Navigation

    Kopano
    • Register
    • Login
    • Search
    • Categories
    • Get Official Kopano Support
    • Recent
    Statement regarding the closure of the Kopano community forum and the end of the community edition

    LDAP Login problems

    Kopano Groupware Core
    2
    2
    276
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • Dr4K4n
      Dr4K4n last edited by Dr4K4n

      We are running:
      kopano WebApp: 5.3.0.0-1+172.1
      Kopano Core: 7.25
      Debian 9

      Everything is working fine, except that every couple logins the login fails.
      This leads to the following problems:

      • sometimes our phones (connected via z-push) complain that we have to re-login into our accounts
      • sometimes emails don’t get delivered and the user get’s an error message (internal and external recipients)

      Our log is littered with the following error messages:
      Tue Mar 15 15:14:02 2022: [warning] LDAP (simple) bind on CN=XXX,CN=Users,DC=YYY,DC=com failed: Can’t contact LDAP server
      Tue Mar 15 15:14:02 2022: [warning] Authentication by plugin failed for user “xxx”: Trying to authenticate failed: Failure connecting any of the LDAP servers; username = xxx
      Tue Mar 15 15:15:32 2022: [warning] LDAP (simple) bind on CN=XXX,CN=Users,DC=YYY,DC=com failed: Can’t contact LDAP server
      Tue Mar 15 15:15:32 2022: [warning] Authentication by plugin failed for user “xxx”: Trying to authenticate failed: Failure connecting any of the LDAP servers; username = xxx
      Tue Mar 15 15:17:12 2022: [warning] LDAP (simple) bind on CN=XXX,CN=Users,DC=YYY,DC=com failed: Can’t contact LDAP server
      Tue Mar 15 15:17:12 2022: [warning] Authentication by plugin failed for user “xxx”: Trying to authenticate failed: Failure connecting any of the LDAP servers; username = xxx

      I googled a lot, tried to upgrade our samba (debian 9 to 10), but no luck. It worked before with an older version (not sure which version).
      Only similar problem I found is this one: https://forum.kopano.io/topic/3316/can-t-contact-ldap-server
      Maybe the same problem is present in the version 8 we use?

      JungleMarc 1 Reply Last reply Reply Quote 0
      • JungleMarc
        JungleMarc @Dr4K4n last edited by JungleMarc

        Ok lets say the kopano-server is up, and the database server becomes somewhat unaccessible, or too busy running a big backup (mysqldump not setup correctly), you will get login prompt on iPhone with Z-Push asking for password.

        So you may want to check that your database setup is good.

        This is explained in the documentation

        https://documentation.kopano.io/kopanocore_administrator_manual/backup_restore.html

        mysqldump -u root -pYOURROOTMYSQLPASSWORD  --single-transaction --routines kopano | gzip > /somewhere/you/want/this/stored/kopano_db_backup.sql.gz

        So maybe your LDAP config is fine, just because it is your auth method does not mean it is broken, your database accessibility is equality just as important.

        Another way this can happen is if you have Z-Push on a totally different box, and Z-Push would not be able to reach kopano-server port… it would also happen as well on mobile devices asking for re-login.

        It is good to tell users to just press cancel and not type the password, it will preserve the original password in iOS. Just cancel and refresh the mail app.

        Keep us posted. I may or may not be right in this case lol, I don’t use LDAP. But I’ve seen this problem before with devices on Z-Push.

        Marc

        1 Reply Last reply Reply Quote 0
        • First post
          Last post