I got it to work. My GroupSearchFilter was incorrect. On 12-07-12 12:29 PM, Bram Cymet wrote: > Hi, > > I am trying to setup the identity server to read groups out of my > external ldap. However I am getting the following error: > > Caused by: javax.naming.directory.InvalidSearchFilterException: > Unbalanced parenthesis; remaining name 'ou=groups,dc=TESTLDAP,dc=CBN' > > What really confuses me is there are no parenthesis in the search filter. > > Here is my user-mgt.xml: > > <UserManager> > <Realm> > <Configuration> > <AdminRole>admin</AdminRole> > <AdminUser> > <UserName>jtest</UserName> > <Password>XXXXXX</Password> > </AdminUser> > <EveryOneRoleName>everyone</EveryOneRoleName> > <!-- > By default users in thsi role sees the registry root > --> > <ReadOnly>true</ReadOnly> > <MaxUserNameListLength>500</MaxUserNameListLength> > <Property name="url">jdbc:h2:repository/database/WSO2CARBON_DB</Property> > <Property name="userName">wso2carbon</Property> > <Property name="password">wso2carbon</Property> > <Property name="driverName">org.h2.Driver</Property> > <Property name="maxActive">50</Property> > <Property name="maxWait">60000</Property> > <Property name="minIdle">5</Property> > </Configuration> > <UserStoreManager > class="org.wso2.carbon.user.core.ldap.LDAPUserStoreManager"> > <Property name="ReadOnly">true</Property> > <Property name="MaxUserNameListLength">100</Property> > <Property name="ConnectionURL">ldap://172.20.22.141:389</Property> > <Property name="ConnectionName">cn=admin,dc=TESTLDAP,dc=CBN</Property> > <Property name="ConnectionPassword">admin</Property> > <Property name="UserSearchBase">dc=TESTLDAP,dc=CBN</Property> > <Property name="UserNameListFilter">(objectClass=inetOrgPerson)</Property> > <Property > name="UserNameSearchFilter">(&(objectClass=inetOrgPerson)(uid=?))</Property> > <Property name="passwordHashMethod">sha</Property> > <Property name="UserNameAttribute">uid</Property> > <Property name="ReadLDAPGroups">true</Property> > <Property name="WriteLDAPGroups">true</Property> > <Property name="GroupSearchBase">ou=groups,dc=TESTLDAP,dc=CBN</Property> > <Property name="GroupSearchFilter">(objectClass=groupOfNames)</Property> > <Property name="GroupNameAttribute">cn</Property> > <Property name="MembershipAttribute">member</Property> > </UserStoreManager> > > <AuthorizationManager > class="org.wso2.carbon.user.core.authorization.JDBCAuthorizationManager"></AuthorizationManager> > </Realm> > </UserManager> > > > Any idea what is wrong? > > Thanks, >
-- Bram Cymet Software Developer Canadian Bank Note Co. Ltd. 613-608-9752 _______________________________________________ Dev mailing list [email protected] http://wso2.org/cgi-bin/mailman/listinfo/dev
