LDAP Authentication Failing with Unwilling to Perform Error
(Doc ID 2950533.1)
Last updated on MAY 21, 2023
Applies to:
MySQL Server - Version 8.0 and laterInformation in this document applies to any platform.
Symptoms
On : 8.0 version, Plugin API
Implementing LDAP authentication in MYSQL 8.0.24 version
$ mysql --user=<username> --password --enable-cleartext-plugin
Enter password:
ERROR 1045 (28000): Access denied for user '<username>'@'localhost' (using password: YES)
Please find the the ldap parameters below from my.cnf file:
plugin-load-add=authentication_ldap_simple.so
authentication_ldap_simple_bind_base_dn="dc=example,dc=com"
authentication_ldap_simple_auth_method_name="SIMPLE"
authentication_ldap_simple_bind_root_dn="CN=ldapbinduser,OU=Accounts,DC=example,DC=com"
authentication_ldap_simple_bind_root_pwd="***********"
authentication_ldap_simple_group_search_attr=cn
authentication_ldap_simple_group_search_filter="(&(objectClass=group)(member=%s))"
authentication_ldap_simple_user_search_attr=sAMAccountName
authentication_ldap_simple_log_status=6
authentication_ldap_simple_server_host="auth.example.com"
authentication_ldap_simple_server_port=389
authentication_ldap_simple_tls="OFF"
ERROR
-----------------------
ERROR 1045 (28000): Access denied for user '<username>'@'localhost' (using password: NO)
BUSINESS IMPACT
-----------------------
The issue has the following business impact:
Due to this issue, users cannot use the LDAP authentication service to manage accounts for MySQL Server.
Changes
Cause
To view full details, sign in with your My Oracle Support account. |
|
Don't have a My Oracle Support account? Click to get started! |
In this Document
| Symptoms |
| Changes |
| Cause |
| Solution |
| References |