[CLOSED wontfix] Fresh install - unable to load users from LDAP

apio-sys

Just went through a fresh install on a Debian 10.2 and have another of those running fine. On the new one though I seem to have missed something out but can’t figure out what after a lot of searching and comparing.

I have a working OpenLDAP install. Can do a search like ldapsearch -H ldaps://127.0.0.1:636 … OK with expected results. But kopano-server doesn’t see the users so I that I could create them stores (if not yet done automatically in 8.7 ?).

Getting following :

kopano-admin -l
Unable to list users: "object" not found
Using the -v option (possibly multiple times) may give more hints.

and :

kopano-cli --list-users
MAPI error 8004010F (MAPI_E_NOT_FOUND)

In the server log getting :

Tue Dec  3 20:27:59 2019: [error  ] Failed to open plugin configuration file, using defaults.
Tue Dec  3 20:27:59 2019: [crit   ] Config error: Unable to open config file "/usr/share/kopano/ldap.openldap.cfg"
Tue Dec  3 20:27:59 2019: [crit   ] Config error: Option 'ldap_group_type_attribute_value' cannot be empty!
Tue Dec  3 20:27:59 2019: [crit   ] Config error: Option 'ldap_user_type_attribute_value' cannot be empty!
Tue Dec  3 20:27:59 2019: [crit   ] Cannot instantiate user plugin: Not a valid configuration file.
Tue Dec  3 20:27:59 2019: [crit   ] Unable to instantiate user plugin

But /usr/share/kopano/ldap.openldap.cfg is there as expected. My /etc/kopano/ldap.cfg looks like so:

!include /usr/share/kopano/ldap.openldap.cfg
ldap_host = localhost
ldap_port = 636
ldap_protocol = ldaps
ldap_bind_user = cn=admin,dc=**domain**,dc=**com**
ldap_bind_passwd = **password**
ldap_search_base = ou=Users,dc=**domain**,dc=**com**

I’m probably missing out something simple but really can’t find it…

Any clues someone ?

Version is the one that ships in Debian 10 since I could only find in the official repos up to Debian 9:

kopano-cli -V
8.7.0

Thanks,

Joris.

nschoote

The file usr/share/kopano/ldap.openldap.cfg cannot be opened. What permissions are set on this file?

apio-sys

Thanks for your feedback. So I noticed from the log but I can’t figure out why it can’t be opened. The permissions are like so:

# ls -la /usr/share/kopano/ldap.openldap.cfg
-rw-r--r-- 1 root root 15793 avril 25  2019 /usr/share/kopano/ldap.openldap.cfg

which seems fine to me and does work on another Kopano server I have with same OS and same version…

apio-sys

Reply to self: Well, I ended up removing database, uninstalling kopano*, created the kopanoserver dB manually and reinstalled kopano-core, left is with default user plugin db, created a user, was able to list it with kopano-admin -l, deleted that user, configured to point to the existing same ldap install and now it works. I had to rehook the store of course of that test user but other users also correctly show up. I still have to create there stores manually though using:

kopano-cli -u username --create-store

but that is not a big deal. Sorry for bothering with this but what is annoying that I cannot figure why this happened in the first place…

jengelh

There is a better error message since 8.7.7 for the config file open error.