fido2 icon indicating copy to clipboard operation
fido2 copied to clipboard

Published 20 hours ago verified publisher icon StrongKey

FIDO docker external LDAP connection fail

Open prathapcoder opened this issue 3 years ago • 5 comments

** LDAP connection fail due IP address not changing **

base64-input.sh: LDAP_URLPORT='ldap://192.168.226.129:1389' LDAP_TYPE='LDAP' LDAP_BINDDN='cn=Directory Manager'

** server.log:* ldape.cfg.property.service.ce.ldap.ldapurl: ldap://localhost:1389 it taking defualt localhost instead of given ip 192.168.226.129.

Please resolve my issue. Thank you.

prathapcoder avatar Mar 03 '22 13:03 prathapcoder

Hi @prathapcoder, Could you take a look at the ldape.cfg.property.service.ce.ldap.ldapurl property in your /usr/local/strongkey/skce/etc/skce-configuration.properties file? The value of that property should be changed in the entrypoint script, but if it is set to localhost then something may have gone wrong when running the entrypoint script during container creation.

pattycakelol avatar Mar 03 '22 19:03 pattycakelol

Hi @prathapcoder, Could you take a look at the ldape.cfg.property.service.ce.ldap.ldapurl property in your /usr/local/strongkey/skce/etc/skce-configuration.properties file? The value of that property should be changed in the entrypoint script, but if it is set to localhost then something may have gone wrong when running the entrypoint script during container creation.

skce-configuration.properties file not created in this (/usr/local/strongkey/skce/etc/) location. Even i comment the following lines in entrypoint.sh file. please check.

entrypoint.sh #rm -f $STRONGKEY_HOME/appliance/etc/appliance-configuration.properties $STRONGKEY_HOME/skce/etc/skce-configuration.properties $STRONGKEY_HOME/skfs/etc/skfs-configuration.properties skce-etc

prathapcoder avatar Mar 04 '22 01:03 prathapcoder

Hi @prathapcoder,

In lines 61-70 of the entrypoint script, these values should be set in a newly created /usr/local/strongkey/skce/etc/skce-configuration.properties. Try adding some prints in your entrypoint and remove the "-d" option from your docker run command to run the container in foreground mode to see your entrypoint prints.

pattycakelol avatar Mar 04 '22 18:03 pattycakelol

Hi @prathapcoder,

In lines 61-70 of the entrypoint script, these values should be set in a newly created /usr/local/strongkey/skce/etc/skce-configuration.properties. Try adding some prints in your entrypoint and remove the "-d" option from your docker run command to run the container in foreground mode to see your entrypoint prints.

yes i added some prints (echo command) and removed "-d" option, but those line not printingl. I added echo lines in my entrypoint.h file. echo "skce-configuration.........." cat >> $STRONGKEY_HOME/skce/etc/skce-configuration.properties <<- EOFSKCECONF ldape.cfg.property.service.ce.ldap.ldapurl=$LDAP_URLPORT ldape.cfg.property.service.ce.ldap.ldaptype=$LDAP_TYPE ldape.cfg.property.service.ce.ldap.ldapbinddn=$LDAP_BINDDN ldape.cfg.property.service.ce.ldap.ldapbinddn.password=$LDAP_PASS ldape.cfg.property.service.ce.ldap.ldapdnprefix=cn= ldape.cfg.property.service.ce.ldap.ldapdnsuffix=$LDAP_DNSUFFIX ldape.cfg.property.service.ce.ldap.basedn=$LDAP_BASEDN ldape.cfg.property.service.ce.ldap.ldapgroupsuffix=$LDAP_GROUPSUFFIX EOFSKCECONF echo "LDAP URL" echo $LDAP_URLPORT

prathapcoder avatar Mar 05 '22 01:03 prathapcoder

Hi @prathapcoder,

Have you made any changes to your dockerfile? If your echo commands are not running then this may be an issue with bash or a missing entrypoint script within the container.

Try getting using a terminal within the container and checking to see if the entrypoint is there.

$> [sudo] docker exec -it <CONTAINER-ID> /bin/bash

pattycakelol avatar Mar 06 '22 20:03 pattycakelol