Re: [Dspace-tech] LDAPServlet failed login result=5
Yes, this did work after I found a couple of other small things I had crossed up while attempting to find a combination of settings that would work. Thanks again for the help! Joe helix84 heli...@centrum.sk 8/24/2012 4:42 PM On Wed, Aug 22, 2012 at 5:45 PM, helix84 heli...@centrum.sk wrote: Oh, yeah. I forgot to tell you. You have to set up ldap.email_field = cn or it won't work. You also won't be able to send mail, because DSpace assumes that the user's ID is an email, which in case of LDAP usually isn't. See: https://jira.duraspace.org/browse/DS-937 https://jira.duraspace.org/browse/DS-586 Hi Joseph, did this work? If not, I may have another tip. Regards, ~~helix84 -- Live Security Virtual Conference Exclusive live event will cover all the ways today's security and threat landscape has changed and how IT managers can respond. Discussions will include endpoint security, mobile security and the latest in malware threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/___ DSpace-tech mailing list DSpace-tech@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/dspace-tech
Re: [Dspace-tech] LDAPServlet failed login result=5
After doing more tinkering overnight I have discovered that it appears that the error is only showing up for users who DO NOT have a mail entry in our directory. Users WITH mail entries are logged in without incident. Any account I try that does NOT have a mail entry does not get logged in and gets the error listed below. I have set all of the following: webui.ldap.autoregister = true ldap.email_field = mail (mail is what the entry is named in our directory for those who have it) ldap.netid_email_domain = @ourdomain.edu Any thoughts? helix84 heli...@centrum.sk 8/21/2012 3:16 PM On Tue, Aug 21, 2012 at 9:16 PM, Joseph Thomas j...@niu.edu wrote: 2012-08-21 13:59:58,723 INFO org.dspace.app.webui.servlet.LDAPServlet @ anonymous:session_id=8576C39FA34E6905D2D00F332D94DB37:ip_addr=MYIPADDR:failed_login:netid=HiddenUserName, result=5 This gets printed here: https://github.com/DSpace/DSpace/blob/master/dspace-jspui/dspace-jspui-api/src/main/java/org/dspace/app/webui/servlet/LDAPServlet.java#L103 Value of result: /** User or password is not appropriate for this method. */ public static final int BAD_ARGS = 5; Are you sure the full DN gets constructed correctly? Regards, ~~helix84 -- Live Security Virtual Conference Exclusive live event will cover all the ways today's security and threat landscape has changed and how IT managers can respond. Discussions will include endpoint security, mobile security and the latest in malware threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/ ___ DSpace-tech mailing list DSpace-tech@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/dspace-tech -- Live Security Virtual Conference Exclusive live event will cover all the ways today's security and threat landscape has changed and how IT managers can respond. Discussions will include endpoint security, mobile security and the latest in malware threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/___ DSpace-tech mailing list DSpace-tech@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/dspace-tech
[Dspace-tech] LDAPServlet failed login result=5
Hi everyone, I'm trying to get hierarchical LDAP working in my environment and keep running into snags. I've gotten past most of them but I am hung up on this one and have had little to no luck figuring out what it means. I am hoping one of you can graciously point me in the right direction. Here goes... dspace 1.7.1 on Red Hat 6.1 and trying to connect to our campus Active Directory. Below is a snippet of the log file I receive when attempting to authenticate a user via LDAP... 2012-08-21 13:59:58,573 DEBUG org.dspace.app.webui.servlet.DSpaceServlet @ anonymous:session_id=8576C39FA34E6905D2D00F332D94DB37: -- Method\colon; POST -- Parameters were\colon; -- login_password\colon; *not logged* -- login_submit\colon; Log In -- login_netid\colon; HiddenUserName 2012-08-21 13:59:58,573 INFO org.dspace.authenticate.LDAPHierarchicalAuthentication @ anonymous:session_id=8576C39FA34E6905D2D00F332D94DB37:ip_addr=MYIPADDR:auth:attempting trivial auth of user=HiddenUserName 2012-08-21 13:59:58,582 DEBUG org.dspace.storage.rdbms.DatabaseManager @ Running query select * from eperson where netid = ? with parameters: a10jlt1 2012-08-21 13:59:58,716 DEBUG org.dspace.authenticate.LDAPHierarchicalAuthentication @ anonymous:session_id=8576C39FA34E6905D2D00F332D94DB37:ip_addr=MYIPADDR:got DN:CN=HiddenUserName,OU=correctDN,DC=niunt,DC=niu,DC=edu 2012-08-21 13:59:58,722 INFO org.dspace.authenticate.LDAPHierarchicalAuthentication @ anonymous:session_id=8576C39FA34E6905D2D00F332D94DB37:ip_addr=MYIPADDR:autoregister:netid=HiddenUserName 2012-08-21 13:59:58,723 INFO org.dspace.app.webui.servlet.LDAPServlet @ anonymous:session_id=8576C39FA34E6905D2D00F332D94DB37:ip_addr=MYIPADDR:failed_login:netid=HiddenUserName, result=5 2012-08-21 13:59:58,723 DEBUG org.dspace.app.webui.util.JSPManager @ anonymous:session_id=8576C39FA34E6905D2D00F332D94DB37:ip_addr=MYIPADDR:view_jsp:/login/incorrect.jsp Any info you guys might have would be helpful at this point. I am having zero luck explaining/correcting this one. Thanks! Joe -- Live Security Virtual Conference Exclusive live event will cover all the ways today's security and threat landscape has changed and how IT managers can respond. Discussions will include endpoint security, mobile security and the latest in malware threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/___ DSpace-tech mailing list DSpace-tech@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/dspace-tech