cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
1143
Views
0
Helpful
1
Replies

Cannot configure OpenLDAP source in Duo Access Gateway

sadsyed
Cisco Employee
Cisco Employee

I have Duo Access Gateway (v1.5.12) deployment in my kubernetes cluster and 7.4.12 version. I can load Authentication Source and create configuration for SAML IdP, Google, and Microsoft Azure. However, I get an error when trying to create OpenLDAP or Active Directory source. As per DAG documentation these are supported but is this issue fixed in later version?

I get this error in the /data/log/dag.log:

Sep 10 18:30:31 simplesamlphp ERROR [8dd808584a] SimpleSAML_Error_Exception: Error 2 - copy(/data/metadata/saml20-idp-hosted.json): failed to open stream: No such file or directory
Sep 10 18:30:31 simplesamlphp ERROR [8dd808584a] Backtrace:
Sep 10 18:30:31 simplesamlphp ERROR [8dd808584a] 5 /var/www/html/dag/www/_include.php:65 (SimpleSAML_error_handler)
Sep 10 18:30:31 simplesamlphp ERROR [8dd808584a] 4 [builtin] (copy)
Sep 10 18:30:31 simplesamlphp ERROR [8dd808584a] 3 /var/www/html/dag/src/Utilities.php:905 (Duo\DAG\Utilities::getPersistentFilepath)
Sep 10 18:30:31 simplesamlphp ERROR [8dd808584a] 2 /var/www/html/dag/src/Utilities.php:331 (Duo\DAG\Utilities::getAuthsource)
Sep 10 18:30:31 simplesamlphp ERROR [8dd808584a] 1 /var/www/html/dag/modules/duosecurity/www/admin/duo_authsource.php:20 (require)
Sep 10 18:30:31 simplesamlphp ERROR [8dd808584a] 0 /var/www/html/dag/www/module.php:140 (N/A)
Sep 10 18:30:31 simplesamlphp ERROR [8dd808584a] SimpleSAML_Error_Exception: Error 2 - copy(/data/metadata/saml20-idp-hosted.json): failed to open stream: No such file or directory
Sep 10 18:30:31 simplesamlphp ERROR [8dd808584a] Backtrace:
Sep 10 18:30:31 simplesamlphp ERROR [8dd808584a] 10 /var/www/html/dag/www/_include.php:65 (SimpleSAML_error_handler)
Sep 10 18:30:31 simplesamlphp ERROR [8dd808584a] 9 [builtin] (copy)
Sep 10 18:30:31 simplesamlphp ERROR [8dd808584a] 8 /var/www/html/dag/src/Utilities.php:905 (Duo\DAG\Utilities::getPersistentFilepath)
Sep 10 18:30:31 simplesamlphp ERROR [8dd808584a] 7 /var/www/html/dag/src/Utilities.php:331 (Duo\DAG\Utilities::getAuthsource)
Sep 10 18:30:31 simplesamlphp ERROR [8dd808584a] 6 /var/www/html/dag/modules/duosecurity/www/admin/duo_openldap.php:23 (include)
Sep 10 18:30:31 simplesamlphp ERROR [8dd808584a] 5 /var/www/html/dag/lib/SimpleSAML/Module.php:210 (SimpleSAML_Module::{closure})
Sep 10 18:30:31 simplesamlphp ERROR [8dd808584a] 4 /var/www/html/dag/lib/SimpleSAML/Module.php:211 (SimpleSAML_Module::includeModuleFile)
Sep 10 18:30:31 simplesamlphp ERROR [8dd808584a] 3 /var/www/html/dag/modules/duosecurity/templates/admin/duo_authsource.tpl.php:62 (require)
Sep 10 18:30:31 simplesamlphp ERROR [8dd808584a] 2 /var/www/html/dag/lib/SimpleSAML/XHTML/Template.php:581 (SimpleSAML_XHTML_Template::show)
Sep 10 18:30:31 simplesamlphp ERROR [8dd808584a] 1 /var/www/html/dag/modules/duosecurity/www/admin/duo_authsource.php:50 (require)
Sep 10 18:30:31 simplesamlphp ERROR [8dd808584a] 0 /var/www/html/dag/www/module.php:140 (N/A)
Sep 10 18:30:31 simplesamlphp ERROR [8dd808584a] SimpleSAML_Error_Exception: Error 2 - copy(/data/metadata/saml20-idp-hosted.json): failed to open stream: No such file or directory
Sep 10 18:30:31 simplesamlphp ERROR [8dd808584a] Backtrace:
Sep 10 18:30:31 simplesamlphp ERROR [8dd808584a] 10 /var/www/html/dag/www/_include.php:65 (SimpleSAML_error_handler)
Sep 10 18:30:31 simplesamlphp ERROR [8dd808584a] 9 [builtin] (copy)
Sep 10 18:30:31 simplesamlphp ERROR [8dd808584a] 8 /var/www/html/dag/src/Utilities.php:905 (Duo\DAG\Utilities::getPersistentFilepath)
Sep 10 18:30:31 simplesamlphp ERROR [8dd808584a] 7 /var/www/html/dag/src/Utilities.php:331 (Duo\DAG\Utilities::getAuthsource)
Sep 10 18:30:31 simplesamlphp ERROR [8dd808584a] 6 /var/www/html/dag/modules/duosecurity/www/admin/duo_openldap.php:120 (include)
Sep 10 18:30:31 simplesamlphp ERROR [8dd808584a] 5 /var/www/html/dag/lib/SimpleSAML/Module.php:210 (SimpleSAML_Module::{closure})
Sep 10 18:30:31 simplesamlphp ERROR [8dd808584a] 4 /var/www/html/dag/lib/SimpleSAML/Module.php:211 (SimpleSAML_Module::includeModuleFile)
Sep 10 18:30:31 simplesamlphp ERROR [8dd808584a] 3 /var/www/html/dag/modules/duosecurity/templates/admin/duo_authsource.tpl.php:62 (require)
Sep 10 18:30:31 simplesamlphp ERROR [8dd808584a] 2 /var/www/html/dag/lib/SimpleSAML/XHTML/Template.php:581 (SimpleSAML_XHTML_Template::show)
Sep 10 18:30:31 simplesamlphp ERROR [8dd808584a] 1 /var/www/html/dag/modules/duosecurity/www/admin/duo_authsource.php:50 (require)
Sep 10 18:30:31 simplesamlphp ERROR [8dd808584a] 0 /var/www/html/dag/www/module.php:140 (N/A)
Sep 10 18:30:31 simplesamlphp ERROR [8dd808584a] SimpleSAML_Error_Error: UNHANDLEDEXCEPTION
Sep 10 18:30:31 simplesamlphp ERROR [8dd808584a] Backtrace:
Sep 10 18:30:31 simplesamlphp ERROR [8dd808584a] 1 /var/www/html/dag/www/_include.php:22 (SimpleSAML_throwable_handler)
Sep 10 18:30:31 simplesamlphp ERROR [8dd808584a] 0 [builtin] (N/A)
Sep 10 18:30:31 simplesamlphp ERROR [8dd808584a] Caused by: TypeError: Argument 1 passed to Duo\DAG\Config\ServiceProviders::fromDefaultDirectory() must be of the type string, null given, called in /var/www/html/dag/modules/duosecurity/www/admin/duo_openldap.php on line 121
Sep 10 18:30:31 simplesamlphp ERROR [8dd808584a] Backtrace:
Sep 10 18:30:31 simplesamlphp ERROR [8dd808584a] 7 /var/www/html/dag/src/Config/ServiceProviders.php:56 (Duo\DAG\Config\ServiceProviders::fromDefaultDirectory)
Sep 10 18:30:31 simplesamlphp ERROR [8dd808584a] 6 /var/www/html/dag/modules/duosecurity/www/admin/duo_openldap.php:121 (include)
Sep 10 18:30:31 simplesamlphp ERROR [8dd808584a] 5 /var/www/html/dag/lib/SimpleSAML/Module.php:210 (SimpleSAML_Module::{closure})
Sep 10 18:30:31 simplesamlphp ERROR [8dd808584a] 4 /var/www/html/dag/lib/SimpleSAML/Module.php:211 (SimpleSAML_Module::includeModuleFile)
Sep 10 18:30:31 simplesamlphp ERROR [8dd808584a] 3 /var/www/html/dag/modules/duosecurity/templates/admin/duo_authsource.tpl.php:62 (require)
Sep 10 18:30:31 simplesamlphp ERROR [8dd808584a] 2 /var/www/html/dag/lib/SimpleSAML/XHTML/Template.php:581 (SimpleSAML_XHTML_Template::show)
Sep 10 18:30:31 simplesamlphp ERROR [8dd808584a] 1 /var/www/html/dag/modules/duosecurity/www/admin/duo_authsource.php:50 (require)
Sep 10 18:30:31 simplesamlphp ERROR [8dd808584a] 0 /var/www/html/dag/www/module.php:140 (N/A)
Sep 10 18:30:31 simplesamlphp ERROR [8dd808584a] Error report with id d718cb09 generated.
1 Accepted Solution

Accepted Solutions

sadsyed
Cisco Employee
Cisco Employee

I got it to work! There was permission issue on /data directory in Duo Access Gateway pod.

View solution in original post

1 Reply 1

sadsyed
Cisco Employee
Cisco Employee

I got it to work! There was permission issue on /data directory in Duo Access Gateway pod.

Quick Links