Hi all, I am trying to integrate Jetspeed 2.2.0 with an LdaP server(TDS), I followed the steps given in the link http://osdir.com/ml/jetspeed-user-portals.apache.org/2009-08/msg00014.html#
We don’t have a Roles concept in our project, its just that users belong to groups. My override.properties file is as follows: ldap.url=ldap://localhost:389 ldap.base=dc=test,dc=com ldap.userDn=cn=root ldap.password=password ldap.context.factory=com.sun.jndi.ldap.LdapCtxFactory ldap.user.filter=(objectclass=inetOrgPerson) ldap.search.scope=2 ldap.user.searchBase= ldap.user.entryPrefix=uid ldap.role.searchBase=cn=groups,dc=test,dc=com ldap.group.searchBase=cn=groups,dc=test,dc=com #Turn on LDAP Security spring.filter.key=portal.ldap And my security-ldap.xml file is as follows: <bean id="UserDaoConfiguration" class="org.apache.jetspeed.security.mapping.ldap.dao.LDAPEntityDAOConfiguration" init-method="initialize"> <meta key="j2:cat" value="ldapSecurity" /> <property name="baseDN" value="${ldap.base}" /> <property name="searchDN" value="${ldap.user.searchBase}" /> <property name="searchFilter"> <bean class="org.apache.jetspeed.security.mapping.ldap.filter.SimpleFilter"> <constructor-arg index="0" value="(objectClass=inetOrgPerson)" /> </bean> </property> <property name="ldapIdAttribute" value="uid" /> <property name="objectClasses" value="inetOrgPerson,organizationalPerson,person,top"/> <property name="attributeDefinitions"> <set> <bean class="org.apache.jetspeed.security.mapping.model.impl.AttributeDefImpl"> <constructor-arg type="java.lang.String" index="0" value="uid" /> <constructor-arg index="1" value="false" /> <constructor-arg index="2" value="false" /> <property name="required" value="true"/> <property name="idAttribute" value="true"/> </bean> <bean class="org.apache.jetspeed.security.mapping.model.impl.AttributeDefImpl"> <constructor-arg type="java.lang.String" index="0" value="cn" /> <constructor-arg index="1" value="false" /> <constructor-arg index="2" value="false" /> <property name="required" value="true"/> <property name="idAttribute" value="true"/> </bean> <bean class="org.apache.jetspeed.security.mapping.model.impl.AttributeDefImpl"> <constructor-arg type="java.lang.String" index="0" value="sn" /> <constructor-arg index="1" value="false" /> <constructor-arg index="2" value="false" /> <property name="required" value="true"/> <property name="idAttribute" value="true"/> </bean> <bean class="org.apache.jetspeed.security.mapping.model.impl.AttributeDefImpl"> <constructor-arg type="java.lang.String" index="0" value="givenName" /> <constructor-arg index="1" value="false" /> <constructor-arg index="2" value="true" /> <constructor-arg type="java.lang.String" index="3" value="user.name.given" /> </bean> </set> </property> <property name="entityType" value="user" /> </bean> <bean id="RoleDaoConfiguration" class="org.apache.jetspeed.security.mapping.ldap.dao.LDAPEntityDAOConfiguration" init-method="initialize"> <meta key="j2:cat" value="ldapSecurity" /> <property name="baseDN" value="${ldap.base}" /> <property name="searchDN" value="${ldap.role.searchBase}" /> <property name="searchFilter"> <bean class="org.apache.jetspeed.security.mapping.ldap.filter.SimpleFilter"> <constructor-arg index="0" value="(objectClass=groupOfUniqueNames)" /> </bean> </property> <property name="ldapIdAttribute" value="cn" /> <property name="objectClasses" value="groupOfUniqueNames,top"/> <property name="attributeDefinitions"> <set> <bean class="org.apache.jetspeed.security.mapping.model.impl.AttributeDefImpl"> <constructor-arg type="java.lang.String" index="0" value="cn" /> <constructor-arg index="1" value="false" /> <constructor-arg index="2" value="false" /> <property name="required" value="true"/> <property name="idAttribute" value="true"/> </bean> <bean class="org.apache.jetspeed.security.mapping.model.impl.AttributeDefImpl"> <constructor-arg type="java.lang.String" index="0" value="uniqueMember" /> <constructor-arg index="1" value="true" /> <constructor-arg index="2" value="false" /> <property name="required" value="true" /> <property name="requiredDefaultValue" value="uid=dummy" /> </bean> </set> </property> <property name="entityType" value="role" /> </bean> <bean id="GroupDaoConfiguration" class="org.apache.jetspeed.security.mapping.ldap.dao.LDAPEntityDAOConfiguration" init-method="initialize"> <meta key="j2:cat" value="ldapSecurity" /> <property name="baseDN" value="${ldap.base}" /> <property name="searchDN" value="${ldap.group.searchBase}" /> <property name="searchFilter"> <bean class="org.apache.jetspeed.security.mapping.ldap.filter.SimpleFilter"> <constructor-arg index="0" value="(objectClass=groupOfUniqueNames)" /> </bean> </property> <property name="ldapIdAttribute" value="cn" /> <property name="objectClasses" value="groupOfUniqueNames,top"/> <property name="attributeDefinitions"> <set> <bean class="org.apache.jetspeed.security.mapping.model.impl.AttributeDefImpl"> <constructor-arg type="java.lang.String" index="0" value="cn" /> <constructor-arg index="1" value="false" /> <constructor-arg index="2" value="false" /> <property name="required" value="true"/> <property name="idAttribute" value="true"/> </bean> <bean class="org.apache.jetspeed.security.mapping.model.impl.AttributeDefImpl"> <constructor-arg type="java.lang.String" index="0" value="uniqueMember" /> <constructor-arg index="1" value="true" /> <constructor-arg index="2" value="false" /> <property name="required" value="true" /> <property name="requiredDefaultValue" value="uid=dummy" /> </bean> </set> </property> <property name="entityType" value="group" /> </bean> <bean id="UserDao" class="org.apache.jetspeed.security.mapping.ldap.dao.impl.SpringLDAPEntityDAO"> <meta key="j2:cat" value="ldapSecurity" /> <constructor-arg ref="UserDaoConfiguration"/> <property name="ldapTemplate"> <bean class="org.springframework.ldap.core.LdapTemplate"> <property name="contextSource" ref="LdapSpringContext" /> </bean> </property> </bean> <bean id="UserRoleRelationDAO" class="org.apache.jetspeed.security.mapping.ldap.dao.impl.AttributeBasedRelationDAO"> <meta key="j2:cat" value="ldapSecurity" /> <property name="relationAttribute" value="uniqueMember" /> <property name="attributeContainsInternalId" value="true" /> <property name="useFromEntityAttribute" value="false" /> <property name="relationType"> <bean class="org.apache.jetspeed.security.mapping.impl.SecurityEntityRelationTypeImpl"> <constructor-arg index="0" value="isMemberOf" /> <constructor-arg index="1" value="user" /> <constructor-arg index="2" value="role" /> </bean> </property> </bean> <bean id="UserGroupRelationDAO" class="org.apache.jetspeed.security.mapping.ldap.dao.impl.AttributeBasedRelationDAO"> <meta key="j2:cat" value="ldapSecurity" /> <property name="relationAttribute" value="uniqueMember" /> <property name="attributeContainsInternalId" value="true" /> <property name="useFromEntityAttribute" value="false" /> <property name="relationType"> <bean class="org.apache.jetspeed.security.mapping.impl.SecurityEntityRelationTypeImpl"> <constructor-arg index="0" value="isMemberOf" /> <constructor-arg index="1" value="user" /> <constructor-arg index="2" value="group" /> </bean> </property> </bean> <bean id="RoleGroupRelationDAO" class="org.apache.jetspeed.security.mapping.ldap.dao.impl.AttributeBasedRelationDAO"> <meta key="j2:cat" value="ldapSecurity" /> <property name="relationAttribute" value="member" /> <property name="attributeContainsInternalId" value="true" /> <property name="useFromEntityAttribute" value="true" /> <property name="relationType"> <bean class="org.apache.jetspeed.security.mapping.impl.SecurityEntityRelationTypeImpl"> <constructor-arg index="0" value="isMemberOf" /> <constructor-arg index="1" value="group" /> <constructor-arg index="2" value="role" /> </bean> </property> </bean> My problem is that we don’t have a Roles concept in our project, its just that users belong to groups. So I tried keeping the ldap.role.searchBase empty and ldap.group.searchBase empty, I also tried setting both to the same value . But still I get an error. When I try to log in I am getting a NameNotFoundException in the authenticate() method of LdapAuthenticationProvider class if(authenticated) { System.out.println(" Inside if(authenticated)"); User user = getUser(userName);-----Exception is coming at this point System.out.println("After getting user ==> "+user.getName()+" ==> "+user); authUser = new AuthenticatedUserImpl(user, new UserCredentialImpl(upcm.getPasswordCredential(user))); System.out.println("After authUser==> "+authUser); } org.springframework.ldap.NameNotFoundException: [LDAP: error code 32 - No Such O bject]; nested exception is javax.naming.NameNotFoundException: [LDAP: error cod e 32 - No Such Object]; remaining name 'cn=groups,dc=test,dc=com' at org.springframework.ldap.support.LdapUtils.convertLdapException(LdapU tils.java:172) at org.springframework.ldap.core.LdapTemplate.search(LdapTemplate.java:3 06) at org.springframework.ldap.core.LdapTemplate.search(LdapTemplate.java:2 59) at org.springframework.ldap.core.LdapTemplate.search(LdapTemplate.java:6 06) at org.springframework.ldap.core.LdapTemplate.search(LdapTemplate.java:5 24) at org.springframework.ldap.core.LdapTemplate.search(LdapTemplate.java:4 73) at org.springframework.ldap.core.LdapTemplate.search(LdapTemplate.java:4 93) at org.apache.jetspeed.security.mapping.ldap.dao.impl.SpringLDAPEntityDA O.getEntities(SpringLDAPEntityDAO.java:227) at org.apache.jetspeed.security.mapping.ldap.dao.impl.AttributeBasedRela tionDAO.internalGetRelatedEntities(AttributeBasedRelationDAO.java:89) at org.apache.jetspeed.security.mapping.ldap.dao.impl.AttributeBasedRela tionDAO.getRelatedEntitiesFrom(AttributeBasedRelationDAO.java:52) at org.apache.jetspeed.security.mapping.ldap.dao.DefaultLDAPEntityManage r.getRelatedEntitiesFrom(DefaultLDAPEntityManager.java:149) at org.apache.jetspeed.security.spi.impl.DefaultJetspeedSecuritySynchron izer.synchronizeAddedEntityRelations(DefaultJetspeedSecuritySynchronizer.java:20 0) at org.apache.jetspeed.security.spi.impl.DefaultJetspeedSecuritySynchron izer.synchronizeEntityRelations(DefaultJetspeedSecuritySynchronizer.java:168) at org.apache.jetspeed.security.spi.impl.DefaultJetspeedSecuritySynchron izer.recursiveSynchronizeEntity(DefaultJetspeedSecuritySynchronizer.java:148) at org.apache.jetspeed.security.spi.impl.DefaultJetspeedSecuritySynchron izer.synchronizeUserPrincipal(DefaultJetspeedSecuritySynchronizer.java:128) at org.apache.jetspeed.security.impl.LdapAuthenticationProvider.getUser( LdapAuthenticationProvider.java:102) at org.apache.jetspeed.security.impl.LdapAuthenticationProvider.authenti cate(LdapAuthenticationProvider.java:74) at org.apache.jetspeed.security.impl.DefaultLoginModule.login(DefaultLog inModule.java:222) at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) at sun.reflect.NativeMethodAccessorImpl.invoke(Unknown Source) at sun.reflect.DelegatingMethodAccessorImpl.invoke(Unknown Source) at java.lang.reflect.Method.invoke(Unknown Source) at javax.security.auth.login.LoginContext.invoke(Unknown Source) at javax.security.auth.login.LoginContext.access$000(Unknown Source) at javax.security.auth.login.LoginContext$4.run(Unknown Source) at java.security.AccessController.doPrivileged(Native Method) at javax.security.auth.login.LoginContext.invokePriv(Unknown Source) at javax.security.auth.login.LoginContext.login(Unknown Source) at org.apache.catalina.realm.JAASRealm.authenticate(JAASRealm.java:399) at org.apache.catalina.realm.JAASRealm.authenticate(JAASRealm.java:323) at org.apache.catalina.authenticator.FormAuthenticator.authenticate(Form Authenticator.java:258) at org.apache.catalina.authenticator.AuthenticatorBase.invoke(Authentica torBase.java:417) at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.j ava:128) at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.j ava:102) at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineVal ve.java:109) at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.jav a:293) at org.apache.coyote.http11.Http11AprProcessor.process(Http11AprProcesso r.java:859) at org.apache.coyote.http11.Http11AprProtocol$Http11ConnectionHandler.pr ocess(Http11AprProtocol.java:574) at org.apache.tomcat.util.net.AprEndpoint$Worker.run(AprEndpoint.java:15 27) at java.lang.Thread.run(Unknown Source) Caused by: javax.naming.NameNotFoundException: [LDAP: error code 32 - No Such Ob ject]; remaining name 'cn=groups,dc=test,dc=com' at com.sun.jndi.ldap.LdapCtx.mapErrorCode(Unknown Source) at com.sun.jndi.ldap.LdapCtx.processReturnCode(Unknown Source) at com.sun.jndi.ldap.LdapCtx.processReturnCode(Unknown Source) at com.sun.jndi.ldap.LdapCtx.searchAux(Unknown Source) at com.sun.jndi.ldap.LdapCtx.c_search(Unknown Source) at com.sun.jndi.toolkit.ctx.ComponentDirContext.p_search(Unknown Source) at com.sun.jndi.toolkit.ctx.PartialCompositeDirContext.search(Unknown So urce) at com.sun.jndi.toolkit.ctx.PartialCompositeDirContext.search(Unknown So urce) at javax.naming.directory.InitialDirContext.search(Unknown Source) at org.springframework.ldap.core.LdapTemplate$4.executeSearch(LdapTempla te.java:253) at org.springframework.ldap.core.LdapTemplate.search(LdapTemplate.java:2 93) ... 38 more java.lang.NullPointerException at org.apache.jetspeed.security.impl.UserManagerImpl.resolveSubjectPrinc ipals(UserManagerImpl.java:173) at org.apache.jetspeed.security.impl.UserManagerImpl.getSubject(UserMana gerImpl.java:143) at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) at sun.reflect.NativeMethodAccessorImpl.invoke(Unknown Source) at sun.reflect.DelegatingMethodAccessorImpl.invoke(Unknown Source) at java.lang.reflect.Method.invoke(Unknown Source) at org.springframework.aop.support.AopUtils.invokeJoinpointUsingReflecti on(AopUtils.java:307) at org.springframework.aop.framework.ReflectiveMethodInvocation.invokeJo inpoint(ReflectiveMethodInvocation.java:182) at org.springframework.aop.framework.ReflectiveMethodInvocation.proceed( ReflectiveMethodInvocation.java:149) at org.springframework.transaction.interceptor.TransactionInterceptor.in voke(TransactionInterceptor.java:106) at org.springframework.aop.framework.ReflectiveMethodInvocation.proceed( ReflectiveMethodInvocation.java:171) at org.springframework.aop.framework.JdkDynamicAopProxy.invoke(JdkDynami cAopProxy.java:204) at $Proxy4.getSubject(Unknown Source) at org.apache.jetspeed.security.impl.DefaultLoginModule.commit(DefaultLo ginModule.java:165) at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) at sun.reflect.NativeMethodAccessorImpl.invoke(Unknown Source) at sun.reflect.DelegatingMethodAccessorImpl.invoke(Unknown Source) at java.lang.reflect.Method.invoke(Unknown Source) at javax.security.auth.login.LoginContext.invoke(Unknown Source) at javax.security.auth.login.LoginContext.access$000(Unknown Source) at javax.security.auth.login.LoginContext$4.run(Unknown Source) at java.security.AccessController.doPrivileged(Native Method) at javax.security.auth.login.LoginContext.invokePriv(Unknown Source) at javax.security.auth.login.LoginContext.login(Unknown Source) at org.apache.catalina.realm.JAASRealm.authenticate(JAASRealm.java:399) at org.apache.catalina.realm.JAASRealm.authenticate(JAASRealm.java:323) at org.apache.catalina.authenticator.FormAuthenticator.authenticate(Form Authenticator.java:258) at org.apache.catalina.authenticator.AuthenticatorBase.invoke(Authentica torBase.java:417) at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.j ava:128) at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.j ava:102) at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineVal ve.java:109) at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.jav a:293) at org.apache.coyote.http11.Http11AprProcessor.process(Http11AprProcesso r.java:859) at org.apache.coyote.http11.Http11AprProtocol$Http11ConnectionHandler.pr ocess(Http11AprProtocol.java:574) at org.apache.tomcat.util.net.AprEndpoint$Worker.run(AprEndpoint.java:15 27) at java.lang.Thread.run(Unknown Source) Oct 5, 2009 5:55:31 PM org.apache.catalina.realm.JAASRealm authenticate WARNING: Cannot find message associated with key jaasRealm.loginException javax.security.auth.login.LoginException at org.apache.jetspeed.security.impl.DefaultLoginModule.commit(DefaultLo ginModule.java:181) at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) at sun.reflect.NativeMethodAccessorImpl.invoke(Unknown Source) at sun.reflect.DelegatingMethodAccessorImpl.invoke(Unknown Source) at java.lang.reflect.Method.invoke(Unknown Source) at javax.security.auth.login.LoginContext.invoke(Unknown Source) at javax.security.auth.login.LoginContext.access$000(Unknown Source) at javax.security.auth.login.LoginContext$4.run(Unknown Source) at java.security.AccessController.doPrivileged(Native Method) at javax.security.auth.login.LoginContext.invokePriv(Unknown Source) at javax.security.auth.login.LoginContext.login(Unknown Source) at org.apache.catalina.realm.JAASRealm.authenticate(JAASRealm.java:399) at org.apache.catalina.realm.JAASRealm.authenticate(JAASRealm.java:323) at org.apache.catalina.authenticator.FormAuthenticator.authenticate(Form Authenticator.java:258) at org.apache.catalina.authenticator.AuthenticatorBase.invoke(Authentica torBase.java:417) at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.j ava:128) at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.j ava:102) at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineVal ve.java:109) at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.jav a:293) at org.apache.coyote.http11.Http11AprProcessor.process(Http11AprProcesso r.java:859) at org.apache.coyote.http11.Http11AprProtocol$Http11ConnectionHandler.pr ocess(Http11AprProtocol.java:574) at org.apache.tomcat.util.net.AprEndpoint$Worker.run(AprEndpoint.java:15 27) at java.lang.Thread.run(Unknown Source) Any help on this issue is welcome. Thanks Cheers :) Varsha "No one can go back and make a brand new start. Anyone can start from now and make a brand new ending..." Please do not print this email unless it is absolutely necessary. Spread environmental awareness -----Original Message----- From: Christopher Marshall [mailto:[email protected]] Sent: Wednesday, September 23, 2009 3:38 PM To: Aysegul Aydin; Jetspeed Users List; [email protected] Subject: Re: LDAP Configuration Problems Aysegul, Your patch does in fact fix things. I have Jetspeed-2.2.0 successfully authenticating against the Fedora directory server now. Thanks, Chris On 9/23/09 1:51 AM, "Aysegul Aydin" <[email protected]> wrote: > Hi, > > ldap.user.searchBase property has a bug. Take a look at the jira issue: > http://issues.apache.org/jira/browse/JS2-1030 . If you can deal with the > source code you can fix your portal yourself (that's what I've done). > Check-out the source code of Jetspeed2.2.0 from SVN and fix the class > org.apache.jetspeed.security.impl.LdapAuthenticationProvider, method > getSearchDomain as this: > > private String getSearchDomain() > { > StringBuffer searchDomain = new StringBuffer(); > if (!StringUtils.isEmpty(context.getUserSearchBase())) > { > searchDomain.append(context.getUserSearchBase()); > } > if (searchDomain.length() == 0) > { > if (!StringUtils.isEmpty(context.getRootContext())) > { > searchDomain.append(context.getRootContext()); > } > } > else > { > if (!StringUtils.isEmpty(context.getRootContext())) > { > searchDomain.append("," + context.getRootContext()); > } > } > return searchDomain.toString(); > } > > Otherwise leave the property empty. > Good luck, > Aysegul. > > > From: Christopher Marshall <[email protected]> > To: [email protected] > Cc: [email protected] > Sent: Tuesday, September 22, 2009 12:41:40 AM > Subject: Re: LDAP Configuration Problems > > Looking at my post again, I have a cut and paste error. In "CASE 2" > ldap.base= have an empty value. > > Chris > > Christopher Marshall wrote: >> > I have been attempting to get Jetspeed to talk to the Fedora directory >> server without success and it looks as though the requests being made by >> Jetspeed are incorrect. I have configured the the override.properties three >> different ways and had different results with each. The structure of the >> LDAP directory is a little different than the sample, as there is dc=com at >> the top and an ou=jetspeed below it. >> > >> > CASE 1 ========================= >> > override.properties >> > >> > ldap.url=ldap://localhost:389 >> > ldap.base=dc=com >> > ldap.userDn=uid=cmarshall,ou=people,dc=a100sys,dc=com >> > ldap.password=< password > >> > ldap.context.factory=com.sun.jndi.ldap.LdapCtxFactory >> > ldap.user.filter = (objectclass=person) >> > ldap.search.scope = 2 >> > ldap.user.searchBase=ou=People,ou=sevenSeas,ou=jetspeed,dc=com >> > ldap.user.entryPrefix=uid >> > ldap.role.searchBase=ou=Roles,ou=sevenSeas,ou=jetspeed,dc=com >> > ldap.group.searchBase=ou=Groups,ou=sevenSeas,ou=jetspeed,dc=com >> > >> > Jetspeed successfully binds with the ldap.userDn and makes the request >> > >> > SRCH base="ou=People,ou=sevenSeas,ou=jetspeed,dc=com" scope=2 >> filter="(&(uid=cmarshall)(objectClass=person))" attrs="objectClass >> javaSerializedData javaClassName javaFactory javaCodebase >> javaReferenceAddress javaClassNames javaremotelocation" >> > RESULT err=0 tag=101 nentries=1 etime=0 >> > >> > Jetspeed then succesfully binds again with the ldap.userDN and makes the >> request >> > >> > SRCH base="ou=People,ou=sevenSeas,ou=jetspeed,dc=com,dc=com" scope=2 >> filter="(&(objectClass=inetOrgPerson)(&(objectClass=inetOrgPerson)(uid=cmarsh >> all))) attrs=ALL >> > RESULT err=32 tag=101 nentries=0 etime=0 >> > >> > Note the repeat of dc=com,dc=com >> > >> > CASE 2 ========================== >> > override.properties >> > >> > ldap.url=ldap://localhost:389 >> > ldap.base=dc=com >> > ldap.userDn=uid=cmarshall,ou=people,dc=a100sys,dc=com >> > ldap.password=< password > >> > ldap.context.factory=com.sun.jndi.ldap.LdapCtxFactory >> > ldap.user.filter = (objectclass=person) >> > ldap.search.scope = 2 >> > ldap.user.searchBase=ou=People,ou=sevenSeas,ou=jetspeed,dc=com >> > ldap.user.entryPrefix=uid >> > ldap.role.searchBase=ou=Roles,ou=sevenSeas,ou=jetspeed,dc=com >> > ldap.group.searchBase=ou=Groups,ou=sevenSeas,ou=jetspeed,dc=com >> > >> > Jetspeed successfully binds with the ldap.userDn and makes the request >> > >> > SRCH base="ou=People,ou=sevenSeas,ou=jetspeed,dc=com" scope=2 >> filter="(&(uid=cmarshall)(objectClass=person))" attrs="objectClass >> javaSerializedData javaClassName javaFactory javaCodebase >> javaReferenceAddress javaClassNames javaremotelocation" >> > RESULT err=0 tag=101 nentries=1 etime=0 >> > >> > Jetspeed attempts to bind with >> > >> > BIND dn="uid=CMarshall,ou=Peopleou=sevenSeasou=jetspeeddc=com" method=128 >> version=3 >> > RESULT err=32 tag=97 nentries=0 etime=0 >> > >> > Yes, the commas that should be there are really missing. >> > >> > CASE 3 ============================= >> > override.properties >> > >> > ldap.url=ldap://localhost:389 >> > ldap.base=dc=com >> > ldap.userDn=uid=cmarshall,ou=people,dc=a100sys,dc=com >> > ldap.password=< password > >> > ldap.context.factory=com.sun.jndi.ldap.LdapCtxFactory >> > ldap.user.filter = (objectclass=person) >> > ldap.search.scope = 2 >> > ldap.user.searchBase=ou=People,ou=sevenSeas,ou=jetspeed >> > ldap.user.entryPrefix=uid >> > ldap.role.searchBase=ou=Roles,ou=sevenSeas,ou=jetspeed >> > ldap.group.searchBase=ou=Groups,ou=sevenSeas,ou=jetspeed >> > >> > Jetspeed successfully binds with the ldap.userDn amd makes the request >> > >> > SRCH base="ou=People,ou=sevenSeas,ou=jetspeed" scope=2 >> filter="(&(uid=cmarshall)(objectClass=person))" attrs="objectClass >> javaSerializedData javaClassName javaFactory javaCodebase >> javaReferenceAddress javaClassNames javaremotelocation" >> > RESULT err=32 tag=101 nentries=0 etime=0 >> > >> > Note that the dc=com has not appended to the end of the search base. >> > >> > Suggestions? >> > >> > Chris Marshall >> > >> > > > > --------------------------------------------------------------------- > To unsubscribe, e-mail: [email protected] > For additional commands, e-mail: [email protected] > > > DISCLAIMER: ----------------------------------------------------------------------------------------------------------------------- The contents of this e-mail and any attachment(s) are confidential and intended for the named recipient(s) only. It shall not attach any liability on the originator or HCL or its affiliates. Any views or opinions presented in this email are solely those of the author and may not necessarily reflect the opinions of HCL or its affiliates. Any form of reproduction, dissemination, copying, disclosure, modification, distribution and / or publication of this message without the prior written consent of the author of this e-mail is strictly prohibited. If you have received this email in error please delete it and notify the sender immediately. Before opening any mail and attachments please check them for viruses and defect. -----------------------------------------------------------------------------------------------------------------------
