Hello,

This is probably a configuration issue, but I can't find the solution online.

I recently upgraded to the 7.x-2.0-beta3 version from 7.x-1, and while existing LDAP users can login with their LDAP passwords, LDAP users who have never logged into Drupal cannot. It can't seem to create new users.

I'm using Active Directory

My settings in Tab #3. User are as follows
How to resolve LDAP conflicts with manually created Drupal accounts.

  • Associate manually created Drupal accounts with related LDAP Account if one exists.

Drupal Account Provisioning Events

  • Create or Synch to Drupal user on successful authentication with LDAP credentials. (Requires LDAP Authentication module).
  • Create or Synch to Drupal user anytime a Drupal user account is created or updated. Requires a server with binding method of "Service Account Bind" or "Anonymous Bind".

Existing Drupal User Account Conflict *

  • Associate Drupal account with the LDAP entry. This option is useful for creating accounts and assigning roles before an LDAP user authenticates.

Application of Drupal Account settings to LDAP Authenticated Users *

  • Account creation policy at /admin/config/people/accounts/settings applies to both Drupal and LDAP Authenticated users. "Visitors" option automatically creates and account when they successfully LDAP authenticate. "Admin" and "Admin with approval" do not allow user to authenticate until the account is approved.

Action to perform on Drupal account that no longer have a corresponding LDAP entry

  • Perform no action, but email list of orphaned accounts. (All the other options will send email summaries also.)

Number of users to check each cron run.

  • 1000

and I'm not using provisioning to LDAP Settings

When I turned on logging, I get 

Failed ldap authentication. User may have authenticated successfully by other means in a mixed authentication site. LDAP Authentication Error #: 4 error message: User disallowed

The password is correct, and existing users can login with LDAP credentials.

Comments

delmi76’s picture

delmi76 CreditAttribution: delmi76 commented

Same problem here.

Ldap not creating new users.
If I create a Drupal user, then try to logon with AD password I get "Sorry, unrecognized username or password" message.

In ldap_authentication/ldap_authentication.inc (line 188) the value of $authentication_result is 3 and LDAP_AUTHENTICATION_RESULT_SUCCESS is 6

 if ($authentication_result != LDAP_AUTHENTICATION_RESULT_SUCCESS) {

Thanks for your help

johnbarclay’s picture

johnbarclay CreditAttribution: johnbarclay commented
Version: 7.x-2.0-beta3 » 7.x-2.x-dev

Please test against 7.x-2.x-dev. Also do a clean install of 7.x-2.x-dev because the "update" or "upgrade" code will not be finished until 7.x-2.x goes into release candidate stage.

CheezItMan’s picture

CheezItMan CreditAttribution: CheezItMan commented

I'll try it and report back.

CheezItMan’s picture

CheezItMan CreditAttribution: CheezItMan commented

Ok, I ran the uninstall (got an error when I did so on LDAP Authentication), wiped LDAP and installed the Dev version this morning.

LDAP is creating users now, but authorization doesn't seem to be working. The test detects the roles and maps to drupal roles, but users don't seem to get them. I have run the test (below), but roles are not being automatically assigned to users.

Example from the Test:
User cmcanally (me)

Configured Mappings

s_hq_teacher_g|hq_teacher
s_pd_teacher_g|pd_teacher
s_hz_teacher_g|hz_teacher
TechCoords|Administrator
s_hq_office|hq_teacher

Results after any filtering and mappings applied

hq_teacher
pd_teacher
hz_teacher
administrator

CheezItMan’s picture

CheezItMan CreditAttribution: CheezItMan commented
Status: Active » Closed (fixed)

Fixed, seems my uninstall messed up some things in the database, but after clearing that out it's working now... except that in my futzing around I'd set it to automatically create drupal roles if none exist... now I have 32 additional roles to delete. :D

fmagnucz’s picture

fmagnucz CreditAttribution: fmagnucz commented
Version: 7.x-2.x-dev » 7.x-2.0-beta5
Component: User interface » Code

Hi,
I have same problem with the 7.x-2.0-beta5 version.

This is the error message "Server Error: Failed to create Drupal user account for Gipsz Jakab.", if the user never have logged in the drupal site. My workaround is, I create it manually, and I remove the locking from the new user. I don't like to create manually all users. Do you have any idea, how can I avoid the manual work?

Thanks, your answers!