My guess is that you are using default ldap config which we use wso2Person type objects and your ldap doesn't have that type defined. So please try changing that to inetOrgPerson in user-mgt.cml
Thanks & Regards Danushka Fernando Senior Software Engineer WSO2 inc. http://wso2.com/ Mobile : +94716332729 On Tue, Dec 6, 2016 at 7:18 PM, Hanen Ben Rhouma <hanen...@gmail.com> wrote: > Hello, > > I'm facing an issue while trying to authenticate external users (coming > from an external OpenLDAP user store) through WSO2 IS. There are missing > claims that are required and even through I commented all what my LDAP > doesn't provide in claim-config.xml I'm still not able to authenticate > users: > > [2016-12-06 13:32:39,159] DEBUG > {org.wso2.carbon.user.core.ldap.ReadOnlyLDAPUserStoreManager} > - User: admin exist: true > [2016-12-06 13:32:39,161] DEBUG > {org.wso2.carbon.user.core.ldap.ReadWriteLDAPUserStoreManager} > - Replace escape characters configured to: true > [2016-12-06 13:32:39,161] DEBUG > {org.wso2.carbon.user.core.ldap.ReadWriteLDAPUserStoreManager} > - Replace escape characters configured to: true > [2016-12-06 13:32:39,204] DEBUG > {org.wso2.carbon.user.core.ldap.ReadWriteLDAPUserStoreManager} > - One or more attributes you are trying to add/update are not supported by > underlying LDAP for user : admin > javax.naming.directory.InvalidAttributeIdentifierException: [LDAP: error > code 17 - failedLoginAttempts: attribute type undefined]; remaining name > 'cn=admin' > at com.sun.jndi.ldap.LdapCtx.mapErrorCode(LdapCtx.java:3205) > at com.sun.jndi.ldap.LdapCtx.processReturnCode(LdapCtx.java:3082) > at com.sun.jndi.ldap.LdapCtx.processReturnCode(LdapCtx.java:2888) > at com.sun.jndi.ldap.LdapCtx.c_modifyAttributes(LdapCtx.java:1408) > at com.sun.jndi.toolkit.ctx.ComponentDirContext.p_modifyAttributes( > ComponentDirContext.java:257) > at com.sun.jndi.toolkit.ctx.PartialCompositeDirContext.modifyAttributes( > PartialCompositeDirContext.java:167) > at com.sun.jndi.toolkit.ctx.PartialCompositeDirContext.modifyAttributes( > PartialCompositeDirContext.java:156) > at org.wso2.carbon.user.core.ldap.ReadWriteLDAPUserStoreManager. > doSetUserClaimValues(ReadWriteLDAPUserStoreManager.java:917) > at org.wso2.carbon.user.core.common.AbstractUserStoreManager. > setUserClaimValues(AbstractUserStoreManager.java:1211) > at org.wso2.carbon.identity.governance.store. > UserStoreBasedIdentityDataStore.store(UserStoreBasedIdentityDataStor > e.java:72) > at org.wso2.carbon.identity.governance.listener. > IdentityStoreEventListener.doPreSetUserClaimValues( > IdentityStoreEventListener.java:110) > at org.wso2.carbon.user.core.common.AbstractUserStoreManager. > setUserClaimValues(AbstractUserStoreManager.java:1205) > at org.wso2.carbon.identity.handler.event.account.lock.AccountLockHandler. > handlePostAuthentication(AccountLockHandler.java:221) > at org.wso2.carbon.identity.handler.event.account.lock.AccountLockHandler. > handleEvent(AccountLockHandler.java:141) > at org.wso2.carbon.identity.event.services.IdentityEventServiceImpl. > handleEvent(IdentityEventServiceImpl.java:56) > at org.wso2.carbon.identity.governance.listener.IdentityMgtEventListener. > handleEvent(IdentityMgtEventListener.java:595) > at org.wso2.carbon.identity.governance.listener.IdentityMgtEventListener. > handleEvent(IdentityMgtEventListener.java:547) > at org.wso2.carbon.identity.governance.listener.IdentityMgtEventListener. > doPostAuthenticate(IdentityMgtEventListener.java:101) > at org.wso2.carbon.user.core.common.AbstractUserStoreManager. > authenticateInternal(AbstractUserStoreManager.java:558) > at org.wso2.carbon.user.core.common.AbstractUserStoreManager.access$100( > AbstractUserStoreManager.java:71) > at org.wso2.carbon.user.core.common.AbstractUserStoreManager$4. > run(AbstractUserStoreManager.java:466) > at org.wso2.carbon.user.core.common.AbstractUserStoreManager$4. > run(AbstractUserStoreManager.java:463) > at java.security.AccessController.doPrivileged(Native Method) > at org.wso2.carbon.user.core.common.AbstractUserStoreManager.authenticate( > AbstractUserStoreManager.java:463) > at org.wso2.carbon.user.core.common.AbstractUserStoreManager$3. > run(AbstractUserStoreManager.java:451) > at org.wso2.carbon.user.core.common.AbstractUserStoreManager$3. > run(AbstractUserStoreManager.java:442) > at java.security.AccessController.doPrivileged(Native Method) > at org.wso2.carbon.user.core.common.AbstractUserStoreManager.authenticate( > AbstractUserStoreManager.java:442) > at org.wso2.carbon.core.services.authentication.AuthenticationAdmin.login( > AuthenticationAdmin.java:100) > at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) > at sun.reflect.NativeMethodAccessorImpl.invoke( > NativeMethodAccessorImpl.java:62) > at sun.reflect.DelegatingMethodAccessorImpl.invoke( > DelegatingMethodAccessorImpl.java:43) > at java.lang.reflect.Method.invoke(Method.java:498) > at org.apache.axis2.rpc.receivers.RPCUtil.invokeServiceClass(RPCUtil. > java:212) > at org.apache.axis2.rpc.receivers.RPCMessageReceiver.invokeBusinessLogic( > RPCMessageReceiver.java:117) > at org.apache.axis2.receivers.AbstractInOutMessageReceiver. > invokeBusinessLogic(AbstractInOutMessageReceiver.java:40) > at org.apache.axis2.receivers.AbstractMessageReceiver.receive( > AbstractMessageReceiver.java:110) > at org.apache.axis2.engine.AxisEngine.receive(AxisEngine.java:180) > at org.apache.axis2.transport.local.LocalTransportReceiver.processMessage( > LocalTransportReceiver.java:169) > at org.apache.axis2.transport.local.LocalTransportReceiver.processMessage( > LocalTransportReceiver.java:82) > at org.wso2.carbon.core.transports.local.CarbonLocalTransportSender. > finalizeSendWithToAddress(CarbonLocalTransportSender.java:45) > at org.apache.axis2.transport.local.LocalTransportSender. > invoke(LocalTransportSender.java:77) > at org.apache.axis2.engine.AxisEngine.send(AxisEngine.java:442) > at org.apache.axis2.description.OutInAxisOperationClient.send( > OutInAxisOperation.java:430) > at org.apache.axis2.description.OutInAxisOperationClient.executeImpl( > OutInAxisOperation.java:225) > at org.apache.axis2.client.OperationClient.execute( > OperationClient.java:149) > at org.wso2.carbon.authenticator.stub.AuthenticationAdminStub. > login(AuthenticationAdminStub.java:659) > at org.wso2.carbon.authenticator.proxy.AuthenticationAdminClient.login( > AuthenticationAdminClient.java:64) > at org.wso2.carbon.ui.DefaultCarbonAuthenticator.doAuthentication( > DefaultCarbonAuthenticator.java:119) > at org.wso2.carbon.ui.AbstractCarbonUIAuthenticator.handleSecurity( > AbstractCarbonUIAuthenticator.java:218) > at org.wso2.carbon.ui.BasicAuthUIAuthenticator.authenticate( > BasicAuthUIAuthenticator.java:83) > at org.wso2.carbon.ui.CarbonUILoginUtil.handleLogin( > CarbonUILoginUtil.java:390) > at org.wso2.carbon.ui.CarbonSecuredHttpContext.handleSecurity( > CarbonSecuredHttpContext.java:246) > at org.eclipse.equinox.http.servlet.internal.ServletRegistration.service( > ServletRegistration.java:60) > at org.eclipse.equinox.http.servlet.internal.ProxyServlet. > processAlias(ProxyServlet.java:128) > at org.eclipse.equinox.http.servlet.internal.ProxyServlet. > service(ProxyServlet.java:68) > at javax.servlet.http.HttpServlet.service(HttpServlet.java:731) > at org.wso2.carbon.tomcat.ext.servlet.DelegationServlet. > service(DelegationServlet.java:68) > at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter( > ApplicationFilterChain.java:303) > at org.apache.catalina.core.ApplicationFilterChain.doFilter( > ApplicationFilterChain.java:208) > at org.apache.tomcat.websocket.server.WsFilter.doFilter(WsFilter.java:52) > at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter( > ApplicationFilterChain.java:241) > at org.apache.catalina.core.ApplicationFilterChain.doFilter( > ApplicationFilterChain.java:208) > at org.apache.catalina.filters.HttpHeaderSecurityFilter.doFilter( > HttpHeaderSecurityFilter.java:120) > at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter( > ApplicationFilterChain.java:241) > at org.apache.catalina.core.ApplicationFilterChain.doFilter( > ApplicationFilterChain.java:208) > at org.wso2.carbon.tomcat.ext.filter.CharacterSetFilter. > doFilter(CharacterSetFilter.java:61) > at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter( > ApplicationFilterChain.java:241) > at org.apache.catalina.core.ApplicationFilterChain.doFilter( > ApplicationFilterChain.java:208) > at org.apache.catalina.filters.HttpHeaderSecurityFilter.doFilter( > HttpHeaderSecurityFilter.java:120) > at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter( > ApplicationFilterChain.java:241) > at org.apache.catalina.core.ApplicationFilterChain.doFilter( > ApplicationFilterChain.java:208) > at org.apache.catalina.core.StandardWrapperValve.invoke( > StandardWrapperValve.java:218) > at org.apache.catalina.core.StandardContextValve.invoke( > StandardContextValve.java:122) > at org.apache.catalina.authenticator.AuthenticatorBase.invoke( > AuthenticatorBase.java:505) > at org.apache.catalina.core.StandardHostValve.invoke( > StandardHostValve.java:169) > at org.apache.catalina.valves.ErrorReportValve.invoke( > ErrorReportValve.java:103) > at org.wso2.carbon.tomcat.ext.valves.CompositeValve.continueInvocation( > CompositeValve.java:99) > at org.wso2.carbon.tomcat.ext.valves.CarbonTomcatValve$1. > invoke(CarbonTomcatValve.java:47) > at org.wso2.carbon.webapp.mgt.TenantLazyLoaderValve.invoke( > TenantLazyLoaderValve.java:57) > at org.wso2.carbon.tomcat.ext.valves.TomcatValveContainer.invokeValves( > TomcatValveContainer.java:47) > at org.wso2.carbon.tomcat.ext.valves.CompositeValve.invoke( > CompositeValve.java:62) > at org.wso2.carbon.tomcat.ext.valves.CarbonStuckThreadDetectionValv > e.invoke(CarbonStuckThreadDetectionValve.java:159) > at org.apache.catalina.valves.AccessLogValve.invoke( > AccessLogValve.java:956) > at org.wso2.carbon.tomcat.ext.valves.CarbonContextCreatorValve.invoke( > CarbonContextCreatorValve.java:57) > at org.apache.catalina.core.StandardEngineValve.invoke( > StandardEngineValve.java:116) > at org.apache.catalina.connector.CoyoteAdapter.service( > CoyoteAdapter.java:442) > at org.apache.coyote.http11.AbstractHttp11Processor.process( > AbstractHttp11Processor.java:1082) > at org.apache.coyote.AbstractProtocol$AbstractConnectionHandler. > process(AbstractProtocol.java:623) > at org.apache.tomcat.util.net.NioEndpoint$SocketProcessor. > doRun(NioEndpoint.java:1756) > at org.apache.tomcat.util.net.NioEndpoint$SocketProcessor. > run(NioEndpoint.java:1715) > at java.util.concurrent.ThreadPoolExecutor.runWorker( > ThreadPoolExecutor.java:1142) > at java.util.concurrent.ThreadPoolExecutor$Worker.run( > ThreadPoolExecutor.java:617) > at org.apache.tomcat.util.threads.TaskThread$WrappingRunnable.run( > TaskThread.java:61) > at java.lang.Thread.run(Thread.java:745) > [2016-12-06 13:32:39,207] ERROR {org.wso2.carbon.core. > services.authentication.AuthenticationAdmin} - System error while > Authenticating/Authorizing User : Error when handling event : > POST_AUTHENTICATION > > > Do you have any idea how can I overcome this ? > > > Regards, > Hanen > > > _______________________________________________ > Dev mailing list > Dev@wso2.org > http://wso2.org/cgi-bin/mailman/listinfo/dev > >
_______________________________________________ Dev mailing list Dev@wso2.org http://wso2.org/cgi-bin/mailman/listinfo/dev
