Revision history [back]

Without knowing the error, its hard to identify the cause of error? For testing only, you can disable log and write output to console to see what is the error if you cannot get access to keystone logs (enable debug in keystone.conf) . Or direct output log file to location where you have access to?

If you are not getting successful authentication with LDAP but it works with SQL..check following -- Can you check if login credentials matches in LDAP -- Make sure you have user_id_attribute is mapped correctly between LDAP and sql role assignment tables (which stores user id attribute). -- Also make sure that user used for authentication has role assignment for project you are using. -- If you are using v2 authentication, then user needs to be in default domain 'default' .

Hope it helps