<div dir="ltr"><div>Hello<br><br>Attached is a TCPDUMP.<br><br></div>Communication is happening between 192.168.114.95 and 192.168.114.114<br><div><div><div class="gmail_extra"><div><div dir="ltr"><div><br>Thank you,<br><br> Christian Hernandez<br></div><br></div></div><br><div class="gmail_quote">On Fri, Feb 1, 2013 at 12:57 PM, Rich Megginson <span dir="ltr"><<a href="mailto:rmeggins@redhat.com" target="_blank">rmeggins@redhat.com</a>></span> wrote:<br> <blockquote class="gmail_quote" style="margin:0px 0px 0px 0.8ex;border-left:1px solid rgb(204,204,204);padding-left:1ex"> <div bgcolor="#FFFFFF" text="#000000"><div class="im"> On 02/01/2013 01:42 PM, Christian Hernandez wrote: <blockquote type="cite"> <div dir="ltr"> <div> <div> <div> <div> <div>We are trying to configure our internal GitHub server to use Our IPA server's LDAP for user logins.<br> <br> </div> We successfully configured it; but users can't seem to login.<br> <br> </div> So, before you ask, yes we do have an active support case with githubenterprise about this; but wanted to see if anyone else ran into the same issue.<br> <br> </div> Attached is the screenshot of the config.<br> <br> </div> This is the errors I'm seeing in the DirSrv logs<br> <br> <span style="font-family:comic sans ms,sans-serif"><br> [25/Jan/2013:15:41:35 -0800] conn=29453 fd=241 slot=241 <span style="background-color:rgb(255,255,0)">connection from 192.168.114.95</span> to 192.168.114.114<br> [25/Jan/2013:15:41:35 -0800] conn=29453 op=0 BIND dn="uid=admin,cn=users,cn=accounts,dc=4over,dc=com" method=128 version=3<br> [25/Jan/2013:15:41:35 -0800] conn=29453 op=0 RESULT err=0 tag=97 nentries=0 etime=0 <span style="background-color:rgb(255,255,0)">dn="uid=admin,cn=users,cn=accounts,dc=4over,dc=com"</span><br> [25/Jan/2013:15:41:35 -0800] conn=29453 op=1 SRCH base="" scope=2 filter="(uid=chrish)", failed to decode LDAP controls<br> [25/Jan/2013:15:41:35 -0800] conn=29453 op=1 RESULT err=2 tag=101 nentries=0 etime=0 <br> [25/Jan/2013:15:41:35 -0800] conn=29453 op=-1 fd=241 closed - B1<br> <br> </span></div> <span style="font-family:comic sans ms,sans-serif"><font face="arial,helvetica,sans-serif">Anyone has run into this?<br> </font></span></div> </blockquote> <br></div> Looks like DS is receiving some LDAP controls that it doesn't know how to process. Does this work with any other LDAP server? Can you run wireshark/tshark and capture the network traffic? I'd like to see what the BER looks like.<br> <br> <blockquote type="cite"><div class="im"> <div dir="ltr"><span style="font-family:comic sans ms,sans-serif"><font face="arial,helvetica,sans-serif"> <br> Also, I haven't tried connecting with TLS because I don't know where to find the cert! So if someone can point me in the right direction there I would appreciate it :)<br clear="all"> </font></span> <div> <div> <div> <div> <div> <div> <div> <div> <div> <div dir="ltr"> <div><br> Thank you,<br> <br> Christian Hernandez<br> </div> </div> </div> </div> </div> </div> </div> </div> </div> </div> </div> </div> <br> <fieldset></fieldset> <br> </div><pre>_______________________________________________ Freeipa-users mailing list <a href="mailto:Freeipa-users@redhat.com" target="_blank">Freeipa-users@redhat.com</a> <a href="https://www.redhat.com/mailman/listinfo/freeipa-users" target="_blank">https://www.redhat.com/mailman/listinfo/freeipa-users</a></pre> </blockquote> <br> </div> </blockquote></div><br></div></div></div></div><div class="gmail_extra"><br clear="all"><div><div dir="ltr"><div><br>Thank you,<br><br>Christian Hernandez<br></div>1225 Los Angeles Street<br><div>Glendale, CA 91204<br> Phone: <a value="+18777822737">877-782-2737 ext. 4566</a><br>Fax: <a value="+18182653152">818-265-3152</a><br><a href="mailto:christianh@4over.com" target="_blank">christianh@4over.com</a> <mailto:<a href="mailto:christianh@4over.com" target="_blank">christianh@4over.com</a>> <br> <a href="http://www.4over.com/" target="_blank">www.4over.com</a> <<a href="http://www.4over.com/" target="_blank">http://www.4over.com</a>></div></div></div> <br><br><div class="gmail_quote">On Fri, Feb 1, 2013 at 12:57 PM, Rich Megginson <span dir="ltr"><<a href="mailto:rmeggins@redhat.com" target="_blank">rmeggins@redhat.com</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"> <div bgcolor="#FFFFFF" text="#000000"><div class="im"> On 02/01/2013 01:42 PM, Christian Hernandez wrote: <blockquote type="cite"> <div dir="ltr"> <div> <div> <div> <div> <div>We are trying to configure our internal GitHub server to use Our IPA server's LDAP for user logins.<br> <br> </div> We successfully configured it; but users can't seem to login.<br> <br> </div> So, before you ask, yes we do have an active support case with githubenterprise about this; but wanted to see if anyone else ran into the same issue.<br> <br> </div> Attached is the screenshot of the config.<br> <br> </div> This is the errors I'm seeing in the DirSrv logs<br> <br> <span style="font-family:comic sans ms,sans-serif"><br> [25/Jan/2013:15:41:35 -0800] conn=29453 fd=241 slot=241 <span style="background-color:rgb(255,255,0)">connection from 192.168.114.95</span> to 192.168.114.114<br> [25/Jan/2013:15:41:35 -0800] conn=29453 op=0 BIND dn="uid=admin,cn=users,cn=accounts,dc=4over,dc=com" method=128 version=3<br> [25/Jan/2013:15:41:35 -0800] conn=29453 op=0 RESULT err=0 tag=97 nentries=0 etime=0 <span style="background-color:rgb(255,255,0)">dn="uid=admin,cn=users,cn=accounts,dc=4over,dc=com"</span><br> [25/Jan/2013:15:41:35 -0800] conn=29453 op=1 SRCH base="" scope=2 filter="(uid=chrish)", failed to decode LDAP controls<br> [25/Jan/2013:15:41:35 -0800] conn=29453 op=1 RESULT err=2 tag=101 nentries=0 etime=0 <br> [25/Jan/2013:15:41:35 -0800] conn=29453 op=-1 fd=241 closed - B1<br> <br> </span></div> <span style="font-family:comic sans ms,sans-serif"><font face="arial,helvetica,sans-serif">Anyone has run into this?<br> </font></span></div> </blockquote> <br></div> Looks like DS is receiving some LDAP controls that it doesn't know how to process. Does this work with any other LDAP server? Can you run wireshark/tshark and capture the network traffic? I'd like to see what the BER looks like.<br> <br> <blockquote type="cite"><div class="im"> <div dir="ltr"><span style="font-family:comic sans ms,sans-serif"><font face="arial,helvetica,sans-serif"> <br> Also, I haven't tried connecting with TLS because I don't know where to find the cert! So if someone can point me in the right direction there I would appreciate it :)<br clear="all"> </font></span> <div> <div> <div> <div> <div> <div> <div> <div> <div> <div dir="ltr"> <div><br> Thank you,<br> <br> Christian Hernandez<br> </div> </div> </div> </div> </div> </div> </div> </div> </div> </div> </div> </div> <br> <fieldset></fieldset> <br> </div><pre>_______________________________________________ Freeipa-users mailing list <a href="mailto:Freeipa-users@redhat.com" target="_blank">Freeipa-users@redhat.com</a> <a href="https://www.redhat.com/mailman/listinfo/freeipa-users" target="_blank">https://www.redhat.com/mailman/listinfo/freeipa-users</a></pre> </blockquote> <br> </div> </blockquote></div><br></div>