Thanks, Stuart. Looking at your sample, I was able to fix it. I had a blank ldap.id_field, which the LDAP guy said was correct, but changing it to ldap.id_field = cn allowed me to log in!
-- Karen Savage Baylor University Libraries Electronic Library Library Systems karen_sav...@baylor.edu (254) 710-3275 -----Original Message----- From: Stuart Lewis [mailto:s.le...@auckland.ac.nz] Sent: Monday, February 07, 2011 12:00 PM To: Savage, Karen R. Cc: dspace-tech@lists.sourceforge.net Subject: Re: [Dspace-tech] LDAP Authentication Hi Karen, > This is what I'm finding in the log file: > > 2011-02-07 10:09:04,284 INFO > org.dspace.authenticate.LDAPHierarchicalAuthentication @ > anonymous:session_id=36F5668310DE405281CC4104721E98AD:ip_addr=129.62.210.158:auth:attempting > trivial auth of user=karen_savage > 2011-02-07 10:09:04,779 INFO > org.dspace.authenticate.LDAPHierarchicalAuthentication @ > anonymous:session_id=36F5668310DE405281CC4104721E98AD:ip_addr=129.62.210.158:failed_login:no > DN found for user karen_savage > 2011-02-07 10:09:04,779 INFO org.dspace.app.xmlui.utils.AuthenticationUtil @ > anonymous:session_id=36F5668310DE405281CC4104721E98AD:ip_addr=129.62.210.158:failed_login:email=karen_savage, > realm=null, result=2 > > The first thing I'm noticing is the anonymous session. Our LDAP server > doesn't allow anonymous access and our LDAP guy gave me the DN and password > of a user to put in the config file. He's also double-checked the rest of the > LDAP related variables to confirm they are correct. So is it normal for it to > say anonymous in the log file, or is it missing something in the config file? Seeing the anonymous session is normal. Once you have logged in, that will change to your login. Could you show us the LDAP configuration values you have (except for the password!). This might give us a clue. If it helps, there is a set of example LDAP settings (which should work if you want to try them against a public LDAP server) at: - http://blog.stuartlewis.com/2008/08/18/test-ldap-service-upgraded-now-with-branches/ Thanks, Stuart Lewis Digital Development Manager Te Tumu Herenga The University of Auckland Library Auckland Mail Centre, Private Bag 92019, Auckland 1142, New Zealand Ph: +64 (0)9 373 7599 x81928 ------------------------------------------------------------------------------ The modern datacenter depends on network connectivity to access resources and provide services. The best practices for maximizing a physical server's connectivity to a physical network are well understood - see how these rules translate into the virtual world? http://p.sf.net/sfu/oracle-sfdevnlfb _______________________________________________ DSpace-tech mailing list DSpace-tech@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/dspace-tech
