Autenticar Ejabber contra LDAP

[Kowalski]

Hola tengo una PC con Ejabber y en otra un LDAP, como puedo autenticar Ejabber el LDAP.
Ejabber sobre Debian 6 y LDAP sobre Zentyal.
Saludos.

[jfelix]

aqui te dejo algo espero te sirva

Código: Seleccionar todo

apt-get install ejabberd

Seguido modificamos el fichero /etc/ejabberd/ejabberd.cfg borramos todo en su interior
y le copiamos lo siguiente

Código: Seleccionar todo

{hosts, ["cacocum.hlg.sld.cu"]}.
{loglevel, 4}.
%%{watchdog_admins, ["bob@example.com"]}.
{listen,
 [
  {5222, ejabberd_c2s, [
                            {access, c2s},
                            {shaper, c2s_shaper},
                            {max_stanza_size, 65536},
                            starttls, {certfile, "/etc/ejabberd/ejabberd.pem"}
                        ]},
  %%{5223, ejabberd_c2s, [
  %%                        {access, c2s},
  %%                        {shaper, c2s_shaper},
  %%                        {max_stanza_size, 65536},
  %%                        tls, {certfile, "/etc/ejabberd/ejabberd.pem"}
  %%                    ]},
  {5269, ejabberd_s2s_in, [
                               {shaper, s2s_shaper},
                               {max_stanza_size, 131072}
                              ]},
  {5280, ejabberd_http, [
                 http_bind,
                             http_poll,
                             web_admin
                            ]}
 ]}.
{s2s_use_starttls, true}.
{s2s_certfile, "/etc/ejabberd/ejabberd.pem"}.
{auth_method, ldap}.
{ldap_servers, ["localhost"]}.
{ldap_base, "dc=cacocum,dc=hlg,dc=sld,dc=cu"}.
{ldap_filter, "(&(userPasswdac=ACTIVE)(ServXmmpAccess=on))"}.
{shaper, normal, {maxrate, 1000}}.
{shaper, fast, {maxrate, 50000}}.
%%% ACCESS CONTROL LISTS
{acl, admin, {user, "salbi", "cacocum.hlg.sld.cu"}}.
%% Blocked users
%%{acl, blocked, {user, "baduser", "example.org"}}.
{acl, local, {user_regexp, ""}}.
{access, max_user_sessions, [{1, all}]}.
{access, local, [{allow, local}]}.
{access, c2s, [{deny, blocked},
              {allow, all}]}.
{access, c2s_shaper, [{none, admin},
                        {normal, all}]}.
{access, s2s_shaper, [{fast, all}]}.
{access, announce, [{allow, admin}]}.
{access, configure, [{allow, admin}]}.
{access, muc_admin, [{allow, admin}]}.
{access, muc, [{allow, all}]}.
{access, register, [{deny, all}]}.
{access, pubsub_createnode, [{allow, all}]}.
{language, "es"}.
{modules,
 [
  {mod_adhoc, []},
  {mod_announce, [{access, announce}]}, % requires mod_adhoc
  {mod_caps, []},
  {mod_configure,[]}, % requires mod_adhoc
  {mod_ctlextra, []},
  %%{mod_echo, [{host, "echo.localhost"}]},
  %%{mod_irc,        []},
  {mod_last, []},
  {mod_muc,       [
                     %%{host, "conference.@HOST@"},
                     {access, muc},
                     {access_create, muc},
                     {access_persistent, muc_admin},
                     {access_admin, muc_admin},
                     {max_users, 500}
                    ]},
  %%{mod_muc_log,[]},
  {mod_offline, []},
  {mod_privacy, []},
  {mod_private, []},
  %%{mod_proxy65, [
  %%                 {access, local},
  %%                 {shaper, c2s_shaper}
  %%                ]},
  %%{mod_pubsub, [{access_createnode, pubsub_createnode},
  %%                 {plugins, ["default", "pep"]}
  %%                ]},
  {mod_register, [
                     {welcome_message, none},
                     {access, none}
                    ]},
  {mod_roster, []},
  %%{mod_service_log,[]},
  %%{mod_shared_roster,[]},
  {mod_stats, []},
  {mod_time, []},
  {mod_vcard, []},
  %%{mod_vcard_ldap, [
  %%                 {host, "localhost"},
  %%              {ldap_base, "ou=usuarios,dc=cacocum,dc=hlg,dc=sld,dc=cu"}
  %%             ]},
  {mod_version, []}
 ]}.

Guardamos y reiniciamos el servicio

Código: Seleccionar todo

/etc/init.d/ejabberd restart

Y listo ya esta el Ejabberd trabajando.