%% {hosts, ["", ""],
%% [{password, "secret"}]
%% }
%% ]},

{5280, ejabberd_http, [
{request_handlers, [
{["web"], mod_http_fileserver}

{auth_method, ldap}.
{ldap_servers, [""]}.
{ldap_port, 3268}.
{ldap_uids, [{"Mail", ""}]}.
{ldap_filter, "(&(objectCategory=person)(objectClass=user))"}.
{ldap_base, "dc=aaa,dc=XXX,dc=com"}.
{ldap_rootdn, ""}.
{ldap_password, "*********"}.

{shaper, normal, {maxrate, 1000}}.
{shaper, fast, {maxrate, 50000}}.
{acl, admin, {user, "administrator", ""}}.
{acl, admin, {user, "administrator", ""}}.
{acl, local, {user_regexp, ""}}.
{access, max_user_sessions, [{10, all}]}.
{access, local, [{allow, local}]}.
{access, c2s, [{deny, blocked},
{allow, all}]}.
{access, c2s_shaper, [{none, admin},
{normal, all}]}.
{access, s2s_shaper, [{fast, all}]}.
{access, announce, [{allow, admin}]}.
{access, configure, [{allow, admin}]}.
{access, muc_admin, [{allow, admin}]}.
{access, muc, [{allow, all}]}.
{access, muc_create, [{allow, local}]}.
{access, pubsub_createnode, [{allow, local}]}.
{language, "en"}.
{mod_adhoc, []},
{mod_announce, [{access, announce}]}, % requires mod_adhoc
{mod_caps, []},
{mod_configure,[]}, % requires mod_aaahoc
{mod_disco, []},
%%{mod_echo, [{host, ""}]},
{mod_http_fileserver, [
{docroot, "C:\Program Files\ejabberd-2.1.6\www"},
{accesslog, "C:\\Program Files\\ejabberd-2.1.6\\www\\webaccess.log"},
%% {content_types, [{".htm", "text/html"}]},
{directory_indices, ["index.html", "index.htm", "ijab.html"]}
{mod_irc, []},
{mod_last, []},
{mod_muc, [
%%{host, "conference.@HOST@"},
{access, muc},
{access_create, muc_create},
{access_persistent, muc_create},
{access_aaamin, muc_aaamin}
{mod_offline, []},
{mod_privacy, []},
{mod_private, []},
{mod_pubsub, [ % requires mod_caps
{access_createnode, pubsub_createnode},
{ignore_pep_from_offline, true},
{last_item_cache, false},
{plugins, ["flat", "hometree", "pep"]}
{mod_register, [
%% After successful registration, the user receives
%% a message with this subject and body.
%%{welcome_message, {"Welcome!",
%% "Welcome to this Jabber server."}},

%% When a user registers, send a notification to
%% these Jabber accounts.
%%{registration_watchers, [""]},
%%{access, register}
{mod_roster, []},
{mod_shared_roster_ldap, [
{ldap_filter, "(memberOf=CN=Chat Users,CN=Users,DC=aaa,DC=XXX,DC=com)"},
{ldap_rfilter, "(&(objectCategory=person)(objectClass=user)(memberOf=CN=Chat User,CN=Users,DC=aaa,DC=XXX,DC=com))"},
{ldap_groupattr, "department"},
{ldap_groupdesc, "department"},
{ldap_memberattr, "sAMAccountName"},
{ldap_userdesc, "displayName"}

{mod_vcard_ldap, [
{matches, infinity},
{ldap_filter, "(&(objectCategory=person)(objectClass=user)(memberOf=CN=Chat User,CN=Users,DC=aaa,DC=XXX,DC=com))"},
[{"NICKNAME", "%u", []},
{"GIVEN", "%s", ["givenName"]},
{"MIDDLE", "%s", ["initials"]},
{"FAMILY", "%s", ["sn"]},
{"FN", "%s", ["displayName"]},
{"EMAIL", "%s", ["mail"]},
{"ORGNAME", "%s", ["company"]},
{"ORGUNIT", "%s", ["department"]},
{"CTRY", "%s", ["c"]},
{"LOCALITY", "%s", ["l"]},
{"STREET", "%s", ["streetaaadress"]},
{"REGION", "%s", ["st"]},
{"PCODE", "%s", ["postalCode"]},
{"TITLE", "%s", ["title"]},
{"URL", "%s", ["wWWHomePage"]},
{"DESC", "%s", ["description"]},
{"TEL", "%s", ["telephoneNumber"]}]},
[{"User", "%u"},
{"Name", "givenName"},
{"Family Name", "sn"},
{"Email", "mail"},
{"Company", "company"},
{"Department", "department"},
{"Role", "title"},
{"Description", "description"},
{"Phone", "telephoneNumber"}]},
[{"Full Name", "FN"},
{"Nickname", "NICKNAME"},
{"Email", "EMAIL"}]}

%%{mod_stats, []},
{mod_time, []},
{mod_vcard, []},
{mod_version, []}



Try changing ldap_uids to the

Try changing ldap_uids to the following:

{ldap_uids, [{"sAMAccountName", "%u"}]}.

Can you point out where to

Can you point out where to get AD integration document?

Syndicate content