Re: AREA LDAP question
Users are using their login id not their email address. They are able to log in, but the plugin log shows the above. It shows failed attempt using that email address. Tauf, Is it ok for this to happen? It seems to be using up resources checking through all the LDAPs (I have 6 configured) because it fails for each one. Thanks On Nov 6, 11:28 am, "Chowdhury, Tauf" <[EMAIL PROTECTED]> wrote: > Lee, > I've seen the same issue in our system. It pulls the e-mail specifically > from the E-mail address on the ctm:people form, not the User form. > > Tauf Chowdhury | Forest Laboratories, Inc. > Sr. Analyst > Office: 631.858.7765 > > > > -Original Message- > From: Action Request System discussion list(ARSList) > > [mailto:[EMAIL PROTECTED] On Behalf Of lee > Sent: Thursday, November 06, 2008 10:51 AM > To: [EMAIL PROTECTED] > Subject: AREA LDAP question > > Just looking over my Plugin logs and noticed that the AREA LDAP > authentication is picking up the email address for the uid instead of > the login id. > > Is this normal? > > eg. > /* Thu Nov 06 2008 10:46:07.2740 */+VL > AREAVerifyLoginCallback -- user [EMAIL PROTECTED] > > should it be? > RPC: 390695> /* Thu Nov 06 2008 10:46:07.2740 */+VL > AREAVerifyLoginCallback -- user userid > > This is the settings for the user search filter in the AREA LDAP form > sAMAccountName=$\USER$ > > I'm getting instances where users are getting a authentication service > is not responding message once in a while. > Can this be related? > > > ___ > UNSUBSCRIBE or access ARSlist Archives atwww.arslist.org > Platinum Sponsor:www.rmsportal.comARSlist: "Where the Answers Are" > > ** > This e-mail and its attachments may contain Forest Laboratories, Inc. > proprietary information that is privileged, confidential or subject to > copyright belonging to Forest Laboratories, Inc. This e-mail is intended > solely for the use of the individual or entity to which it is addressed. If > you are not the intended recipient of this e-mail, or the employee or agent > responsible for delivering this e-mail to the intended recipient, you are > hereby notified that any dissemination, distribution, copying or action taken > in relation to the contents of and attachments to this e-mail is strictly > prohibited and may be unlawful. If you have received this e-mail in error, > please notify the sender immediately and permanently delete the original and > any copy of this e-mail and any printout. > > ___ > UNSUBSCRIBE or access ARSlist Archives atwww.arslist.org > Platinum Sponsor:www.rmsportal.comARSlist: "Where the Answers Are"- Hide > quoted text - > > - Show quoted text - ___ UNSUBSCRIBE or access ARSlist Archives at www.arslist.org Platinum Sponsor: www.rmsportal.com ARSlist: "Where the Answers Are"
Re: AREA LDAP question
Lee, I've seen the same issue in our system. It pulls the e-mail specifically from the E-mail address on the ctm:people form, not the User form. Tauf Chowdhury | Forest Laboratories, Inc. Sr. Analyst Office: 631.858.7765 -Original Message- From: Action Request System discussion list(ARSList) [mailto:[EMAIL PROTECTED] On Behalf Of lee Sent: Thursday, November 06, 2008 10:51 AM To: arslist@ARSLIST.ORG Subject: AREA LDAP question Just looking over my Plugin logs and noticed that the AREA LDAP authentication is picking up the email address for the uid instead of the login id. Is this normal? eg. /* Thu Nov 06 2008 10:46:07.2740 */+VL AREAVerifyLoginCallback -- user [EMAIL PROTECTED] should it be? /* Thu Nov 06 2008 10:46:07.2740 */+VL AREAVerifyLoginCallback -- user userid This is the settings for the user search filter in the AREA LDAP form sAMAccountName=$\USER$ I'm getting instances where users are getting a authentication service is not responding message once in a while. Can this be related? ___ UNSUBSCRIBE or access ARSlist Archives at www.arslist.org Platinum Sponsor: www.rmsportal.com ARSlist: "Where the Answers Are" ** This e-mail and its attachments may contain Forest Laboratories, Inc. proprietary information that is privileged, confidential or subject to copyright belonging to Forest Laboratories, Inc. This e-mail is intended solely for the use of the individual or entity to which it is addressed. If you are not the intended recipient of this e-mail, or the employee or agent responsible for delivering this e-mail to the intended recipient, you are hereby notified that any dissemination, distribution, copying or action taken in relation to the contents of and attachments to this e-mail is strictly prohibited and may be unlawful. If you have received this e-mail in error, please notify the sender immediately and permanently delete the original and any copy of this e-mail and any printout. ___ UNSUBSCRIBE or access ARSlist Archives at www.arslist.org Platinum Sponsor: www.rmsportal.com ARSlist: "Where the Answers Are"
Re: AREA LDAP question
AREAVerifyLoginCallback int AREAVerifyLoginCallback( void *object, ARAccessNameType user, ARPasswordType password, ARAccessNameType networkAddr, ARAuthType authString, AREAResponseStruct **response) "Description: The plug-in server issues this call when the AR System server makes a request to authenticate a user. The AR System server passes the unencrypted user name and password as parameters. To guarantee multithread safety, you must protect any global information or resources accessed here with appropriate mutual exclusion locks. An AREA plug-in implementation must return a response. A NULL response indicates a failed login attempt. The AR System server detects the IP address of the client and sends it to the plugin, which rejects or accepts the requests." The real question is, where is the username of '[EMAIL PROTECTED]" coming from? - what does the user enter as their login name when the authenticate? - do you allow guest accounts? - if not, what is in your user form/login name for your account - what are the config values for your area plugin (assuming you use the pre-compiled area ldap plugin)? - User Base - User Search Filter Axton On Thu, Nov 6, 2008 at 10:50 AM, lee <[EMAIL PROTECTED]> wrote: > Just looking over my Plugin logs and noticed that the AREA LDAP > authentication is picking up the email address for the uid instead of > the login id. > > Is this normal? > > eg. > /* Thu Nov 06 2008 10:46:07.2740 */+VL > AREAVerifyLoginCallback -- user [EMAIL PROTECTED] > > should it be? > RPC: 390695> /* Thu Nov 06 2008 10:46:07.2740 */+VL > AREAVerifyLoginCallback -- user userid > > This is the settings for the user search filter in the AREA LDAP form > sAMAccountName=$\USER$ > > I'm getting instances where users are getting a authentication service > is not responding message once in a while. > Can this be related? > > ___ > UNSUBSCRIBE or access ARSlist Archives at www.arslist.org > Platinum Sponsor: www.rmsportal.com ARSlist: "Where the Answers Are" > ___ UNSUBSCRIBE or access ARSlist Archives at www.arslist.org Platinum Sponsor: www.rmsportal.com ARSlist: "Where the Answers Are"
