Hi Karl, Many thanks for the support! I'll keep looking into this, as this is a feature a would really like to have functional.
Best T -- Theodor Carp From: Karl Wright <daddy...@gmail.com> <daddy...@gmail.com> Reply: user@manifoldcf.apache.org <user@manifoldcf.apache.org> <user@manifoldcf.apache.org> Date: 13 July 2017 at 14:17:14 To: user@manifoldcf.apache.org <user@manifoldcf.apache.org> <user@manifoldcf.apache.org> Subject: Re: ldap authentication with crawler ui I wish I was familiar enough with the code for this feature that I could be > of help. Nobody seems to have responded either. It *is* summer and many > people have vacations. > > I think, therefore, you're going to wind up needing to debug this > yourself. There's no magic; it's just using the javax packages for LDAP > communication -- but obviously there's something not set up right and I > don't know what it is. It may be a default parameter value or some such. > > Thanks, > Karl > > > On Wed, Jul 12, 2017 at 11:29 AM, Karl Wright <daddy...@gmail.com> wrote: > >> Have any users out there made use of LDAP crawler-UI authentication? If >> so, can you have a look at Theodor's configuration and setup? >> >> Karl >> >> >> On Wed, Jul 12, 2017 at 10:07 AM, Theodor Carp <theodor.c...@gmail.com> >> wrote: >> >>> Hi, >>> >>> Using the below settings: >>> >>> <property name="org.apache.manifoldcf.authimplementationclass" >>> value="org.apache.manifoldcf.core.auth.LdapAuthenticator" /> >>> <property name="org.apache.manifoldcf.login.authenticationtype" >>> value="LDAP-AUTHENTICATION" /> >>> <property name="org.apache.manifoldcf.login.ldap.providerurl" value=" >>> ldap://hdp01.local:389" /> >>> <property name="org.apache.manifoldcf.login.ldap.securityauthenticationtype" >>> value="simple" /> >>> <property name="org.apache.manifoldcf.login.ldap.securityprincipal" >>> value="uid=$(userID),ou=Users,dc=local" /> >>> <property name="org.apache.manifoldcf.login.ldap.contextsearchquery" >>> value="(uid=$(userID))" /> >>> <property name="org.apache.manifoldcf.login.ldap.searchattribute" >>> value="uid" /> >>> >>> I'm getting errors like: >>> >>> ERROR 2017-07-12 15:20:32,951 (qtp1295083508-17) - User not >>> authenticated = authenticating_user exception = [LDAP: error code 32 - >>> No Such Object] >>> javax.naming.NameNotFoundException: [LDAP: error code 32 - No Such >>> Object]; remaining name '' >>> at com.sun.jndi.ldap.LdapCtx.mapErrorCode(LdapCtx.java:3161) >>> at com.sun.jndi.ldap.LdapCtx.processReturnCode(LdapCtx.java:3082) >>> at com.sun.jndi.ldap.LdapCtx.processReturnCode(LdapCtx.java:2888) >>> [...] >>> FATAL 2017-07-12 15:20:32,956 (qtp1295083508-17) - Exception logging in: >>> User not authenticated: [LDAP: error code 32 - No Such Object] >>> org.apache.manifoldcf.core.interfaces.ManifoldCFException: User not >>> authenticated: [LDAP: error code 32 - No Such Object] >>> at org.apache.manifoldcf.core.auth.LdapAuthenticator.verifyLogi >>> n(LdapAuthenticator.java:162) >>> at org.apache.manifoldcf.core.auth.LdapAuthenticator.verifyUILo >>> gin(LdapAuthenticator.java:107) >>> at org.apache.manifoldcf.ui.beans.AdminProfile.login(AdminProfi >>> le.java:103) >>> [...] >>> Caused by: javax.naming.NameNotFoundException: [LDAP: error code 32 - >>> No Such Object]; remaining name '' >>> at com.sun.jndi.ldap.LdapCtx.mapErrorCode(LdapCtx.java:3161) >>> at com.sun.jndi.ldap.LdapCtx.processReturnCode(LdapCtx.java:3082) >>> at com.sun.jndi.ldap.LdapCtx.processReturnCode(LdapCtx.java:2888) >>> >>> But if do maual ldapsearch basicaly using the same settings: e.g.: >>> >>> ldapsearch -x -H ldap://hdp01.local -b "dc=local" -s sub >>> '(uid=authenticating_user)' >>> >>> Or >>> >>> ldapsearch -x -D "uid=authenticating_user1,ou=Users,dc=local" -W -H >>> ldap://hdp01.local -b "dc=local" -s sub 'uid=authenticating_user' >>> >>> It basically works ok. >>> >>> for reference i'm running manifold 2.7, on tomcat, using postgresql for >>> database and zookeeper as config repo and orchestrator. >>> >>> Any ideas? >>> >>> Best, >>> T >>> >> >> >