Dexter,
Make sure that you have only the domain in the
LDAP server url in SGD Array manager.
Not the host.
Regards
Sue
IMI COROOK, Dexter A. wrote On 02/26/07 11:05,:
Hello,
Our company is SGD (4.2) accessing a windows 2003 server. And we use
AD authentication.
But I always encounter this kind of error when a user is logging-in:
[EMAIL PROTECTED] # more jserver14596_error.log*
*2007/02/26 08:35:40.731 (pid 14596) server/ldap/error
#1172450140731*
*Sun Secure Global Desktop Software (4.2) ERROR:*
* *
*Active Directory service discovery failed: Failed to find any valid
Site objects.*
*Looking up Global Catalog DNS name: _gc._tcp.IMI.LOCAL. - HIT*
*Looking for GC on server: Active Directory:/192.168.56.249:3268:Up - HIT*
*Checking for CN=Configuration: DC=IMI,DC=local - MISS*
*Checking for CN=Configuration: CN=Configuration,DC=IMI,DC=local - HIT*
*Looking up domain root context: DC=IMI,DC=local - HIT*
*Looking up site context: CN=Sites,CN=Configuration*
*Searching for sites: (&(objectClass=site)(siteObjectBL=*)) - HIT*
*Looking up addresses for peer DNS: sgd.imi.local - HIT*
* *
* *
*Failed to discover Active Directory Site, Domain and server data.*
*This might mean LDAP users cannot log in.*
* *
*Make sure the DNS server contains the Active Directory service*
*records for the forest. Make sure a Global Catalog server is available.*
* *
*2007/02/26 08:35:40.843 (pid 14596)
server/ldap/warningerror #1172450140843*
*Sun Secure Global Desktop Software (4.2) WARNING:*
* *
*Kerberos failed to lookup a context with
javax.naming.AuthenticationException: GSSAPI [Root exception is
javax.securi*
*ty.sasl.SaslException: GSS initiate failed [Caused by GSSException:
No valid credentials provided (Mechanism level: S*
*erver not found in Kerberos database (7))]]*
* at com.sun.jndi.ldap.sasl.LdapSasl.saslBind(LdapSasl.java:150)*
* at
com.sun.jndi.ldap.LdapClient.authenticate(LdapClient.java:214)*
* at com.sun.jndi.ldap.LdapCtx.connect(LdapCtx.java:2637)*
* at com.sun.jndi.ldap.LdapCtx.<init>(LdapCtx.java:283)*
* at
com.sun.jndi.ldap.LdapCtxFactory.getUsingURL(LdapCtxFactory.java:175)*
* at
com.sun.jndi.ldap.LdapCtxFactory.getUsingURLs(LdapCtxFactory.java:193)*
* at
com.sun.jndi.ldap.LdapCtxFactory.getLdapCtxInstance(LdapCtxFactory.java:136)*
* at
com.sun.jndi.ldap.LdapCtxFactory.getInitialContext(LdapCtxFactory.java:66)*
* at
com.sco.tta.common.jndi.provider.ldap.LdapScopeState$doItGetContext.run(LdapScopeState.java:341)*
* at
com.sco.tta.server.security.java14.KerberosAuth$PrivilegedActionAdaptor.run(KerberosAuth.java:131)*
* at java.security.AccessController.doPrivileged(Native Method)*
* at javax.security.auth.Subject.doAs(Subject.java:337)*
Did I miss something on the configuration?
Pls. help.
Thanks,
Dexter
This is a virus free email...
Confidential:This e-mail message and all contents are intended only for the
named recipients(s).
The information contained herein maybe confidential or privileged,and its
disclosure,distribution or reproduction is prohibited.
If you are not the named recipient,please return it immediately to its sender atthe above address and destroy the original message and all copies.
------------------------------------------------------------------------
_______________________________________________
SGD-Users mailing list
[email protected]
http://node1.filibeto.org/mailman/listinfo/sgd-users
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
SUMMARY OF ACTION
~~~~~~~~~~~~~~~~~
Who:
What:
When: At earliest convenient date.
Method of communication: E-mail.
Thank you
Regards
Sue
--
Sue Burton
Technical Support Engineer
Software Technology Services Centre - Secure Global Desktop
Global Sales and Services - Sun Microsystems Inc
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
NOTICE: This email message is for the sole use of the intended
recipient(s) and may contain confidential and privileged
information. Any unauthorized review, use, disclosure or
distribution is prohibited. If you are not the intended recipient,
please contact the sender by reply email and destroy all copies
of the original message.
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
_______________________________________________
SGD-Users mailing list
[email protected]
http://node1.filibeto.org/mailman/listinfo/sgd-users
