Hi Hossein, > Inside the ou=AllUsers, we have many sub OUs in which different users > reside. > Does this require turning on Hierarchical LDAP?
Yes. > Could the problem be due to the password used by the user to search the > active directory having special characters? I don't think so - see below. > 2010-03-09 12:38:18,878 INFO > org.dspace.authenticate.LDAPHierarchicalAuthentication @ > anonymous:session_id=27C51B3169D422438A3CB10F585196C0:ip_addr=192.168.12.21: > failed_login:no > DN found for user amerh That looks good - as it means it has used your admin username and password, connected to the server and retrieved the DN for the user. Next, it should try to re-bind to the server using that DN, and the user's password... > 2010-03-09 12:38:18,878 INFO org.dspace.app.xmlui.utils.AuthenticationUtil > @ > anonymous:session_id=27C51B3169D422438A3CB10F585196C0:ip_addr=192.168.12.21: > failed_login:email=amerh, > realm=null, result=2 > 2010-03-09 12:38:54,479 INFO > org.dspace.authenticate.LDAPHierarchicalAuthentication @ > anonymous:session_id=27C51B3169D422438A3CB10F585196C0:ip_addr=192.168.12.21: > auth:attempting > trivial auth of [email protected] > 2010-03-09 12:38:54,492 WARN > org.dspace.authenticate.LDAPHierarchicalAuthentication @ > anonymous:session_id=27C51B3169D422438A3CB10F585196C0:ip_addr=192.168.12.21: > ldap_authentication:type=failed_auth > javax.naming.AuthenticationException\colon; [LDAP\colon; error code 49 - > 80090308\colon; LdapErr\colon; DSID-0C090334, comment\colon; > AcceptSecurityContext error, data 525, vece] ...which looks like it is failing. We need to know what DN it is retrieving for the user. It should be possible to see this if you enable DEBUG level logging: - See http://wiki.dspace.org/index.php/TechnicalFaq#Setting_logging_level_up_to_DEBUG because there is a line in the code that says: log.debug(LogManager.getHeader(context, "got DN", resultDN)); Seeing the DN, and checking it is correct, will be the next step. Thanks, Stuart Lewis IT Innovations Analyst and Developer Te Tumu Herenga The University of Auckland Library Auckland Mail Centre, Private Bag 92019, Auckland 1142, New Zealand Ph: 64 9 373-7599 x81928 http://www.library.auckland.ac.nz/ ------------------------------------------------------------------------------ Download Intel® Parallel Studio Eval Try the new software tools for yourself. Speed compiling, find bugs proactively, and fine-tune applications for parallel performance. See why Intel Parallel Studio got high marks during beta. http://p.sf.net/sfu/intel-sw-dev _______________________________________________ DSpace-tech mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/dspace-tech
