[jadmin] ejabberd 1.1.1 LDAP timeout sorrows

Simon Morris simon.morris at cmtww.com
Wed Jun 21 23:50:26 CDT 2006 

Hello all,

I was given some excellent advice here recently when I asked about
issues with the bundled Jabber server in OS X.

I'm now running ejabberd 1.1.1 on SUSE 10 which works much better :-)

My only last issue is that the LDAP authentication module keeps timing
out and rejecting user logon requests. When I restart the server and do
some testing LDAP (Active Directory users) can logon fine.

If I leave it for an hour or so the logon attempts fail.

In my ejabberd.log file I get...

****

=ERROR REPORT==== 2006-09-17 21:56:03 ===
** State machine <0.10535.0> terminating
** Last event in was {xmlstreamelement,
                         {xmlelement,"auth",
                                     [{"xmlns",

"urn:ietf:params:xml:ns:xmpp-sasl"},
                                      {"mechanism","PLAIN"}],
                                     [{xmlcdata,

<<65,71,78,116,100,71,70,107,98,87,108,117,65,70,78,48,89,88,74,112,98,109,99,103,89,88,81,103,100,71,104,108,73,72,78,108,89,88,77,117>>}]}}
** When State == wait_for_feature_request
**      Data  == {state,{sslsocket,6,<0.10534.0>},
                        <0.10536.0>,
                        ssl,
                        "3696948738",
                        {sasl_state,"jabber",
                                    "talk.group-united.com",
                                    [],
                                    #Fun<ejabberd_c2s.1.114093548>,
                                    #Fun<ejabberd_c2s.2.66069937>,
                                    undefined,
                                    undefined},
                        c2s,
                        none,
                        false,
                        false,
                        false,
                        false,

[{certfile,"/opt/ejabberd-1.1.1/conf/server.pem"}],
                        false,
                        undefined,
                        [],
                        "talk.group-united.com",
                        [],
                        undefined,
                        {0,nil},
                        {0,nil},
                        {0,nil},
                        {0,nil},
                        undefined,
                        undefined,
                        undefined,
                        false,
                        none,
                        []}
** Reason for termination =
** {timeout,{gen_fsm,sync_send_event,
                     ['eldap_ejabberd_talk.group-united.com',
                      {search,{eldap_search,
                                  wholeSubtree,
                                  "dc=global,dc=network",
                                  {equalityMatch,
                                      {'AttributeValueAssertion',
                                          "sAMAccountName",
                                          "cmtadmin"}},
                                  [],
                                  false,
                                  0}}]}}
lon0smtp01:/opt/ejabberd-1.1.1/logs #

*****

The LDAP server is an Active Directory LDAP server running on Windows
2003. There is a Cisco PIX firewall between the Jabber server and the
LDAP server.

Is LDAP timeouts a common problem with this module.

Thanks

~sm
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: This is a digitally signed message part
Url : http://mail.jabber.org/pipermail/jadmin/attachments/20060622/e70a8197/attachment-0003.pgp

More information about the JAdmin mailing list