Hi, I'd like to enable LDAP authorisation in addition to the "traditional" email registration for DSpace 1.5. But when I try to login I get the following messages in dspace.log:
2008-05-22 09:20:14,951 WARN org.dspace.app.webui.servlet.LDAPServlet @ anonymous:session_id=DF5155BCA2D28A286BDEC1D5A1D379DA:ip_addr=131.173.148.100:ldap_authentication:type=failed_auth javax.naming.AuthenticationException: [LDAP: error code 49 - Invalid Credentials] 2008-05-22 09:20:15,015 INFO org.dspace.app.webui.servlet.LDAPServlet @ anonymous:session_id=DF5155BCA2D28A286BDEC1D5A1D379DA:ip_addr=131.173.148.100:failed_login:netid=myaccount The LDAP-error 49 means either "The client passed either an incorrect DN or password" or "The password is incorrect because it has expired, intruder detection has locked the account, or some other similar reason". It can only be the second reason, because working with other applications the used LDAP-account is valid. Here are my LDAP-settings in dspace.cfg: ldap.enable = true ldap.provider_url = ldap://our.ldap.uni-osnabrueck.de ldap.id_field = uid ldap.object_context = cn=people,dc=Uni-Osnabrueck,dc=de ldap.search_context = ou=people ldap.email_field = mail ldap.surname_field = sn ldap.givenname_field = givenName ldap.phone_field = telephoneNumber webui.ldap.autoregister = true plugin.sequence.org.dspace.authenticate.AuthenticationMethod = \ org.dspace.authenticate.LDAPAuthentication, \ org.dspace.authenticate.PasswordAuthentication I see two possibilities where things can go wrong, but I have no idea how to make them right: 1. The DSpace documentation notes about 'ldap.object_context' that it is "appended to the ldap.id_field and username". This looks to my that DSpace builds the DN using id_field and object_context. Our LDAP administrator says that in this caste the id_field would be 'cn' and the users must login using their "Common Name" and not their uid. But even when I try the 'cn'-value as login name, I get the same error (with the 'cn'-value as 'netid'). 2. As far as I know it is necessary to query the LDAP-server an access-login and -password is needed. But I could not find any place to set these in DSpace. What could I do? Best regards Robert -- =================================== Robert Roggenbuck Universitaetsbibliothek Osnabrueck Germany =================================== ------------------------------------------------------------------------- This SF.net email is sponsored by: Microsoft Defy all challenges. Microsoft(R) Visual Studio 2008. http://clk.atdmt.com/MRT/go/vse0120000070mrt/direct/01/ _______________________________________________ DSpace-tech mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/dspace-tech
