[SGD-Users] SGD AD Authentication

IMI COROOK, Dexter A. Mon, 26 Feb 2007 03:05:50 -0800

Hello,


Our company is SGD (4.2) accessing  a windows 2003 server. And we use AD
authentication.

But I always encounter this kind of error when a user is logging-in:

 

[EMAIL PROTECTED] # more jserver14596_error.log

2007/02/26 08:35:40.731 (pid 14596)     server/ldap/error
#1172450140731

Sun Secure Global Desktop Software (4.2) ERROR:

 

Active Directory service discovery failed: Failed to find any valid Site
objects.

Looking up Global Catalog DNS name: _gc._tcp.IMI.LOCAL. - HIT

Looking for GC on server: Active Directory:/192.168.56.249:3268:Up - HIT

Checking for CN=Configuration: DC=IMI,DC=local - MISS

Checking for CN=Configuration: CN=Configuration,DC=IMI,DC=local - HIT

Looking up domain root context: DC=IMI,DC=local - HIT

Looking up site context: CN=Sites,CN=Configuration

Searching for sites: (&(objectClass=site)(siteObjectBL=*)) - HIT

Looking up addresses for peer DNS: sgd.imi.local - HIT

 

 

Failed to discover Active Directory Site, Domain and server data.

This might mean LDAP users cannot log in.

 

Make sure the DNS server contains the Active Directory service

records for the forest. Make sure a Global Catalog server is available.

 

2007/02/26 08:35:40.843 (pid 14596)     server/ldap/warningerror
#1172450140843

Sun Secure Global Desktop Software (4.2) WARNING:

 

Kerberos failed to lookup a context with
javax.naming.AuthenticationException: GSSAPI [Root exception is
javax.securi

ty.sasl.SaslException: GSS initiate failed [Caused by GSSException: No
valid credentials provided (Mechanism level: S

erver not found in Kerberos database (7))]]

        at com.sun.jndi.ldap.sasl.LdapSasl.saslBind(LdapSasl.java:150)

        at
com.sun.jndi.ldap.LdapClient.authenticate(LdapClient.java:214)

        at com.sun.jndi.ldap.LdapCtx.connect(LdapCtx.java:2637)

        at com.sun.jndi.ldap.LdapCtx.<init>(LdapCtx.java:283)

        at
com.sun.jndi.ldap.LdapCtxFactory.getUsingURL(LdapCtxFactory.java:175)

        at
com.sun.jndi.ldap.LdapCtxFactory.getUsingURLs(LdapCtxFactory.java:193)

        at
com.sun.jndi.ldap.LdapCtxFactory.getLdapCtxInstance(LdapCtxFactory.java:
136)

        at
com.sun.jndi.ldap.LdapCtxFactory.getInitialContext(LdapCtxFactory.java:6
6)

        at
com.sco.tta.common.jndi.provider.ldap.LdapScopeState$doItGetContext.run(
LdapScopeState.java:341)

        at
com.sco.tta.server.security.java14.KerberosAuth$PrivilegedActionAdaptor.
run(KerberosAuth.java:131)

        at java.security.AccessController.doPrivileged(Native Method)

        at javax.security.auth.Subject.doAs(Subject.java:337)

 

Did I miss something on the configuration? 

 

Pls. help. 

 

Thanks,

 

Dexter


This is a virus free email...

Confidential:This e-mail message and all contents are intended only for the 
named recipients(s).

The information contained herein maybe confidential or privileged,and its 
disclosure,distribution or reproduction is prohibited.

If you are not the named recipient,please return it immediately to its sender 
atthe above address and destroy the original message and all copies.

_______________________________________________
SGD-Users mailing list
[email protected]
http://node1.filibeto.org/mailman/listinfo/sgd-users

[SGD-Users] SGD AD Authentication

Reply via email to