Both tweaks didn't change anything. Do I have to modify claim-config.xml ? Do you have a working example with OpenLDAP default schemas ?
Regards, Hanen On Tue, Dec 6, 2016 at 3:54 PM, Danushka Fernando <[email protected]> wrote: > My guess is that you are using default ldap config which we use wso2Person > type objects and your ldap doesn't have that type defined. So please try > changing that to inetOrgPerson in user-mgt.cml > > Thanks & Regards > Danushka Fernando > Senior Software Engineer > WSO2 inc. http://wso2.com/ > Mobile : +94716332729 <+94%2071%20633%202729> > > On Tue, Dec 6, 2016 at 7:18 PM, Hanen Ben Rhouma <[email protected]> > wrote: > >> Hello, >> >> I'm facing an issue while trying to authenticate external users (coming >> from an external OpenLDAP user store) through WSO2 IS. There are missing >> claims that are required and even through I commented all what my LDAP >> doesn't provide in claim-config.xml I'm still not able to authenticate >> users: >> >> [2016-12-06 13:32:39,159] DEBUG {org.wso2.carbon.user.core.lda >> p.ReadOnlyLDAPUserStoreManager} - User: admin exist: true >> [2016-12-06 13:32:39,161] DEBUG {org.wso2.carbon.user.core.lda >> p.ReadWriteLDAPUserStoreManager} - Replace escape characters configured >> to: true >> [2016-12-06 13:32:39,161] DEBUG {org.wso2.carbon.user.core.lda >> p.ReadWriteLDAPUserStoreManager} - Replace escape characters configured >> to: true >> [2016-12-06 13:32:39,204] DEBUG {org.wso2.carbon.user.core.lda >> p.ReadWriteLDAPUserStoreManager} - One or more attributes you are >> trying to add/update are not supported by underlying LDAP for user : admin >> javax.naming.directory.InvalidAttributeIdentifierException: [LDAP: error >> code 17 - failedLoginAttempts: attribute type undefined]; remaining name >> 'cn=admin' >> at com.sun.jndi.ldap.LdapCtx.mapErrorCode(LdapCtx.java:3205) >> at com.sun.jndi.ldap.LdapCtx.processReturnCode(LdapCtx.java:3082) >> at com.sun.jndi.ldap.LdapCtx.processReturnCode(LdapCtx.java:2888) >> at com.sun.jndi.ldap.LdapCtx.c_modifyAttributes(LdapCtx.java:1408) >> at com.sun.jndi.toolkit.ctx.ComponentDirContext.p_modifyAttribu >> tes(ComponentDirContext.java:257) >> at com.sun.jndi.toolkit.ctx.PartialCompositeDirContext.modifyAt >> tributes(PartialCompositeDirContext.java:167) >> at com.sun.jndi.toolkit.ctx.PartialCompositeDirContext.modifyAt >> tributes(PartialCompositeDirContext.java:156) >> at org.wso2.carbon.user.core.ldap.ReadWriteLDAPUserStoreManager >> .doSetUserClaimValues(ReadWriteLDAPUserStoreManager.java:917) >> at org.wso2.carbon.user.core.common.AbstractUserStoreManager.se >> tUserClaimValues(AbstractUserStoreManager.java:1211) >> at org.wso2.carbon.identity.governance.store.UserStoreBasedIden >> tityDataStore.store(UserStoreBasedIdentityDataStore.java:72) >> at org.wso2.carbon.identity.governance.listener.IdentityStoreEv >> entListener.doPreSetUserClaimValues(IdentityStoreEventListener.java:110) >> at org.wso2.carbon.user.core.common.AbstractUserStoreManager.se >> tUserClaimValues(AbstractUserStoreManager.java:1205) >> at org.wso2.carbon.identity.handler.event.account.lock.AccountL >> ockHandler.handlePostAuthentication(AccountLockHandler.java:221) >> at org.wso2.carbon.identity.handler.event.account.lock.AccountL >> ockHandler.handleEvent(AccountLockHandler.java:141) >> at org.wso2.carbon.identity.event.services.IdentityEventService >> Impl.handleEvent(IdentityEventServiceImpl.java:56) >> at org.wso2.carbon.identity.governance.listener.IdentityMgtEven >> tListener.handleEvent(IdentityMgtEventListener.java:595) >> at org.wso2.carbon.identity.governance.listener.IdentityMgtEven >> tListener.handleEvent(IdentityMgtEventListener.java:547) >> at org.wso2.carbon.identity.governance.listener.IdentityMgtEven >> tListener.doPostAuthenticate(IdentityMgtEventListener.java:101) >> at org.wso2.carbon.user.core.common.AbstractUserStoreManager.au >> thenticateInternal(AbstractUserStoreManager.java:558) >> at org.wso2.carbon.user.core.common.AbstractUserStoreManager.ac >> cess$100(AbstractUserStoreManager.java:71) >> at org.wso2.carbon.user.core.common.AbstractUserStoreManager$4. >> run(AbstractUserStoreManager.java:466) >> at org.wso2.carbon.user.core.common.AbstractUserStoreManager$4. >> run(AbstractUserStoreManager.java:463) >> at java.security.AccessController.doPrivileged(Native Method) >> at org.wso2.carbon.user.core.common.AbstractUserStoreManager.au >> thenticate(AbstractUserStoreManager.java:463) >> at org.wso2.carbon.user.core.common.AbstractUserStoreManager$3. >> run(AbstractUserStoreManager.java:451) >> at org.wso2.carbon.user.core.common.AbstractUserStoreManager$3. >> run(AbstractUserStoreManager.java:442) >> at java.security.AccessController.doPrivileged(Native Method) >> at org.wso2.carbon.user.core.common.AbstractUserStoreManager.au >> thenticate(AbstractUserStoreManager.java:442) >> at org.wso2.carbon.core.services.authentication.AuthenticationA >> dmin.login(AuthenticationAdmin.java:100) >> at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) >> at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAcce >> ssorImpl.java:62) >> at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMe >> thodAccessorImpl.java:43) >> at java.lang.reflect.Method.invoke(Method.java:498) >> at org.apache.axis2.rpc.receivers.RPCUtil.invokeServiceClass( >> RPCUtil.java:212) >> at org.apache.axis2.rpc.receivers.RPCMessageReceiver.invokeBusi >> nessLogic(RPCMessageReceiver.java:117) >> at org.apache.axis2.receivers.AbstractInOutMessageReceiver.invo >> keBusinessLogic(AbstractInOutMessageReceiver.java:40) >> at org.apache.axis2.receivers.AbstractMessageReceiver.receive(A >> bstractMessageReceiver.java:110) >> at org.apache.axis2.engine.AxisEngine.receive(AxisEngine.java:180) >> at org.apache.axis2.transport.local.LocalTransportReceiver.proc >> essMessage(LocalTransportReceiver.java:169) >> at org.apache.axis2.transport.local.LocalTransportReceiver.proc >> essMessage(LocalTransportReceiver.java:82) >> at org.wso2.carbon.core.transports.local.CarbonLocalTransportSe >> nder.finalizeSendWithToAddress(CarbonLocalTransportSender.java:45) >> at org.apache.axis2.transport.local.LocalTransportSender.invoke >> (LocalTransportSender.java:77) >> at org.apache.axis2.engine.AxisEngine.send(AxisEngine.java:442) >> at org.apache.axis2.description.OutInAxisOperationClient.send(O >> utInAxisOperation.java:430) >> at org.apache.axis2.description.OutInAxisOperationClient.execut >> eImpl(OutInAxisOperation.java:225) >> at org.apache.axis2.client.OperationClient.execute(OperationCli >> ent.java:149) >> at org.wso2.carbon.authenticator.stub.AuthenticationAdminStub.l >> ogin(AuthenticationAdminStub.java:659) >> at org.wso2.carbon.authenticator.proxy.AuthenticationAdminClien >> t.login(AuthenticationAdminClient.java:64) >> at org.wso2.carbon.ui.DefaultCarbonAuthenticator.doAuthenticati >> on(DefaultCarbonAuthenticator.java:119) >> at org.wso2.carbon.ui.AbstractCarbonUIAuthenticator.handleSecur >> ity(AbstractCarbonUIAuthenticator.java:218) >> at org.wso2.carbon.ui.BasicAuthUIAuthenticator.authenticate(Bas >> icAuthUIAuthenticator.java:83) >> at org.wso2.carbon.ui.CarbonUILoginUtil.handleLogin(CarbonUILog >> inUtil.java:390) >> at org.wso2.carbon.ui.CarbonSecuredHttpContext.handleSecurity(C >> arbonSecuredHttpContext.java:246) >> at org.eclipse.equinox.http.servlet.internal.ServletRegistratio >> n.service(ServletRegistration.java:60) >> at org.eclipse.equinox.http.servlet.internal.ProxyServlet.proce >> ssAlias(ProxyServlet.java:128) >> at org.eclipse.equinox.http.servlet.internal.ProxyServlet.servi >> ce(ProxyServlet.java:68) >> at javax.servlet.http.HttpServlet.service(HttpServlet.java:731) >> at org.wso2.carbon.tomcat.ext.servlet.DelegationServlet.service >> (DelegationServlet.java:68) >> at org.apache.catalina.core.ApplicationFilterChain.internalDoFi >> lter(ApplicationFilterChain.java:303) >> at org.apache.catalina.core.ApplicationFilterChain.doFilter(App >> licationFilterChain.java:208) >> at org.apache.tomcat.websocket.server.WsFilter.doFilter(WsFilter.java:52) >> at org.apache.catalina.core.ApplicationFilterChain.internalDoFi >> lter(ApplicationFilterChain.java:241) >> at org.apache.catalina.core.ApplicationFilterChain.doFilter(App >> licationFilterChain.java:208) >> at org.apache.catalina.filters.HttpHeaderSecurityFilter.doFilte >> r(HttpHeaderSecurityFilter.java:120) >> at org.apache.catalina.core.ApplicationFilterChain.internalDoFi >> lter(ApplicationFilterChain.java:241) >> at org.apache.catalina.core.ApplicationFilterChain.doFilter(App >> licationFilterChain.java:208) >> at org.wso2.carbon.tomcat.ext.filter.CharacterSetFilter.doFilte >> r(CharacterSetFilter.java:61) >> at org.apache.catalina.core.ApplicationFilterChain.internalDoFi >> lter(ApplicationFilterChain.java:241) >> at org.apache.catalina.core.ApplicationFilterChain.doFilter(App >> licationFilterChain.java:208) >> at org.apache.catalina.filters.HttpHeaderSecurityFilter.doFilte >> r(HttpHeaderSecurityFilter.java:120) >> at org.apache.catalina.core.ApplicationFilterChain.internalDoFi >> lter(ApplicationFilterChain.java:241) >> at org.apache.catalina.core.ApplicationFilterChain.doFilter(App >> licationFilterChain.java:208) >> at org.apache.catalina.core.StandardWrapperValve.invoke(Standar >> dWrapperValve.java:218) >> at org.apache.catalina.core.StandardContextValve.invoke(Standar >> dContextValve.java:122) >> at org.apache.catalina.authenticator.AuthenticatorBase.invoke(A >> uthenticatorBase.java:505) >> at org.apache.catalina.core.StandardHostValve.invoke(StandardHo >> stValve.java:169) >> at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorRepo >> rtValve.java:103) >> at org.wso2.carbon.tomcat.ext.valves.CompositeValve.continueInv >> ocation(CompositeValve.java:99) >> at org.wso2.carbon.tomcat.ext.valves.CarbonTomcatValve$1.invoke >> (CarbonTomcatValve.java:47) >> at org.wso2.carbon.webapp.mgt.TenantLazyLoaderValve.invoke(Tena >> ntLazyLoaderValve.java:57) >> at org.wso2.carbon.tomcat.ext.valves.TomcatValveContainer.invok >> eValves(TomcatValveContainer.java:47) >> at org.wso2.carbon.tomcat.ext.valves.CompositeValve.invoke(Comp >> ositeValve.java:62) >> at org.wso2.carbon.tomcat.ext.valves.CarbonStuckThreadDetection >> Valve.invoke(CarbonStuckThreadDetectionValve.java:159) >> at org.apache.catalina.valves.AccessLogValve.invoke(AccessLogVa >> lve.java:956) >> at org.wso2.carbon.tomcat.ext.valves.CarbonContextCreatorValve. >> invoke(CarbonContextCreatorValve.java:57) >> at org.apache.catalina.core.StandardEngineValve.invoke(Standard >> EngineValve.java:116) >> at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAd >> apter.java:442) >> at org.apache.coyote.http11.AbstractHttp11Processor.process(Abs >> tractHttp11Processor.java:1082) >> at org.apache.coyote.AbstractProtocol$AbstractConnectionHandler >> .process(AbstractProtocol.java:623) >> at org.apache.tomcat.util.net.NioEndpoint$SocketProcessor.doRun >> (NioEndpoint.java:1756) >> at org.apache.tomcat.util.net.NioEndpoint$SocketProcessor.run( >> NioEndpoint.java:1715) >> at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPool >> Executor.java:1142) >> at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoo >> lExecutor.java:617) >> at org.apache.tomcat.util.threads.TaskThread$WrappingRunnable. >> run(TaskThread.java:61) >> at java.lang.Thread.run(Thread.java:745) >> [2016-12-06 13:32:39,207] ERROR {org.wso2.carbon.core.services >> .authentication.AuthenticationAdmin} - System error while >> Authenticating/Authorizing User : Error when handling event : >> POST_AUTHENTICATION >> >> >> Do you have any idea how can I overcome this ? >> >> >> Regards, >> Hanen >> >> >> _______________________________________________ >> Dev mailing list >> [email protected] >> http://wso2.org/cgi-bin/mailman/listinfo/dev >> >> >
_______________________________________________ Dev mailing list [email protected] http://wso2.org/cgi-bin/mailman/listinfo/dev
