I have made the internal security as true on both servers at 8000 and 8002 with authentication method as basic, external security pointed to ldapconfig object. I have an ldap user as user in my local.properties file.
In my ml-config.xml, for my app http server I have set the internal security to true, external security to ldapconfig object. When I tried bootstrapping my configurations with this set up, bootstrap was successful. One problem though is whether I make my default-user as nobody or my-app-user, always the app servers default user is set to nobody. When I tried deploying the modules, I am getting below error though I am giving the right credentials. [root@loninenghost49 roxy-master]# ./ml local deploy modules Password for cd1admin1 user: ERROR: Invalid login credentials for local environment!! There is no error in the ErrorLog file. Any thoughts?? Thanks, Sudheer From: [email protected] [mailto:[email protected]] On Behalf Of Sudheer Yalaverthi Sent: Tuesday, August 18, 2015 3:54 PM To: MarkLogic Developer Discussion Subject: Re: [MarkLogic Dev General] ROXY bootstrap not working with LDAP enabled 8000, 8002 servers Hi Dave, I tried it. I have the nobody user but that user is not assigned rest-reader, rest-extension-user roles. I assigned those roles manually. (I did a wipe earlier when I did not enable external security on 8000 and 8002) When I did the bootstrap, I still got the same error. But from the error log file, it looks like this error is happening when trying to retrieve the default user. 2015-08-18 20:47:53.944 Info: App-Services: <error:error xsi:schemaLocation="http://marklogic.com/xdmp/error error.xsd<http://marklogic.com/xdmp/error%20error.xsd>" xmlns:error="http://marklogic.com/xdmp/error"; xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance";> 2015-08-18 20:47:53.944 Info: App-Services: <error:code>SEC-USERDNE</error:code> 2015-08-18 20:47:53.944 Info: App-Services: <error:name/> 2015-08-18 20:47:53.944 Info: App-Services: <error:xquery-version>1.0-ml</error:xquery-version> 2015-08-18 20:47:53.944 Info: App-Services: <error:message>User does not exist</error:message> 2015-08-18 20:47:53.944 Info: App-Services: <error:format-string>SEC-USERDNE: xdmp:user("nobody") -- User does not exist: user-name = nobody</error:format-string> 2015-08-18 20:47:53.944 Info: App-Services: <error:retryable>false</error:retryable> 2015-08-18 20:47:53.944 Info: App-Services: <error:expr>xdmp:user("nobody")</error:expr> 2015-08-18 20:47:53.944 Info: App-Services: <error:data> 2015-08-18 20:47:53.944 Info: App-Services: <error:datum>user-name</error:datum> 2015-08-18 20:47:53.944 Info: App-Services: <error:datum>nobody</error:datum> 2015-08-18 20:47:53.944 Info: App-Services: </error:data> 2015-08-18 20:47:53.944 Info: App-Services: <error:stack> 2015-08-18 20:47:53.944 Info: App-Services: <error:frame> 2015-08-18 20:47:53.944 Info: App-Services: <error:line>3</error:line> 2015-08-18 20:47:53.944 Info: App-Services: <error:column>8</error:column> 2015-08-18 20:47:53.944 Info: App-Services: <error:operation>xdmp:eval("&#10; declare variable $username external;&#10; xd...", (fn:QName("", "username"), "nobody"))</error:operation> 2015-08-18 20:47:53.944 Info: App-Services: <error:xquery-version>1.0-ml</error:xquery-version> 2015-08-18 20:47:53.944 Info: App-Services: </error:frame> 2015-08-18 20:47:53.944 Info: App-Services: <error:frame> 2015-08-18 20:47:53.944 Info: App-Services: <error:line>4934</error:line> 2015-08-18 20:47:53.944 Info: App-Services: <error:column>6</error:column> 2015-08-18 20:47:53.944 Info: App-Services: <error:operation>setup:get-appserver-default-user(<http-server xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"; xmlns="http://marklogic.com/xdmp/group"><http-server-name>roxy</http-server-name><port>8060</port><datab...</http-server>)</error:operation> 2015-08-18 20:47:53.944 Info: App-Services: <error:variables> 2015-08-18 20:47:53.944 Info: App-Services: <error:variable> 2015-08-18 20:47:53.944 Info: App-Services: <error:name xmlns="">server-config</error:name> 2015-08-18 20:47:53.944 Info: App-Services: <error:value><http-server xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"; xmlns="http://marklogic.com/xdmp/group"><http-server-name>roxy</http-server-name><port>8060</port><datab...</http-server></error:value> 2015-08-18 20:47:53.944 Info: App-Services: </error:variable> 2015-08-18 20:47:53.944 Info: App-Services: <error:variable> 2015-08-18 20:47:53.944 Info: App-Services: <error:name xmlns="">user</error:name> 2015-08-18 20:47:53.944 Info: App-Services: <error:value>"nobody"</error:value> 2015-08-18 20:47:53.944 Info: App-Services: </error:variable> 2015-08-18 20:47:53.944 Info: App-Services: </error:variables> 2015-08-18 20:47:53.944 Info: App-Services: <error:xquery-version>1.0-ml</error:xquery-version> 2015-08-18 20:47:53.944 Info: App-Services: </error:frame> When I had the ldpap user as the default user, the error was different and it is thrown when the default user is set. 2015-08-18 20:40:36.754 Info: App-Services: <error:error xsi:schemaLocation="http://marklogic.com/xdmp/error error.xsd<http://marklogic.com/xdmp/error%20error.xsd>" xmlns:error="http://marklogic.com/xdmp/error"; xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance";> 2015-08-18 20:40:36.754 Info: App-Services: <error:code>ADMIN-NOSUCHUSER</error:code> 2015-08-18 20:40:36.754 Info: App-Services: <error:name>err:FOER0000</error:name> 2015-08-18 20:40:36.754 Info: App-Services: <error:xquery-version>1.0-ml</error:xquery-version> 2015-08-18 20:40:36.754 Info: App-Services: <error:message>No such user</error:message> 2015-08-18 20:40:36.754 Info: App-Services: <error:format-string>ADMIN-NOSUCHUSER: (err:FOER0000) No such user 16189239036379934068</error:format-string> 2015-08-18 20:40:36.754 Info: App-Services: <error:retryable>false</error:retryable> 2015-08-18 20:40:36.754 Info: App-Services: <error:expr> </error:expr> 2015-08-18 20:40:36.754 Info: App-Services: <error:data> 2015-08-18 20:40:36.754 Info: App-Services: <error:datum>16189239036379934068</error:datum> 2015-08-18 20:40:36.754 Info: App-Services: </error:data> 2015-08-18 20:40:36.754 Info: App-Services: <error:stack> 2015-08-18 20:40:36.754 Info: App-Services: <error:frame> 2015-08-18 20:40:36.754 Info: App-Services: <error:uri>/MarkLogic/admin.xqy</error:uri> 2015-08-18 20:40:36.754 Info: App-Services: <error:line>9417</error:line> 2015-08-18 20:40:36.754 Info: App-Services: <error:column>6</error:column> 2015-08-18 20:40:36.754 Info: App-Services: <error:operation>admin:appserver-set-default-user(<configuration><groups xsi:schemaLocation="http://marklogic.com/xdmp/group grou...</configuration>, xs:unsignedLong(<http://marklogic.com/xdmp/group%20grou...</configuration>,%20xs:unsignedLong(>"1643425815987212713"), xs:unsignedLong("16189239036379934068"))</error:operation> 2015-08-18 20:40:36.754 Info: App-Services: <error:variables> 2015-08-18 20:40:36.754 Info: App-Services: <error:variable> 2015-08-18 20:40:36.754 Info: App-Services: <error:name xmlns="http://marklogic.com/xdmp/admin";>config</error:name> 2015-08-18 20:40:36.754 Info: App-Services: <error:value><configuration><groups xsi:schemaLocation="http://marklogic.com/xdmp/group grou...</configuration></error:value> 2015-08-18 20:40:36.754 Info: App-Services: </error:variable> 2015-08-18 20:40:36.754 Info: App-Services: <error:variable> 2015-08-18 20:40:36.754 Info: App-Services: <error:name xmlns="http://marklogic.com/xdmp/admin";>appserver-id</error:name> 2015-08-18 20:40:36.754 Info: App-Services: <error:value>xs:unsignedLong("1643425815987212713")</error:value> 2015-08-18 20:40:36.754 Info: App-Services: </error:variable> 2015-08-18 20:40:36.754 Info: App-Services: <error:variable> 2015-08-18 20:40:36.754 Info: App-Services: <error:name xmlns="http://marklogic.com/xdmp/admin";>value</error:name> 2015-08-18 20:40:36.754 Info: App-Services: <error:value>xs:unsignedLong("16189239036379934068")</error:value> 2015-08-18 20:40:36.754 Info: App-Services: </error:variable> 2015-08-18 20:40:36.754 Info: App-Services: <error:variable> 2015-08-18 20:40:36.754 Info: App-Services: <error:name xmlns="http://marklogic.com/xdmp/admin";>app-db</error:name> 2015-08-18 20:40:36.754 Info: App-Services: <error:value>xs:unsignedLong("7113463078956510147")</error:value> 2015-08-18 20:40:36.754 Info: App-Services: </error:variable> Thanks, Sudheer From: [email protected]<mailto:[email protected]> [mailto:[email protected]] On Behalf Of Dave Cassel Sent: Tuesday, August 18, 2015 3:43 PM To: MarkLogic Developer Discussion Subject: Re: [MarkLogic Dev General] ROXY bootstrap not working with LDAP enabled 8000, 8002 servers The "nobody" user is set up by MarkLogic by default, so it ought to be there. I'd try recreating that user (roles: rest-reader, rest-extension-user, app-user; do it manually through the Admin UI), then try bootstrapping again with nobody as the default user. If that works, then the question is, what happened to the nobody user? If you have that user defined in ml-config.xml and you have run the wipe command, it may have gotten deleted that way, but you shouldn't need to have it in your ml-config.xml. -- Dave Cassel<http://davidcassel.net>, @dmcassel<https://twitter.com/dmcassel> Technical Community Manager MarkLogic Corporation<http://www.marklogic.com/> http://developer.marklogic.com/ From: <[email protected]<mailto:[email protected]>> on behalf of Geert Josten <[email protected]<mailto:[email protected]>> Reply-To: MarkLogic Developer Discussion <[email protected]<mailto:[email protected]>> Date: Tuesday, August 18, 2015 at 3:39 PM To: MarkLogic Developer Discussion <[email protected]<mailto:[email protected]>> Subject: Re: [MarkLogic Dev General] ROXY bootstrap not working with LDAP enabled 8000, 8002 servers Does the ErrorLog.txt provide additional detail? Cheers, Geert From: <[email protected]<mailto:[email protected]>> on behalf of Sudheer Yalaverthi <[email protected]<mailto:[email protected]>> Reply-To: MarkLogic Developer Discussion <[email protected]<mailto:[email protected]>> Date: Tuesday, August 18, 2015 at 9:34 PM To: MarkLogic Developer Discussion <[email protected]<mailto:[email protected]>> Subject: [MarkLogic Dev General] ROXY bootstrap not working with LDAP enabled 8000, 8002 servers Hi, I have MarkLogic instance with LDAP external security enabled for both servers that are running at 8000 and 8002. I have given an ldap user as user in the build.properties. I changed the default-user to nobody. While I am trying to bootstrap using roxy to my local environment, I am seeing below error. [root@loninenghost49 roxy-master]# ./ml local bootstrap Bootstrapping your project into MarkLogic 7 on loninenghost49... Password for cd1admin1 user: ERROR: note: restart required SEC-USERDNE: xdmp:user("nobody") -- User does not exist: user-name = nobody See MarkLogic Server error log for more details. ERROR: ... Bootstrap FAILED When I gave the cd1admin1 which is my ldap user as the default-user in build.properties, then I am getting the below error. [root@ loninenghost49 roxy-master]# ./ml local bootstrap Bootstrapping your project into MarkLogic 7 on loninenghost49... Password for cd1admin1 user: ERROR: note: restart required ADMIN-NOSUCHUSER: (err:FOER0000) No such user 16189239036379934068 See MarkLogic Server error log for more details. ERROR: ... Bootstrap FAILED What am I doing wrong here? Regards, Sudheer Yalaverthi NoSQL Engineer --- This communication may contain confidential and/or privileged information. If you are not the intended recipient (or have received this communication in error) please notify the sender immediately and destroy this communication. Any unauthorized copying, disclosure or distribution of the material in this communication is strictly forbidden. Deutsche Bank does not render legal or tax advice, and the information contained in this communication should not be regarded as such. --- This communication may contain confidential and/or privileged information. If you are not the intended recipient (or have received this communication in error) please notify the sender immediately and destroy this communication. Any unauthorized copying, disclosure or distribution of the material in this communication is strictly forbidden. Deutsche Bank does not render legal or tax advice, and the information contained in this communication should not be regarded as such. --- This communication may contain confidential and/or privileged information. If you are not the intended recipient (or have received this communication in error) please notify the sender immediately and destroy this communication. Any unauthorized copying, disclosure or distribution of the material in this communication is strictly forbidden. Deutsche Bank does not render legal or tax advice, and the information contained in this communication should not be regarded as such.
_______________________________________________ General mailing list [email protected] Manage your subscription at: http://developer.marklogic.com/mailman/listinfo/general
