<html> <head> <meta content="text/html; charset=ISO-8859-1" http-equiv="Content-Type"> </head> <body bgcolor="#FFFFFF" text="#000000"> On 02/01/2013 01:42 PM, Christian Hernandez wrote: <blockquote cite="mid:CAH3k4=ch52DXGdz1BHdjLL2V+BE5gf7gG8iiUJL7pXvyJCYxmA@mail.gmail.com" type="cite"> <div dir="ltr"> <div> <div> <div> <div> <div>We are trying to configure our internal GitHub server to use Our IPA server's LDAP for user logins.<br> <br> </div> We successfully configured it; but users can't seem to login.<br> <br> </div> So, before you ask, yes we do have an active support case with githubenterprise about this; but wanted to see if anyone else ran into the same issue.<br> <br> </div> Attached is the screenshot of the config.<br> <br> </div> This is the errors I'm seeing in the DirSrv logs<br> <br> <span style="font-family:comic sans ms,sans-serif"><br> [25/Jan/2013:15:41:35 -0800] conn=29453 fd=241 slot=241 <span style="background-color:rgb(255,255,0)">connection from 192.168.114.95</span> to 192.168.114.114<br> [25/Jan/2013:15:41:35 -0800] conn=29453 op=0 BIND dn="uid=admin,cn=users,cn=accounts,dc=4over,dc=com" method=128 version=3<br> [25/Jan/2013:15:41:35 -0800] conn=29453 op=0 RESULT err=0 tag=97 nentries=0 etime=0 <span style="background-color:rgb(255,255,0)">dn="uid=admin,cn=users,cn=accounts,dc=4over,dc=com"</span><br> [25/Jan/2013:15:41:35 -0800] conn=29453 op=1 SRCH base="" scope=2 filter="(uid=chrish)", failed to decode LDAP controls<br> [25/Jan/2013:15:41:35 -0800] conn=29453 op=1 RESULT err=2 tag=101 nentries=0 etime=0 <br> [25/Jan/2013:15:41:35 -0800] conn=29453 op=-1 fd=241 closed - B1<br> <br> </span></div> <span style="font-family: comic sans ms,sans-serif;"><font face="arial,helvetica,sans-serif">Anyone has run into this?<br> </font></span></div> </blockquote> <br> Looks like DS is receiving some LDAP controls that it doesn't know how to process. Does this work with any other LDAP server? Can you run wireshark/tshark and capture the network traffic? I'd like to see what the BER looks like.<br> <br> <blockquote cite="mid:CAH3k4=ch52DXGdz1BHdjLL2V+BE5gf7gG8iiUJL7pXvyJCYxmA@mail.gmail.com" type="cite"> <div dir="ltr"><span style="font-family:comic sans ms,sans-serif"><font face="arial,helvetica,sans-serif"> <br> Also, I haven't tried connecting with TLS because I don't know where to find the cert! So if someone can point me in the right direction there I would appreciate it :)<br clear="all"> </font></span> <div> <div> <div> <div> <div> <div> <div> <div> <div> <div dir="ltr"> <div><br> Thank you,<br> <br> Christian Hernandez<br> </div> </div> </div> </div> </div> </div> </div> </div> </div> </div> </div> </div> <br> <fieldset class="mimeAttachmentHeader"></fieldset> <br> <pre wrap="">_______________________________________________ Freeipa-users mailing list <a class="moz-txt-link-abbreviated" href="mailto:Freeipa-users@redhat.com">Freeipa-users@redhat.com</a> <a class="moz-txt-link-freetext" href="https://www.redhat.com/mailman/listinfo/freeipa-users">https://www.redhat.com/mailman/listinfo/freeipa-users</a></pre> </blockquote> <br> </body> </html>