Thanks for your response!
For anyone reading this later you can turn on logging in ubuntu by editing: /etc/rsyslog.d/50-default.conf and adding: local4.* /var/log/ldap.log
and editing: /etc/ldap/slapd.d/cn=config.ldif and Adding: olcLogLevel: -1
then: $ sudo service restart rsyslog $ sudo service restart slapd
When the authentication error happens the log shows: Oct 9 14:11:13 hostname slapd[22455]: slapd starting Oct 9 14:11:21 hostname slapd[22455]: conn=1000 fd=13 ACCEPT from IP=[::1]:41701 (IP=[::]:389) Oct 9 14:11:21 hostname slapd[22455]: conn=1000 op=0 BIND dn="cn=admin,dc=xyzxyz,dc=fi" method=128 Oct 9 14:11:21 hostname slapd[22455]: conn=1000 op=0 RESULT tag=97 err=49 text= Oct 9 14:11:21 hostname slapd[22455]: conn=1000 op=1 UNBIND Oct 9 14:11:21 hostname slapd[22455]: conn=1000 fd=13 closed
I googled and found [1] that error 49 means that binddn or password is wrong (exactly what the error message was)
And then I noticed that I was missing a colon from dn. I was using correct binddn in commandline, but somehow i was missing it in phpldapadmin. Sorry for bothering and thanks again!
[1] http://www.openldap.org/lists/openldap-technical/201010/msg00279.html -- Onni Hakala +358 445158280
Seravo Oy http://seravo.fi/
2014-10-09 11:46 GMT+03:00 Ferenc Wagner wferi@niif.hu:
Onni Hakala onni@seravo.fi writes:
When I try to login to phpldapadmin with same credentials as ldapsearch above. It fails with message:
Error: Invalid credentials (49) for user
Why are these credentials wrong? I'm sure that password is correct and dn ('cn=admin,dc=XYZXYZ,dc=fi') is correct.
Enable at least stats logging in slapd and check the BIND logs.
Feri.