Hi Sergey,
you can use the 'org.apache.directory.api.CODEC_LOG' logger to get a
trace of every received and sent PDU. This is quite verbose. That would
probably be easier than using wireshark and correlate the traces with
the server logs...
On 01/07/2019 13:11, Emmanuel Lécharny wrote:
Hi Sergey,
this error is produced when an anonymous bind is done. This is ther
first check done when any operation is executed (add, search, modify,
etc). Sadly, we would need more logs to be able to determinate what
could be wrong.
Ideally speaking, the right logs would be on
'org.apache.directory.server.ldap.handlers.request' which would logs
any operation and the associated context. That will be quite verbose
though, and it will be hard to find the request that is not done with
an authenticated user.
Another thing to do would be to capture a wireshark session, in order
to try to correlate a received LDAP message that ends with such an
error to a Bind anonymous (if any).
Other things that could happen is a pb with the connection pool. Do
you know that we have implemented a LDAP connection pool in Apache
LDAP API ?
Last, not least, that may also be a problem in the server, where the
operation is processed after an unbind has been done, leaving the
connection anonymous. This is pure hypothesis at this point, an unbind
is supposed to delete all the pending operations.
What is the ApacheDS version you are using ?
Thanks !
On 01/07/2019 12:02, Sergey Mikhno wrote:
Dear Emmanuel
We are using ApacheDS to authenticate our users.
ApacheDS connections are in the connection Apache GenericObjectPool
version 2.6.
All the connections in the pool have user name and password specified
and are authenticated (as far as we understand). We are using
TestOnBorrow from the pool, and borrowing a connection the pool tests
if connection is authenticated.
Our problem is that sometimes (more that 50 times a day) we see
following error messages in apacheds.log
01.07.2019 01:41:18,487 ERROR [pool-6-thread-766]
org.apache.directory.server.core.authn.AuthenticationInterceptor.checkAuthenticated():1354
- ERR_5 Attempted operation MODIFY_REQUEST by unauthenticated
caller.
01.07.2019 01:41:24,617 ERROR [pool-6-thread-766]
org.apache.directory.server.core.authn.AuthenticationInterceptor.checkAuthenticated():1354
- ERR_5 Attempted operation SEARCH_REQUEST by unauthenticated
caller.
Do you have any idea what could be wrong or what could we check to
get rid of these error messages?
Best Regards
Sergey Mikhno
Software Developer
Galexis AG
--
Sergey Mikhno
---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscr...@directory.apache.org
For additional commands, e-mail: users-h...@directory.apache.org