this setting ldap_search_query=(uid=%s) mean your LDAP user should have "uid" attribute with value "the_string_entered_into_login_field"
Additionally it need to be under this ldap_search_base=OU=COMPANY,DC=mycompany,DC=priv base in LDAP tree On 23 September 2014 20:47, Grégory Mangeney <mange...@gmail.com> wrote: > Hello Maxim. > I had try with the 3.0.4 Version according to your link. > > Now I have an other error in log file. > It said NONE USER FOUND IN LDAP... > I hope so the connection with my AD is good and it still a config problem > but maybe you could help me with my logs and my conf file... > > My logs: > > ERROR 09-23 15:34:55.797 o.a.o.l.LdapLoginManagement:266 > [http-nio-0.0.0.0-5080-exec-8] - NONE users found in LDAP > DEBUG 09-23 15:34:55.799 o.a.w.u.c.CookieUtils:273 > [http-nio-0.0.0.0-5080-exec-8] - Unable to find Cookie with name=LoggedIn > and request URI=signin?0-5.IBehaviorListener.0-signin-signin-submit > DEBUG 09-23 15:34:55.802 o.a.w.f.FeedbackMessages:69 > [http-nio-0.0.0.0-5080-exec-8] - Adding feedback message '[FeedbackMessage > message = "Invalid password", reporter = signin, level = ERROR]' > DEBUG 09-23 15:34:55.808 o.a.wicket.Page:871 > [http-nio-0.0.0.0-5080-exec-8] - ending request for page [Page class = > org.apache.openmeetings.web.pages.auth.SignInPage, id = 0, render count = > 5], request org.apache.wicket.protocol.http.servlet.ServletWebRequest@69fbe > DEBUG 09-23 15:34:55.809 o.a.wicket.Page:871 > [http-nio-0.0.0.0-5080-exec-8] - ending request for page [Page class = > org.apache.openmeetings.web.pages.auth.SignInPage, id = 0, render count = > 5], request org.apache.wicket.protocol.http.servlet.ServletWebRequest@69fbe > DEBUG 09-23 15:34:55.809 o.a.wicket.Page:871 > [http-nio-0.0.0.0-5080-exec-8] - ending request for page [Page class = > org.apache.openmeetings.web.pages.auth.SignInPage, id = 0, render count = > 5], request org.apache.wicket.protocol.http.servlet.ServletWebRequest@69fbe > DEBUG 09-23 15:34:55.811 > o.a.w.p.AsynchronousDataStore$PageSavingRunnable:354 > [Wicket-PageSavingThread] - Saving asynchronously: Entry > [sessionId=E576CCA08DEE992DF7CCBD22F2FD64F8, pageId=0]... > DEBUG 09-23 15:34:55.811 o.a.w.p.DiskDataStore:186 > [Wicket-PageSavingThread] - Storing data for page with id '0' in session > with id 'E576CCA08DEE992DF7CCBD22F2FD64F8' > DEBUG 09-23 15:34:55.812 o.a.w.p.PageAccessSynchronizer:195 > [http-nio-0.0.0.0-5080-exec-8] - 'http-nio-0.0.0.0-5080-exec-8' released > lock to page with id '0' > DEBUG 09-23 15:34:55.812 o.a.w.p.PageAccessSynchronizer:346 > [http-nio-0.0.0.0-5080-exec-8] - 'http-nio-0.0.0.0-5080-exec-8' notifying > blocked threads > DEBUG 09-23 15:35:30.522 o.a.o.m.MailHandler:258 > [org.springframework.scheduling.quartz.SchedulerFactoryBean#0_Worker-2] - > sendMails enter ... > DEBUG 09-23 15:35:30.523 o.a.o.m.MailHandler:260 > [org.springframework.scheduling.quartz.SchedulerFactoryBean#0_Worker-2] - > Number of emails in init queue 0 > DEBUG 09-23 15:35:30.524 o.a.o.m.MailHandler:265 > [org.springframework.scheduling.quartz.SchedulerFactoryBean#0_Worker-2] - > ... sendMails done. > DEBUG 09-23 15:35:35.503 o.a.o.d.d.s.SessiondataDao:404 > [org.springframework.scheduling.quartz.SchedulerFactoryBean#0_Worker-3] - > ****** clearSessionTable: > DEBUG 09-23 15:35:35.505 o.a.o.d.d.s.SessiondataDao:408 > [org.springframework.scheduling.quartz.SchedulerFactoryBean#0_Worker-3] - > clearSessionTable: 0 > DEBUG 09-23 15:35:35.512 o.a.o.q.s.MeetingReminderJob:34 > [org.springframework.scheduling.quartz.SchedulerFactoryBean#0_Worker-4] - > MeetingReminderJob.execute > > > > My conf : > # > # Licensed to the Apache Software Foundation (ASF) under one > # or more contributor license agreements. See the NOTICE file > # distributed with this work for additional information > # regarding copyright ownership. The ASF licenses this file > # to you under the Apache License, Version 2.0 (the > # "License"); you may not use this file except in compliance > # with the License. You may obtain a copy of the License at > # > # http://www.apache.org/licenses/LICENSE-2.0 > # > # Unless required by applicable law or agreed to in writing, > # software distributed under the License is distributed on an > # "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY > # KIND, either express or implied. See the License for the > # specific language governing permissions and limitations > # under the License. > # > #ConfigurationFile for LDAP Auth > #ConfigKey 'ldap_config_path' must be set in DataBase Configration of OM > and point to this file > #o.becherer,14.01.2009 > > #LDAP URL > # This is the URL used to access your LDAP server. > # if you want to use "ldaps://" links, please be aware that you need to > import your CA certificate > # to a java keystore and add the -Djavax.net.ssl.keyStore, > -Djavax.net.ssl.keyStorePassword, > # -Djavax.net.ssl.trustStore and -Djavax.net.ssl.trustStorePassword > parameters to your > # JAVA_OPT environment > ldap_conn_host=@IP_of_my_AD > ldap_conn_port=389 > ldap_conn_secure=false > > # Login distinguished name (DN) for Authentication on LDAP Server - keep > empty if not required > # Use full qualified LDAP DN > ldap_admin_dn=CN=adconnect,OU=Comptes > Cles,OU=SI,OU=Services,OU=COMPANY,DC=mycompany,DC=priv > > # Loginpass for Authentication on LDAP Server - keep empty if not required > ldap_passwd=pass_for_user_adconnect > > # base to search for userdata(of user, that wants to login) > ldap_search_base=OU=COMPANY,DC=mycompany,DC=priv > > # Fieldnames (can differ between Ldap servers) > ldap_search_query=(uid=%s) > > # the scope of the search might be: OBJECT, ONELEVEL, SUBTREE > ldap_search_scope=SUBTREE > > # Ldap auth type(NONE, SEARCHANDBIND, SIMPLEBIND) > # When using SIMPLEBIND a simple bind is performed on the LDAP server to > check user authentication > # When using NONE, the Ldap server is not used for authentication > ldap_auth_type=SEARCHANDBIND > > # userDN format, will be used to bind if ldap_auth_type=SIMPLEBIND > # might be used to get provisionningDn in case ldap_auth_type=NONE > ldap_userdn_format=uid=%s,OU=COMPANY,DC=mycompany,DC=priv > > # Ldap provisioning type(NONE, AUTOCREATE, AUTOUPDATE) > ldap_provisionning=AUTOCREATE > > # Set this to 'true' if you want to use admin_dn to get user attributes > # If any other value is set, user_dn will be used > ldap_use_admin_to_get_attrs=true > > # Ldap-password synchronization to OM DB > # Set this to 'true' if you want OM to synchronize the user Ldap-password > to OM's internal DB > # If you want to disable the feature, set this to any other string. > # Defautl value is 'true' > ldap_sync_password_to_om=true > > # Ldap user attributes mapping > # Set the following internal OM user attributes to their corresponding > Ldap-attribute > ldap_user_attr_lastname=sn > ldap_user_attr_firstname=givenName > ldap_user_attr_mail=mail > ldap_user_attr_street=streetAddress > ldap_user_attr_additionalname=description > ldap_user_attr_fax=facsimileTelephoneNumber > ldap_user_attr_zip=postalCode > ldap_user_attr_country=co > ldap_user_attr_town=l > ldap_user_attr_phone=telephoneNumber > > # optional, only absolute URLs make sense > #ldap_user_picture_uri=picture_uri > > # optional > # the timezone has to match any timezone available in Java, otherwise the > timezone defined in the value of > # the conf_key "default.timezone" in OpenMeetings "configurations" table > #ldap_user_timezone=timezone > > # Ldap ignore upper/lower case, convert all input to lower case > ldap_use_lower_case=false > > > Do you see how to fix my problem with this new branch of openmeetings > 3.0.4? > > Thanks a lot. > > Greg. > > > > 2014-09-22 17:50 GMT+02:00 Maxim Solodovnik <solomax...@gmail.com>: > >> Please get build #67 here: >> https://builds.apache.org/view/M-R/view/OpenMeetings/job/Openmeetings%203.0.x/ >> I have no LDAP infrastructure to test :( I 100% rely on community in this >> So thanks for the testing :) >> >> On 23 September 2014 01:17, Grégory Mangeney <mange...@gmail.com> wrote: >> >>> Windows Server 2003 R2 >>> >>> 2014-09-22 17:13 GMT+02:00 Grégory Mangeney <mange...@gmail.com>: >>> >>>> Ok,thank you for that. >>>> For information I am using a Microsoft Active Directory in object >>>> version 31 >>>> >>>> I get this information by tapping dsquery * >>>> cn=schema,cn=configuration,dc=mycompany,dc=priv -scope base -attr >>>> objectVersion >>>> >>>> Good evening. >>>> >>>> Best regards. >>>> >>>> Greg. >>>> >>>> 2014-09-22 16:40 GMT+02:00 Maxim Solodovnik <solomax...@gmail.com>: >>>> >>>>> You have these Paramaribo in your configuration: >>>>> ldap_search_base=DC=mycompany,DC=priv >>>>> # Fieldnames (can differ between Ldap servers) >>>>> ldap_search_query=(uid=%s) >>>>> >>>>> I guess nothing is found. Not sure I never saw error like yours. >>>>> >>>>> Will create 3.0.4 nightly fly you later today (with updated ldap >>>>> library) if error will be the same I'll ask ldap library developers for >>>>> the >>>>> help >>>>> On Sep 22, 2014 9:05 PM, "Grégory Mangeney" <mange...@gmail.com> >>>>> wrote: >>>>> >>>>>> a bad search query? >>>>>> >>>>>> In this case, the loging error message shouldn't be somthing like : >>>>>> "Login/password do not exist" ? >>>>>> >>>>>> How could I check this point... >>>>>> I do not modified the source code! >>>>>> >>>>>> 2014-09-22 11:25 GMT+02:00 Maxim Solodovnik <solomax...@gmail.com>: >>>>>> >>>>>>> it seems like nothing was found >>>>>>> Maybe bad search query? >>>>>>> >>>>>>> On 22 September 2014 15:55, Grégory Mangeney <mange...@gmail.com> >>>>>>> wrote: >>>>>>> >>>>>>>> Hello Maxim. >>>>>>>> Thanks a lot for your answer. >>>>>>>> You're helpfull... >>>>>>>> >>>>>>>> I had ever try with SEARCHANDBIND but it still not working... >>>>>>>> So I set it again to give you my logs... >>>>>>>> The error is quite different but I could not understand what is the >>>>>>>> problem... >>>>>>>> >>>>>>>> In the login screen I have the following message in red : "Unknown >>>>>>>> error. Please report this to the administrator." >>>>>>>> >>>>>>>> >>>>>>>> >>>>>>>> >>>>>>>> Here is my logs : >>>>>>>> >>>>>>>> ERROR 09-22 10:34:34.814 o.a.o.l.LdapLoginManagement:356 >>>>>>>> [http-nio-0.0.0.0-5080-exec-4] - Unexpected exception. >>>>>>>> org.apache.directory.api.ldap.model.cursor.CursorLdapReferralException: >>>>>>>> null >>>>>>>> at >>>>>>>> org.apache.directory.ldap.client.api.EntryCursorImpl.get(EntryCursorImpl.java:164) >>>>>>>> ~[api-all-jar-1.0.0-M23.jar:1.0.0-M23] >>>>>>>> at >>>>>>>> org.apache.directory.ldap.client.api.EntryCursorImpl.get(EntryCursorImpl.java:50) >>>>>>>> ~[api-all-jar-1.0.0-M23.jar:1.0.0-M23] >>>>>>>> at >>>>>>>> org.apache.openmeetings.ldap.LdapLoginManagement.login(LdapLoginManagement.java:258) >>>>>>>> ~[openmeetings-core-3.0.3-RELEASE.jar:na] >>>>>>>> at >>>>>>>> org.apache.openmeetings.web.app.WebSession.signIn(WebSession.java:257) >>>>>>>> [openmeetings-web-3.0.3-RELEASE.jar:na] >>>>>>>> at >>>>>>>> org.apache.openmeetings.web.pages.auth.SignInDialog.onSubmit(SignInDialog.java:190) >>>>>>>> [openmeetings-web-3.0.3-RELEASE.jar:na] >>>>>>>> at >>>>>>>> com.googlecode.wicket.jquery.ui.widget.dialog.AbstractFormDialog$DialogFormSubmitter.onSubmit(AbstractFormDialog.java:279) >>>>>>>> [wicket-jquery-ui-jar-6.16.0.jar:na] >>>>>>>> at >>>>>>>> org.apache.wicket.markup.html.form.Form.delegateSubmit(Form.java:1266) >>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0] >>>>>>>> at >>>>>>>> org.apache.wicket.markup.html.form.Form.process(Form.java:938) >>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0] >>>>>>>> at >>>>>>>> org.apache.wicket.markup.html.form.StatelessForm.process(StatelessForm.java:96) >>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0] >>>>>>>> at >>>>>>>> org.apache.wicket.markup.html.form.Form.onFormSubmitted(Form.java:770) >>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0] >>>>>>>> at >>>>>>>> com.googlecode.wicket.jquery.ui.widget.dialog.AbstractFormDialog.internalOnClick(AbstractFormDialog.java:200) >>>>>>>> [wicket-jquery-ui-jar-6.16.0.jar:na] >>>>>>>> at >>>>>>>> com.googlecode.wicket.jquery.ui.widget.dialog.AbstractDialog$1.onClick(AbstractDialog.java:439) >>>>>>>> [wicket-jquery-ui-jar-6.16.0.jar:na] >>>>>>>> at >>>>>>>> com.googlecode.wicket.jquery.ui.widget.dialog.DialogBehavior.onAjax(DialogBehavior.java:175) >>>>>>>> [wicket-jquery-ui-jar-6.16.0.jar:na] >>>>>>>> at >>>>>>>> com.googlecode.wicket.jquery.core.ajax.JQueryAjaxBehavior.respond(JQueryAjaxBehavior.java:171) >>>>>>>> [wicket-jquery-ui-core-jar-6.16.0.jar:na] >>>>>>>> at >>>>>>>> org.apache.wicket.ajax.AbstractDefaultAjaxBehavior.onRequest(AbstractDefaultAjaxBehavior.java:633) >>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0] >>>>>>>> at sun.reflect.GeneratedMethodAccessor91.invoke(Unknown Source) >>>>>>>> ~[na:na] >>>>>>>> at >>>>>>>> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43) >>>>>>>> ~[na:1.7.0_65] >>>>>>>> at java.lang.reflect.Method.invoke(Method.java:606) >>>>>>>> ~[na:1.7.0_65] >>>>>>>> at >>>>>>>> org.apache.wicket.RequestListenerInterface.internalInvoke(RequestListenerInterface.java:258) >>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0] >>>>>>>> at >>>>>>>> org.apache.wicket.RequestListenerInterface.invoke(RequestListenerInterface.java:241) >>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0] >>>>>>>> at >>>>>>>> org.apache.wicket.core.request.handler.ListenerInterfaceRequestHandler.invokeListener(ListenerInterfaceRequestHandler.java:250) >>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0] >>>>>>>> at >>>>>>>> org.apache.wicket.core.request.handler.ListenerInterfaceRequestHandler.respond(ListenerInterfaceRequestHandler.java:236) >>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0] >>>>>>>> at >>>>>>>> org.apache.wicket.request.cycle.RequestCycle$HandlerExecutor.respond(RequestCycle.java:862) >>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0] >>>>>>>> at >>>>>>>> org.apache.wicket.request.RequestHandlerStack.execute(RequestHandlerStack.java:64) >>>>>>>> [wicket-request-jar-6.16.0.jar:6.16.0] >>>>>>>> at >>>>>>>> org.apache.wicket.request.cycle.RequestCycle.execute(RequestCycle.java:261) >>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0] >>>>>>>> at >>>>>>>> org.apache.wicket.request.cycle.RequestCycle.processRequest(RequestCycle.java:218) >>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0] >>>>>>>> at >>>>>>>> org.apache.wicket.request.cycle.RequestCycle.processRequestAndDetach(RequestCycle.java:289) >>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0] >>>>>>>> at >>>>>>>> org.apache.wicket.protocol.ws.AbstractUpgradeFilter.processRequestCycle(AbstractUpgradeFilter.java:59) >>>>>>>> [wicket-native-websocket-core-jar-6.16.0.jar:6.16.0] >>>>>>>> at >>>>>>>> org.apache.wicket.protocol.http.WicketFilter.processRequest(WicketFilter.java:201) >>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0] >>>>>>>> at >>>>>>>> org.apache.wicket.protocol.http.WicketFilter.doFilter(WicketFilter.java:282) >>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0] >>>>>>>> at >>>>>>>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:241) >>>>>>>> [tomcat-embed-core.jar:7.0.55] >>>>>>>> at >>>>>>>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:208) >>>>>>>> [tomcat-embed-core.jar:7.0.55] >>>>>>>> at >>>>>>>> org.red5.logging.LoggerContextFilter.doFilter(LoggerContextFilter.java:77) >>>>>>>> [red5-server.jar:na] >>>>>>>> at >>>>>>>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:241) >>>>>>>> [tomcat-embed-core.jar:7.0.55] >>>>>>>> at >>>>>>>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:208) >>>>>>>> [tomcat-embed-core.jar:7.0.55] >>>>>>>> at >>>>>>>> org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:220) >>>>>>>> [tomcat-embed-core.jar:7.0.55] >>>>>>>> at >>>>>>>> org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:122) >>>>>>>> [tomcat-embed-core.jar:7.0.55] >>>>>>>> at >>>>>>>> org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:501) >>>>>>>> [tomcat-embed-core.jar:7.0.55] >>>>>>>> at >>>>>>>> org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:171) >>>>>>>> [tomcat-embed-core.jar:7.0.55] >>>>>>>> at >>>>>>>> org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:103) >>>>>>>> [tomcat-embed-core.jar:7.0.55] >>>>>>>> at >>>>>>>> org.apache.catalina.valves.AccessLogValve.invoke(AccessLogValve.java:950) >>>>>>>> [tomcat-embed-core.jar:7.0.55] >>>>>>>> at >>>>>>>> org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:116) >>>>>>>> [tomcat-embed-core.jar:7.0.55] >>>>>>>> at >>>>>>>> org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:408) >>>>>>>> [tomcat-embed-core.jar:7.0.55] >>>>>>>> at >>>>>>>> org.apache.coyote.http11.AbstractHttp11Processor.process(AbstractHttp11Processor.java:1070) >>>>>>>> [tomcat-embed-core.jar:7.0.55] >>>>>>>> at >>>>>>>> org.apache.coyote.AbstractProtocol$AbstractConnectionHandler.process(AbstractProtocol.java:611) >>>>>>>> [tomcat-embed-core.jar:7.0.55] >>>>>>>> at >>>>>>>> org.apache.tomcat.util.net.NioEndpoint$SocketProcessor.doRun(NioEndpoint.java:1736) >>>>>>>> [tomcat-embed-core.jar:7.0.55] >>>>>>>> at >>>>>>>> org.apache.tomcat.util.net.NioEndpoint$SocketProcessor.run(NioEndpoint.java:1695) >>>>>>>> [tomcat-embed-core.jar:7.0.55] >>>>>>>> at >>>>>>>> java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1145) >>>>>>>> [na:1.7.0_65] >>>>>>>> at >>>>>>>> java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:615) >>>>>>>> [na:1.7.0_65] >>>>>>>> at >>>>>>>> org.apache.tomcat.util.threads.TaskThread$WrappingRunnable.run(TaskThread.java:61) >>>>>>>> [tomcat-embed-core.jar:7.0.55] >>>>>>>> at java.lang.Thread.run(Thread.java:745) [na:1.7.0_65] >>>>>>>> DEBUG 09-22 10:34:34.817 o.a.w.u.c.CookieUtils:266 >>>>>>>> [http-nio-0.0.0.0-5080-exec-4] - Unable to find Cookie with >>>>>>>> name=LoggedIn >>>>>>>> and request URI=signin?1-1.IBehaviorListener.1-signin >>>>>>>> DEBUG 09-22 10:34:34.820 o.a.w.f.FeedbackMessages:69 >>>>>>>> [http-nio-0.0.0.0-5080-exec-4] - Adding feedback message >>>>>>>> '[FeedbackMessage >>>>>>>> message = "Unknown error. Please report this to the administrator.", >>>>>>>> reporter = signin, level = ERROR]' >>>>>>>> DEBUG 09-22 10:34:34.821 o.a.w.u.c.CookieUtils:266 >>>>>>>> [http-nio-0.0.0.0-5080-exec-4] - Unable to find Cookie with >>>>>>>> name=LoggedIn >>>>>>>> and request URI=signin?1-1.IBehaviorListener.1-signin >>>>>>>> DEBUG 09-22 10:34:34.822 o.a.wicket.Page:871 >>>>>>>> [http-nio-0.0.0.0-5080-exec-4] - ending request for page [Page class = >>>>>>>> org.apache.openmeetings.web.pages.auth.SignInPage, id = 1, render >>>>>>>> count = >>>>>>>> 1], request >>>>>>>> org.apache.wicket.protocol.http.servlet.ServletWebRequest@16618f3 >>>>>>>> DEBUG 09-22 10:34:34.822 o.a.wicket.Page:871 >>>>>>>> [http-nio-0.0.0.0-5080-exec-4] - ending request for page [Page class = >>>>>>>> org.apache.openmeetings.web.pages.auth.SignInPage, id = 1, render >>>>>>>> count = >>>>>>>> 1], request >>>>>>>> org.apache.wicket.protocol.http.servlet.ServletWebRequest@16618f3 >>>>>>>> DEBUG 09-22 10:34:34.823 o.a.wicket.Page:871 >>>>>>>> [http-nio-0.0.0.0-5080-exec-4] - ending request for page [Page class = >>>>>>>> org.apache.openmeetings.web.pages.auth.SignInPage, id = 1, render >>>>>>>> count = >>>>>>>> 1], request >>>>>>>> org.apache.wicket.protocol.http.servlet.ServletWebRequest@16618f3 >>>>>>>> DEBUG 09-22 10:34:34.828 >>>>>>>> o.a.w.p.AsynchronousDataStore$PageSavingRunnable:354 >>>>>>>> [Wicket-PageSavingThread] - Saving asynchronously: Entry >>>>>>>> [sessionId=907ABBB232B18743F2A67024DA18F185, pageId=1]... >>>>>>>> DEBUG 09-22 10:34:34.828 o.a.w.p.DiskDataStore:186 >>>>>>>> [Wicket-PageSavingThread] - Storing data for page with id '1' in >>>>>>>> session >>>>>>>> with id '907ABBB232B18743F2A67024DA18F185' >>>>>>>> DEBUG 09-22 10:34:34.828 o.a.w.p.PageAccessSynchronizer:195 >>>>>>>> [http-nio-0.0.0.0-5080-exec-4] - 'http-nio-0.0.0.0-5080-exec-4' >>>>>>>> released >>>>>>>> lock to page with id '1' >>>>>>>> DEBUG 09-22 10:34:34.828 o.a.w.p.PageAccessSynchronizer:346 >>>>>>>> [http-nio-0.0.0.0-5080-exec-4] - 'http-nio-0.0.0.0-5080-exec-4' >>>>>>>> notifying >>>>>>>> blocked threads >>>>>>>> DEBUG 09-22 10:34:36.341 o.a.o.m.MailHandler:249 >>>>>>>> [org.springframework.scheduling.quartz.SchedulerFactoryBean#0_Worker-1] >>>>>>>> - >>>>>>>> resetSendingStatus enter ... >>>>>>>> >>>>>>>> >>>>>>>> >>>>>>>> Thank you for your time. >>>>>>>> >>>>>>>> Greg. >>>>>>>> >>>>>>>> 2014-09-20 8:59 GMT+02:00 Maxim Solodovnik <solomax...@gmail.com>: >>>>>>>> >>>>>>>>> According to the logs and config SIMPLEBIND failed for the user >>>>>>>>> specified >>>>>>>>> please try SEARCHANDBIND >>>>>>>>> >>>>>>>>> On 19 September 2014 17:09, Grégory Mangeney <mange...@gmail.com> >>>>>>>>> wrote: >>>>>>>>> >>>>>>>>>> Hello. >>>>>>>>>> Thank you for your link. >>>>>>>>>> It appeare that I have a 525 error (user not found). >>>>>>>>>> >>>>>>>>>> I think the problem must be in my config file because I'm sure >>>>>>>>>> that my user is good because I use it for an other app witch use it >>>>>>>>>> to >>>>>>>>>> connect with AD. >>>>>>>>>> >>>>>>>>>> As you ask me i give you more line of my log file, after that I >>>>>>>>>> would like to show you my conf file... >>>>>>>>>> Maybe you will find a setting withch is not good! >>>>>>>>>> >>>>>>>>>> >>>>>>>>>> So here is my log file whene I try to connect : >>>>>>>>>> DEBUG 09-19 11:47:01.337 o.a.o.q.s.MeetingReminderJob:34 >>>>>>>>>> [org.springframework.scheduling.quartz.SchedulerFactoryBean#0_Worker-2] >>>>>>>>>> - >>>>>>>>>> MeetingReminderJob.execute >>>>>>>>>> DEBUG 09-19 11:47:25.760 o.a.w.p.h.s.ServletWebRequest:189 >>>>>>>>>> [http-nio-0.0.0.0-5080-exec-10] - Calculating context relative path >>>>>>>>>> from: >>>>>>>>>> context path '/openmeetings', filterPrefix '', uri >>>>>>>>>> '/openmeetings/signin' >>>>>>>>>> DEBUG 09-19 11:47:25.761 o.a.w.p.PageAccessSynchronizer:100 >>>>>>>>>> [http-nio-0.0.0.0-5080-exec-10] - 'http-nio-0.0.0.0-5080-exec-10' >>>>>>>>>> attempting to acquire lock to page with id '1' >>>>>>>>>> DEBUG 09-19 11:47:25.761 o.a.w.p.PageAccessSynchronizer:125 >>>>>>>>>> [http-nio-0.0.0.0-5080-exec-10] - http-nio-0.0.0.0-5080-exec-10 >>>>>>>>>> acquired >>>>>>>>>> lock to page 1 >>>>>>>>>> DEBUG 09-19 11:47:25.762 o.a.o.d.d.s.SessiondataDao:68 >>>>>>>>>> [http-nio-0.0.0.0-5080-exec-10] - startsession :: startsession >>>>>>>>>> DEBUG 09-19 11:47:25.763 o.a.o.u.c.ManageCryptStyle:32 >>>>>>>>>> [http-nio-0.0.0.0-5080-exec-10] - getInstanceOfCrypt:: >>>>>>>>>> configKeyCryptClassName: >>>>>>>>>> org.apache.openmeetings.util.crypt.MD5Implementation >>>>>>>>>> DEBUG 09-19 11:47:25.788 o.a.o.l.LdapLoginManagement:165 >>>>>>>>>> [http-nio-0.0.0.0-5080-exec-10] - LdapLoginmanagement.doLdapLogin >>>>>>>>>> ERROR 09-19 11:47:25.924 o.a.o.l.LdapLoginManagement:351 >>>>>>>>>> [http-nio-0.0.0.0-5080-exec-10] - Not authenticated. >>>>>>>>>> org.apache.directory.api.ldap.model.exception.LdapAuthenticationException: >>>>>>>>>> 80090308: LdapErr: DSID-0C090334, comment: AcceptSecurityContext >>>>>>>>>> error, >>>>>>>>>> data 525, vece\00 >>>>>>>>>> at >>>>>>>>>> org.apache.directory.api.ldap.model.message.ResultCodeEnum.processResponse(ResultCodeEnum.java:2021) >>>>>>>>>> ~[api-all-jar-1.0.0-M23.jar:1.0.0-M23] >>>>>>>>>> at >>>>>>>>>> org.apache.directory.ldap.client.api.AbstractLdapConnection.bind(AbstractLdapConnection.java:129) >>>>>>>>>> ~[api-all-jar-1.0.0-M23.jar:1.0.0-M23] >>>>>>>>>> at >>>>>>>>>> org.apache.openmeetings.ldap.LdapLoginManagement.login(LdapLoginManagement.java:275) >>>>>>>>>> ~[openmeetings-core-3.0.3-RELEASE.jar:na] >>>>>>>>>> at >>>>>>>>>> org.apache.openmeetings.web.app.WebSession.signIn(WebSession.java:257) >>>>>>>>>> [openmeetings-web-3.0.3-RELEASE.jar:na] >>>>>>>>>> at >>>>>>>>>> org.apache.openmeetings.web.pages.auth.SignInDialog.onSubmit(SignInDialog.java:190) >>>>>>>>>> [openmeetings-web-3.0.3-RELEASE.jar:na] >>>>>>>>>> at >>>>>>>>>> com.googlecode.wicket.jquery.ui.widget.dialog.AbstractFormDialog$DialogFormSubmitter.onSubmit(AbstractFormDialog.java:279) >>>>>>>>>> [wicket-jquery-ui-jar-6.16.0.jar:na] >>>>>>>>>> at >>>>>>>>>> org.apache.wicket.markup.html.form.Form.delegateSubmit(Form.java:1266) >>>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0] >>>>>>>>>> at >>>>>>>>>> org.apache.wicket.markup.html.form.Form.process(Form.java:938) >>>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0] >>>>>>>>>> at >>>>>>>>>> org.apache.wicket.markup.html.form.StatelessForm.process(StatelessForm.java:96) >>>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0] >>>>>>>>>> at >>>>>>>>>> org.apache.wicket.markup.html.form.Form.onFormSubmitted(Form.java:770) >>>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0] >>>>>>>>>> at >>>>>>>>>> com.googlecode.wicket.jquery.ui.widget.dialog.AbstractFormDialog.internalOnClick(AbstractFormDialog.java:200) >>>>>>>>>> [wicket-jquery-ui-jar-6.16.0.jar:na] >>>>>>>>>> at >>>>>>>>>> com.googlecode.wicket.jquery.ui.widget.dialog.AbstractDialog$1.onClick(AbstractDialog.java:439) >>>>>>>>>> [wicket-jquery-ui-jar-6.16.0.jar:na] >>>>>>>>>> at >>>>>>>>>> com.googlecode.wicket.jquery.ui.widget.dialog.DialogBehavior.onAjax(DialogBehavior.java:175) >>>>>>>>>> [wicket-jquery-ui-jar-6.16.0.jar:na] >>>>>>>>>> at >>>>>>>>>> com.googlecode.wicket.jquery.core.ajax.JQueryAjaxBehavior.respond(JQueryAjaxBehavior.java:171) >>>>>>>>>> [wicket-jquery-ui-core-jar-6.16.0.jar:na] >>>>>>>>>> at >>>>>>>>>> org.apache.wicket.ajax.AbstractDefaultAjaxBehavior.onRequest(AbstractDefaultAjaxBehavior.java:633) >>>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0] >>>>>>>>>> at sun.reflect.GeneratedMethodAccessor91.invoke(Unknown Source) >>>>>>>>>> ~[na:na] >>>>>>>>>> at >>>>>>>>>> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43) >>>>>>>>>> ~[na:1.7.0_65] >>>>>>>>>> at java.lang.reflect.Method.invoke(Method.java:606) >>>>>>>>>> ~[na:1.7.0_65] >>>>>>>>>> at >>>>>>>>>> org.apache.wicket.RequestListenerInterface.internalInvoke(RequestListenerInterface.java:258) >>>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0] >>>>>>>>>> at >>>>>>>>>> org.apache.wicket.RequestListenerInterface.invoke(RequestListenerInterface.java:241) >>>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0] >>>>>>>>>> at >>>>>>>>>> org.apache.wicket.core.request.handler.ListenerInterfaceRequestHandler.invokeListener(ListenerInterfaceRequestHandler.java:250) >>>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0] >>>>>>>>>> at >>>>>>>>>> org.apache.wicket.core.request.handler.ListenerInterfaceRequestHandler.respond(ListenerInterfaceRequestHandler.java:236) >>>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0] >>>>>>>>>> at >>>>>>>>>> org.apache.wicket.request.cycle.RequestCycle$HandlerExecutor.respond(RequestCycle.java:862) >>>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0] >>>>>>>>>> at >>>>>>>>>> org.apache.wicket.request.RequestHandlerStack.execute(RequestHandlerStack.java:64) >>>>>>>>>> [wicket-request-jar-6.16.0.jar:6.16.0] >>>>>>>>>> at >>>>>>>>>> org.apache.wicket.request.cycle.RequestCycle.execute(RequestCycle.java:261) >>>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0] >>>>>>>>>> at >>>>>>>>>> org.apache.wicket.request.cycle.RequestCycle.processRequest(RequestCycle.java:218) >>>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0] >>>>>>>>>> at >>>>>>>>>> org.apache.wicket.request.cycle.RequestCycle.processRequestAndDetach(RequestCycle.java:289) >>>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0] >>>>>>>>>> at >>>>>>>>>> org.apache.wicket.protocol.ws.AbstractUpgradeFilter.processRequestCycle(AbstractUpgradeFilter.java:59) >>>>>>>>>> [wicket-native-websocket-core-jar-6.16.0.jar:6.16.0] >>>>>>>>>> at >>>>>>>>>> org.apache.wicket.protocol.http.WicketFilter.processRequest(WicketFilter.java:201) >>>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0] >>>>>>>>>> at >>>>>>>>>> org.apache.wicket.protocol.http.WicketFilter.doFilter(WicketFilter.java:282) >>>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0] >>>>>>>>>> at >>>>>>>>>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:241) >>>>>>>>>> [tomcat-embed-core.jar:7.0.55] >>>>>>>>>> at >>>>>>>>>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:208) >>>>>>>>>> [tomcat-embed-core.jar:7.0.55] >>>>>>>>>> at >>>>>>>>>> org.red5.logging.LoggerContextFilter.doFilter(LoggerContextFilter.java:77) >>>>>>>>>> [red5-server.jar:na] >>>>>>>>>> at >>>>>>>>>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:241) >>>>>>>>>> [tomcat-embed-core.jar:7.0.55] >>>>>>>>>> at >>>>>>>>>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:208) >>>>>>>>>> [tomcat-embed-core.jar:7.0.55] >>>>>>>>>> at >>>>>>>>>> org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:220) >>>>>>>>>> [tomcat-embed-core.jar:7.0.55] >>>>>>>>>> at >>>>>>>>>> org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:122) >>>>>>>>>> [tomcat-embed-core.jar:7.0.55] >>>>>>>>>> at >>>>>>>>>> org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:501) >>>>>>>>>> [tomcat-embed-core.jar:7.0.55] >>>>>>>>>> at >>>>>>>>>> org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:171) >>>>>>>>>> [tomcat-embed-core.jar:7.0.55] >>>>>>>>>> at >>>>>>>>>> org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:103) >>>>>>>>>> [tomcat-embed-core.jar:7.0.55] >>>>>>>>>> at >>>>>>>>>> org.apache.catalina.valves.AccessLogValve.invoke(AccessLogValve.java:950) >>>>>>>>>> [tomcat-embed-core.jar:7.0.55] >>>>>>>>>> at >>>>>>>>>> org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:116) >>>>>>>>>> [tomcat-embed-core.jar:7.0.55] >>>>>>>>>> at >>>>>>>>>> org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:408) >>>>>>>>>> [tomcat-embed-core.jar:7.0.55] >>>>>>>>>> at >>>>>>>>>> org.apache.coyote.http11.AbstractHttp11Processor.process(AbstractHttp11Processor.java:1070) >>>>>>>>>> [tomcat-embed-core.jar:7.0.55] >>>>>>>>>> at >>>>>>>>>> org.apache.coyote.AbstractProtocol$AbstractConnectionHandler.process(AbstractProtocol.java:611) >>>>>>>>>> [tomcat-embed-core.jar:7.0.55] >>>>>>>>>> at >>>>>>>>>> org.apache.tomcat.util.net.NioEndpoint$SocketProcessor.doRun(NioEndpoint.java:1736) >>>>>>>>>> [tomcat-embed-core.jar:7.0.55] >>>>>>>>>> at >>>>>>>>>> org.apache.tomcat.util.net.NioEndpoint$SocketProcessor.run(NioEndpoint.java:1695) >>>>>>>>>> [tomcat-embed-core.jar:7.0.55] >>>>>>>>>> at >>>>>>>>>> java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1145) >>>>>>>>>> [na:1.7.0_65] >>>>>>>>>> at >>>>>>>>>> java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:615) >>>>>>>>>> [na:1.7.0_65] >>>>>>>>>> at >>>>>>>>>> org.apache.tomcat.util.threads.TaskThread$WrappingRunnable.run(TaskThread.java:61) >>>>>>>>>> [tomcat-embed-core.jar:7.0.55] >>>>>>>>>> at java.lang.Thread.run(Thread.java:745) [na:1.7.0_65] >>>>>>>>>> DEBUG 09-19 11:47:25.927 o.a.w.u.c.CookieUtils:266 >>>>>>>>>> [http-nio-0.0.0.0-5080-exec-10] - Unable to find Cookie with >>>>>>>>>> name=LoggedIn >>>>>>>>>> and request URI=signin?1-1.IBehaviorListener.1-signin >>>>>>>>>> DEBUG 09-19 11:47:25.929 o.a.w.f.FeedbackMessages:69 >>>>>>>>>> [http-nio-0.0.0.0-5080-exec-10] - Adding feedback message >>>>>>>>>> '[FeedbackMessage >>>>>>>>>> message = "Invalid password", reporter = signin, level = ERROR]' >>>>>>>>>> DEBUG 09-19 11:47:25.929 o.a.w.u.c.CookieUtils:266 >>>>>>>>>> [http-nio-0.0.0.0-5080-exec-10] - Unable to find Cookie with >>>>>>>>>> name=LoggedIn >>>>>>>>>> and request URI=signin?1-1.IBehaviorListener.1-signin >>>>>>>>>> DEBUG 09-19 11:47:25.930 o.a.wicket.Page:871 >>>>>>>>>> [http-nio-0.0.0.0-5080-exec-10] - ending request for page [Page >>>>>>>>>> class = >>>>>>>>>> org.apache.openmeetings.web.pages.auth.SignInPage, id = 1, render >>>>>>>>>> count = >>>>>>>>>> 1], request >>>>>>>>>> org.apache.wicket.protocol.http.servlet.ServletWebRequest@a6e74b >>>>>>>>>> DEBUG 09-19 11:47:25.930 o.a.wicket.Page:871 >>>>>>>>>> [http-nio-0.0.0.0-5080-exec-10] - ending request for page [Page >>>>>>>>>> class = >>>>>>>>>> org.apache.openmeetings.web.pages.auth.SignInPage, id = 1, render >>>>>>>>>> count = >>>>>>>>>> 1], request >>>>>>>>>> org.apache.wicket.protocol.http.servlet.ServletWebRequest@a6e74b >>>>>>>>>> DEBUG 09-19 11:47:25.930 o.a.wicket.Page:871 >>>>>>>>>> [http-nio-0.0.0.0-5080-exec-10] - ending request for page [Page >>>>>>>>>> class = >>>>>>>>>> org.apache.openmeetings.web.pages.auth.SignInPage, id = 1, render >>>>>>>>>> count = >>>>>>>>>> 1], request >>>>>>>>>> org.apache.wicket.protocol.http.servlet.ServletWebRequest@a6e74b >>>>>>>>>> DEBUG 09-19 11:47:25.988 >>>>>>>>>> o.a.w.p.AsynchronousDataStore$PageSavingRunnable:354 >>>>>>>>>> [Wicket-PageSavingThread] - Saving asynchronously: Entry >>>>>>>>>> [sessionId=2A10AA69C3E771FF51FABD4D26A20559, pageId=1]... >>>>>>>>>> DEBUG 09-19 11:47:25.988 o.a.w.p.DiskDataStore:186 >>>>>>>>>> [Wicket-PageSavingThread] - Storing data for page with id '1' in >>>>>>>>>> session >>>>>>>>>> with id '2A10AA69C3E771FF51FABD4D26A20559' >>>>>>>>>> DEBUG 09-19 11:47:25.988 o.a.w.p.PageAccessSynchronizer:195 >>>>>>>>>> [http-nio-0.0.0.0-5080-exec-10] - 'http-nio-0.0.0.0-5080-exec-10' >>>>>>>>>> released >>>>>>>>>> lock to page with id '1' >>>>>>>>>> DEBUG 09-19 11:47:25.988 o.a.w.p.PageAccessSynchronizer:346 >>>>>>>>>> [http-nio-0.0.0.0-5080-exec-10] - 'http-nio-0.0.0.0-5080-exec-10' >>>>>>>>>> notifying >>>>>>>>>> blocked threads >>>>>>>>>> >>>>>>>>>> >>>>>>>>>> >>>>>>>>>> >>>>>>>>>> >>>>>>>>>> >>>>>>>>>> >>>>>>>>>> >>>>>>>>>> >>>>>>>>>> And here is my conf file : >>>>>>>>>> >>>>>>>>>> # >>>>>>>>>> # Licensed to the Apache Software Foundation (ASF) under one >>>>>>>>>> # or more contributor license agreements. See the NOTICE file >>>>>>>>>> # distributed with this work for additional information >>>>>>>>>> # regarding copyright ownership. The ASF licenses this file >>>>>>>>>> # to you under the Apache License, Version 2.0 (the >>>>>>>>>> # "License"); you may not use this file except in compliance >>>>>>>>>> # with the License. You may obtain a copy of the License at >>>>>>>>>> # >>>>>>>>>> # http://www.apache.org/licenses/LICENSE-2.0 >>>>>>>>>> # >>>>>>>>>> # Unless required by applicable law or agreed to in writing, >>>>>>>>>> # software distributed under the License is distributed on an >>>>>>>>>> # "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY >>>>>>>>>> # KIND, either express or implied. See the License for the >>>>>>>>>> # specific language governing permissions and limitations >>>>>>>>>> # under the License. >>>>>>>>>> # >>>>>>>>>> #ConfigurationFile for LDAP Auth >>>>>>>>>> #ConfigKey 'ldap_config_path' must be set in DataBase >>>>>>>>>> Configration of OM and point to this file >>>>>>>>>> #o.becherer,14.01.2009 >>>>>>>>>> #LDAP URL >>>>>>>>>> # This is the URL used to access your LDAP server. >>>>>>>>>> # if you want to use "ldaps://" links, please be aware that you >>>>>>>>>> need to import your CA certificate >>>>>>>>>> # to a java keystore and add the -Djavax.net.ssl.keyStore, >>>>>>>>>> -Djavax.net.ssl.keyStorePassword, >>>>>>>>>> # -Djavax.net.ssl.trustStore and >>>>>>>>>> -Djavax.net.ssl.trustStorePassword parameters to your >>>>>>>>>> # JAVA_OPT environment >>>>>>>>>> ldap_conn_host=@IP_of_my_AD >>>>>>>>>> ldap_conn_port=389 >>>>>>>>>> ldap_conn_secure=false >>>>>>>>>> # Login distinguished name (DN) for Authentication on LDAP Server >>>>>>>>>> - keep empty if not required >>>>>>>>>> # Use full qualified LDAP DN >>>>>>>>>> >>>>>>>>>> ldap_admin_dn=CN=adconnect,OU=Comptes,OU=SI,OU=Services,OU=COMPANY,DC=mycompany,DC=priv >>>>>>>>>> # Loginpass for Authentication on LDAP Server - keep empty if not >>>>>>>>>> required >>>>>>>>>> ldap_passwd=pass_for_user_adconnect >>>>>>>>>> # base to search for userdata(of user, that wants to login) >>>>>>>>>> ldap_search_base=DC=mycompany,DC=priv >>>>>>>>>> # Fieldnames (can differ between Ldap servers) >>>>>>>>>> ldap_search_query=(uid=%s) >>>>>>>>>> # the scope of the search might be: OBJECT, ONELEVEL, SUBTREE >>>>>>>>>> ldap_search_scope=ONELEVEL >>>>>>>>>> # Ldap auth type(NONE, SEARCHANDBIND, SIMPLEBIND) >>>>>>>>>> # When using SIMPLEBIND a simple bind is performed on the LDAP >>>>>>>>>> server to check user authentication >>>>>>>>>> # When using NONE, the Ldap server is not used for authentication >>>>>>>>>> ldap_auth_type=SIMPLEBIND >>>>>>>>>> # userDN format, will be used to bind if ldap_auth_type=SIMPLEBIND >>>>>>>>>> # might be used to get provisionningDn in case ldap_auth_type=NONE >>>>>>>>>> ldap_userdn_format=uid=%s,OU=COMPANY,DC=mycompany,DC=priv >>>>>>>>>> # Ldap provisioning type(NONE, AUTOCREATE, AUTOUPDATE) >>>>>>>>>> ldap_provisionning=AUTOCREATE >>>>>>>>>> # Set this to 'true' if you want to use admin_dn to get user >>>>>>>>>> attributes >>>>>>>>>> # If any other value is set, user_dn will be used >>>>>>>>>> ldap_use_admin_to_get_attrs=true >>>>>>>>>> # Ldap-password synchronization to OM DB >>>>>>>>>> # Set this to 'true' if you want OM to synchronize the user >>>>>>>>>> Ldap-password to OM's internal DB >>>>>>>>>> # If you want to disable the feature, set this to any other >>>>>>>>>> string. >>>>>>>>>> # Defautl value is 'true' >>>>>>>>>> ldap_sync_password_to_om=true >>>>>>>>>> # Ldap user attributes mapping >>>>>>>>>> # Set the following internal OM user attributes to their >>>>>>>>>> corresponding Ldap-attribute >>>>>>>>>> ldap_user_attr_lastname=sn >>>>>>>>>> ldap_user_attr_firstname=givenName >>>>>>>>>> ldap_user_attr_mail=mail >>>>>>>>>> ldap_user_attr_street=streetAddress >>>>>>>>>> ldap_user_attr_additionalname=description >>>>>>>>>> ldap_user_attr_fax=facsimileTelephoneNumber >>>>>>>>>> ldap_user_attr_zip=postalCode >>>>>>>>>> ldap_user_attr_country=co >>>>>>>>>> ldap_user_attr_town=l >>>>>>>>>> ldap_user_attr_phone=telephoneNumber >>>>>>>>>> # optional, only absolute URLs make sense >>>>>>>>>> #ldap_user_picture_uri=picture_uri >>>>>>>>>> # optional >>>>>>>>>> # the timezone has to match any timezone available in Java, >>>>>>>>>> otherwise the timezone defined in the value of >>>>>>>>>> # the conf_key "default.timezone" in OpenMeetings >>>>>>>>>> "configurations" table >>>>>>>>>> #ldap_user_timezone=timezone >>>>>>>>>> # Ldap ignore upper/lower case, convert all input to lower case >>>>>>>>>> ldap_use_lower_case=false >>>>>>>>>> >>>>>>>>>> >>>>>>>>>> >>>>>>>>>> Thanks a lot for your help. >>>>>>>>>> >>>>>>>>>> Greg. >>>>>>>>>> >>>>>>>>>> >>>>>>>>>> >>>>>>>>>> >>>>>>>>>> 2014-09-18 17:52 GMT+02:00 Maxim Solodovnik <solomax...@gmail.com >>>>>>>>>> >: >>>>>>>>>> >>>>>>>>>>> please check this URL: >>>>>>>>>>> http://kb.juniper.net/InfoCenter/index?page=content&id=KB17098 >>>>>>>>>>> According to it you have "User not found" >>>>>>>>>>> >>>>>>>>>>> could you provide more ldap related logs? >>>>>>>>>>> it might be Admin not found or user entered in login form not >>>>>>>>>>> found depending on your settings >>>>>>>>>>> >>>>>>>>>>> On 18 September 2014 21:43, Grégory Mangeney <mange...@gmail.com >>>>>>>>>>> > wrote: >>>>>>>>>>> >>>>>>>>>>>> Hello, It's me again... >>>>>>>>>>>> I'm back. >>>>>>>>>>>> Now I have a new problem to connect to my AD... >>>>>>>>>>>> In log file it is write : *ERROR ......... Not authenticated* >>>>>>>>>>>> witch is a quite better message than before but after that it >>>>>>>>>>>> is write : *LdapErr: DSID-0C090334, comment: >>>>>>>>>>>> AcceptSecurityContext error, data 525, vece\00 at........* >>>>>>>>>>>> >>>>>>>>>>>> I try to understand my problem but "AcceptSecurityContext >>>>>>>>>>>> error" seems to speack about a security problem. >>>>>>>>>>>> I have set my ldap_conn_secure=false in om_ldap.conf. >>>>>>>>>>>> I don't understand what could be my problem. >>>>>>>>>>>> >>>>>>>>>>>> thanks a lot for your ideas. >>>>>>>>>>>> >>>>>>>>>>>> Greg. >>>>>>>>>>>> 2014-09-18 15:37 GMT+02:00 Grégory Mangeney <mange...@gmail.com >>>>>>>>>>>> >: >>>>>>>>>>>> >>>>>>>>>>>>> Ok, I finally understand that I have to put the filename and >>>>>>>>>>>>> only the filename without >>>>>>>>>>>>> */usr/lib/red5/webapps/openmeetings/conf/* >>>>>>>>>>>>> >>>>>>>>>>>>> Now I have a new message whitch said me invalid password... >>>>>>>>>>>>> It's quite better... >>>>>>>>>>>>> Thank you... >>>>>>>>>>>>> I could continue to try to set it now. >>>>>>>>>>>>> bye >>>>>>>>>>>>> >>>>>>>>>>>>> Greg. >>>>>>>>>>>>> >>>>>>>>>>>>> >>>>>>>>>>>>> >>>>>>>>>>>>> 2014-09-18 15:06 GMT+02:00 Maxim Solodovnik < >>>>>>>>>>>>> solomax...@gmail.com>: >>>>>>>>>>>>> >>>>>>>>>>>>>> you need to write file name relative to >>>>>>>>>>>>>> webapps/openmeetings/conf folder >>>>>>>>>>>>>> in your case *om_ldap.cfg *should be specified >>>>>>>>>>>>>> >>>>>>>>>>>>>> On 18 September 2014 20:04, Grégory Mangeney < >>>>>>>>>>>>>> mange...@gmail.com> wrote: >>>>>>>>>>>>>> >>>>>>>>>>>>>>> Thank you very much but I don't understand very well. >>>>>>>>>>>>>>> I think I put the right information... >>>>>>>>>>>>>>> Do you want to say that I have to write : >>>>>>>>>>>>>>> */usr/lib/red5/webapps/openmeetings/conf/* without the >>>>>>>>>>>>>>> filename *om_ldap.cfg* at the end? >>>>>>>>>>>>>>> Thanks for your help >>>>>>>>>>>>>>> Greg >>>>>>>>>>>>>>> >>>>>>>>>>>>>>> >>>>>>>>>>>>>>> 2014-09-18 14:52 GMT+02:00 Maxim Solodovnik < >>>>>>>>>>>>>>> solomax...@gmail.com>: >>>>>>>>>>>>>>> >>>>>>>>>>>>>>>> AFAIK the path should be relative to >>>>>>>>>>>>>>>> /usr/lib/red5/webapps/openmeetings/conf >>>>>>>>>>>>>>>> Please change this path >>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>> Additionally you can file JIRA issue to add check to the >>>>>>>>>>>>>>>> Admin screen (so path will be validated on enter) >>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>> On 18 September 2014 19:44, Grégory Mangeney < >>>>>>>>>>>>>>>> mange...@gmail.com> wrote: >>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>> Hello, >>>>>>>>>>>>>>>>> I have the same problem: I could not connect with AD. >>>>>>>>>>>>>>>>> I have the domain at the login screen, >>>>>>>>>>>>>>>>> I am using the 3.0.3. >>>>>>>>>>>>>>>>> I found this line in my log file :* ERROR 09-18 >>>>>>>>>>>>>>>>> 14:28:33.994 o.a.o.l.LdapLoginManagement:147 >>>>>>>>>>>>>>>>> [http-nio-0.0.0.0-5080-exec-4] >>>>>>>>>>>>>>>>> - Error on LdapLogin : Configurationdata couldnt be >>>>>>>>>>>>>>>>> retrieved!* >>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>> This seem strange because in my LDAP config (in >>>>>>>>>>>>>>>>> openmeetings Administration/LDAP menu), I put the correct >>>>>>>>>>>>>>>>> path in the >>>>>>>>>>>>>>>>> "Config file name" : >>>>>>>>>>>>>>>>> /usr/lib/red5/webapps/openmeetings/conf/om_ldap.cfg >>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>> Why is this error appeared : *Configurationdata couldnt >>>>>>>>>>>>>>>>> be retrieved! *??? >>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>> Thanks a lot >>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>> Greg >>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>> 2014-09-17 12:52 GMT+02:00 Maxim Solodovnik < >>>>>>>>>>>>>>>>> solomax...@gmail.com>: >>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>> great :) >>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>> On 17 September 2014 17:46, Teddy Jayasaputra < >>>>>>>>>>>>>>>>>> teddy.jayasapu...@ocbcnisp.com> wrote: >>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>> Dear Maxim, >>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>> After close look to console log. >>>>>>>>>>>>>>>>>>> We found this error : >>>>>>>>>>>>>>>>>>> ERROR 09-17 17:28:33.278 LdapLoginManagement.java 135070 >>>>>>>>>>>>>>>>>>> 285 org.apache.openmeetings.ldap.LdapLoginManagement >>>>>>>>>>>>>>>>>>> [http-nio-0.0.0.0-5080-exec-6] - User not found in OM DB and >>>>>>>>>>>>>>>>>>> Provisionning.AUTOCREATE was not set >>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>> After we change ldapconfiguration file from >>>>>>>>>>>>>>>>>>> ldap_provisionning=NONE to AUTOCREATE we can login using AD. >>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>> thanks. >>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>> Best Regards, >>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>> -Teddy Jayasaputra- >>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>> On 9/17/2014 4:25 PM, Maxim Solodovnik wrote: >>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>> do you have your AD domain on the login screen? >>>>>>>>>>>>>>>>>>> are there errors in the log? >>>>>>>>>>>>>>>>>>> what OM version are you using? >>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>> On 17 September 2014 16:02, ARI HENDIAWAN < >>>>>>>>>>>>>>>>>>> ari.hendia...@ocbcnisp.com> wrote: >>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>> Dear all, >>>>>>>>>>>>>>>>>>>> please we need extra information how to integrate >>>>>>>>>>>>>>>>>>>> openmeetings 3.0.3 with AD? >>>>>>>>>>>>>>>>>>>> we already setting on ldap.conf and still problem.. if >>>>>>>>>>>>>>>>>>>> we saw on AD , user that want sign-in openmeetings >>>>>>>>>>>>>>>>>>>> success, but on login >>>>>>>>>>>>>>>>>>>> menu openmeetings shown error "invalid password" >>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>> Tks >>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>> -- >>>>>>>>>>>>>>>>>>>> Disclaimer : >>>>>>>>>>>>>>>>>>>> Confidential information may be contained in this >>>>>>>>>>>>>>>>>>>> message. If you are not the intended recipient, you are >>>>>>>>>>>>>>>>>>>> strictly prohibited >>>>>>>>>>>>>>>>>>>> and may be unlawful to use, copy, store, distribute, >>>>>>>>>>>>>>>>>>>> disclose or >>>>>>>>>>>>>>>>>>>> communicate any part of it to others and you are obliged >>>>>>>>>>>>>>>>>>>> to return it >>>>>>>>>>>>>>>>>>>> immediately to sender or notify us and delete the e-mail >>>>>>>>>>>>>>>>>>>> and any >>>>>>>>>>>>>>>>>>>> attachments from your system. Opinions, conclusions and >>>>>>>>>>>>>>>>>>>> other information >>>>>>>>>>>>>>>>>>>> in this e-mail that do not relate to the official business >>>>>>>>>>>>>>>>>>>> of any PT Bank >>>>>>>>>>>>>>>>>>>> OCBC NISP Tbk shall be understood as neither given nor >>>>>>>>>>>>>>>>>>>> endorsed by it. No >>>>>>>>>>>>>>>>>>>> assumption of responsibility or liability whatsoever is >>>>>>>>>>>>>>>>>>>> undertaken by PT >>>>>>>>>>>>>>>>>>>> Bank OCBC NISP Tbk in respect of prohibited and >>>>>>>>>>>>>>>>>>>> unauthorised use by any >>>>>>>>>>>>>>>>>>>> other person. >>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>> -- >>>>>>>>>>>>>>>>>>> WBR >>>>>>>>>>>>>>>>>>> Maxim aka solomax >>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>> -- >>>>>>>>>>>>>>>>>>> Disclaimer : >>>>>>>>>>>>>>>>>>> Confidential information may be contained in this >>>>>>>>>>>>>>>>>>> message. If you are not the intended recipient, you are >>>>>>>>>>>>>>>>>>> strictly prohibited >>>>>>>>>>>>>>>>>>> and may be unlawful to use, copy, store, distribute, >>>>>>>>>>>>>>>>>>> disclose or >>>>>>>>>>>>>>>>>>> communicate any part of it to others and you are obliged to >>>>>>>>>>>>>>>>>>> return it >>>>>>>>>>>>>>>>>>> immediately to sender or notify us and delete the e-mail >>>>>>>>>>>>>>>>>>> and any >>>>>>>>>>>>>>>>>>> attachments from your system. Opinions, conclusions and >>>>>>>>>>>>>>>>>>> other information >>>>>>>>>>>>>>>>>>> in this e-mail that do not relate to the official business >>>>>>>>>>>>>>>>>>> of any PT Bank >>>>>>>>>>>>>>>>>>> OCBC NISP Tbk shall be understood as neither given nor >>>>>>>>>>>>>>>>>>> endorsed by it. No >>>>>>>>>>>>>>>>>>> assumption of responsibility or liability whatsoever is >>>>>>>>>>>>>>>>>>> undertaken by PT >>>>>>>>>>>>>>>>>>> Bank OCBC NISP Tbk in respect of prohibited and >>>>>>>>>>>>>>>>>>> unauthorised use by any >>>>>>>>>>>>>>>>>>> other person. >>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>> -- >>>>>>>>>>>>>>>>>> WBR >>>>>>>>>>>>>>>>>> Maxim aka solomax >>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>> -- >>>>>>>>>>>>>>>> WBR >>>>>>>>>>>>>>>> Maxim aka solomax >>>>>>>>>>>>>>>> >>>>>>>>>>>>>>> >>>>>>>>>>>>>>> >>>>>>>>>>>>>> >>>>>>>>>>>>>> >>>>>>>>>>>>>> -- >>>>>>>>>>>>>> WBR >>>>>>>>>>>>>> Maxim aka solomax >>>>>>>>>>>>>> >>>>>>>>>>>>> >>>>>>>>>>>>> >>>>>>>>>>>> >>>>>>>>>>> >>>>>>>>>>> >>>>>>>>>>> -- >>>>>>>>>>> WBR >>>>>>>>>>> Maxim aka solomax >>>>>>>>>>> >>>>>>>>>> >>>>>>>>>> >>>>>>>>> >>>>>>>>> >>>>>>>>> -- >>>>>>>>> WBR >>>>>>>>> Maxim aka solomax >>>>>>>>> >>>>>>>> >>>>>>>> >>>>>>> >>>>>>> >>>>>>> -- >>>>>>> WBR >>>>>>> Maxim aka solomax >>>>>>> >>>>>> >>>>>> >>>> >>> >> >> >> -- >> WBR >> Maxim aka solomax >> > > -- WBR Maxim aka solomax
