Dear Stuart, Thank you for your reply. Inside the ou=AllUsers, we have many sub OUs in which different users reside. Does this require turning on Hierarchical LDAP? Could the problem be due to the password used by the user to search the active directory having special characters?
Below are my ldap settings ldap.enable = true ldap.provider_url = ldap://win2k.aub.edu.lb ldap.id_field = uid ldap.object_context = ou=AllUsers,o=win2k.aub.edu.lb ldap.search_context = ou=AllUsers,o=win2k.aub.edu.lb ldap.email_field = mail ldap.surname_field = sn ldap.givenname_field = givenName ldap.phone_field = telephoneNumber webui.ldap.autoregister = true ##### Hierarchical LDAP Settings #### ldap.search_scope = 2 ldap.search.user = cn=dspace,ou=Special Users,ou=AllUsers,o=win2k.aub.edu.lb ldap.search.password = x...@!= >>>Below are my logs before and after enabling Hierarchical LDAP. >>>What should i understand from the logs returning "result=2" and "result=4" >>>Before enabling Hierarchical LDAP: 2010-03-09 10:54:37,146 INFO org.dspace.authenticate.PasswordAuthentication @ anonymous:session_id=220F7A268A56898250A143DD431C7428:ip_addr=192.168.12.21: authenticate:attempting password auth of user=amerh 2010-03-09 10:54:37,166 INFO org.dspace.app.xmlui.utils.AuthenticationUtil @ anonymous:session_id=220F7A268A56898250A143DD431C7428:ip_addr=192.168.12.21: failed_login:email=amerh, realm=null, result=4 >>>After enabling Hierarchical LDAP: 2010-03-09 12:38:18,878 INFO org.dspace.authenticate.LDAPHierarchicalAuthentication @ anonymous:session_id=27C51B3169D422438A3CB10F585196C0:ip_addr=192.168.12.21: failed_login:no DN found for user amerh 2010-03-09 12:38:18,878 INFO org.dspace.app.xmlui.utils.AuthenticationUtil @ anonymous:session_id=27C51B3169D422438A3CB10F585196C0:ip_addr=192.168.12.21: failed_login:email=amerh, realm=null, result=2 2010-03-09 12:38:54,479 INFO org.dspace.authenticate.LDAPHierarchicalAuthentication @ anonymous:session_id=27C51B3169D422438A3CB10F585196C0:ip_addr=192.168.12.21: auth:attempting trivial auth of [email protected] 2010-03-09 12:38:54,492 WARN org.dspace.authenticate.LDAPHierarchicalAuthentication @ anonymous:session_id=27C51B3169D422438A3CB10F585196C0:ip_addr=192.168.12.21: ldap_authentication:type=failed_auth javax.naming.AuthenticationException\colon; [LDAP\colon; error code 49 - 80090308\colon; LdapErr\colon; DSID-0C090334, comment\colon; AcceptSecurityContext error, data 525, vece] Thanks for your time and have a great day! Hossein -----Original Message----- From: Stuart Lewis [mailto:[email protected]] Sent: Monday, March 08, 2010 11:10 PM To: Hossein Hamam Cc: [email protected] Subject: Re: [Dspace-tech] LDAP testing Hi Hossein, > I installed Dspace 1.6 and everything is up and running. > > Dspace is still up and running with no problems. I tried to log in with a user name and password, > I am getting that the "username and password are not valid". Is there a log page where I can see > the errors that are occurring? how can I test if LDAP is working? Is there any other update or > change that I should do before it works Take a look in [dspace]/log/dsapce.log[.datestamp] and watch that log file as you try to log in. Hopefully it will tell you is wrong. Which LDAP authenticator did you use, and does it match your LDAP structure? Use LDAPAuthentication is all your users are in one OU (or branch) of your LDAP tree, or use LDAPHierarchicalAuthentication if your users are spread across different branches of your LDAP tree. Thanks, Stuart Lewis IT Innovations Analyst and Developer Te Tumu Herenga The University of Auckland Library Auckland Mail Centre, Private Bag 92019, Auckland 1142, New Zealand Ph: 64 9 373-7599 x81928 http://www.library.auckland.ac.nz/ ------------------------------------------------------------------------------ Download Intel® Parallel Studio Eval Try the new software tools for yourself. Speed compiling, find bugs proactively, and fine-tune applications for parallel performance. See why Intel Parallel Studio got high marks during beta. http://p.sf.net/sfu/intel-sw-dev _______________________________________________ DSpace-tech mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/dspace-tech
