Hi Wolfgang
Thanks for all your responses. We are gradually moving ahead with configuring LDAP to Lenya but still are not able to implement it completely. We are successfull in adding a LDAP user(University User for Unitemplate Publication). After providing access for a page to this user through Site Mgmt., we are not able to authenticate this user although we are providing the accurate credentials. The front end says 'Authentication Failed'. The log says:
authenticate failed for principal uid=vipul,ou=LP,o=ORG, exception javax.naming.AuthenticationException: [LDAP: error code 49 - Invalid Credentials]
Is Authenticated:false
We hope that we are making correct entries in ldap.properties as the user is getting added. The ldap.properties is as:
provider-url="">
# Manager/user which is allowed to retrieve a list of "all" users (fullname) from LDAP server
mgr-dn=cn=Manager,o=ORG
# Password of Manager
mgr-pw=test
usr-branch=ou=LP
partial-user-dn=ou=LP,o=ORG
# keystore is taken relatively to the publication config/ac directory
#key-store=.keystore
#security-protocol=none
key-store=
security-protocol=
security-authentication=simple
I am resending the schema for the user(uid=vipul, userPassword=test):
dn: cn=Vipul Ramani, ou=LP, o=ORG
homePhone: 800-555-1313
givenName: Vipul
mobile: 800-555-1318
objectClass: top
objectClass: person
objectClass: organizationalPerson
objectClass: inetOrgPerson
userPassword:: e1NIQX1xVXFQNWN5eG02WWNUQWh6MDVIcGg1Z3Z1OU09
facsimileTelephoneNumber: 800-555-3318
ou: LP
uid: vipul
mail: [EMAIL PROTECTED]
cn: Vipul Ramani
initials: Joe
telephoneNumber: (800)555-1214
pager: 800-555-1319
destinationIndicator: /bios/images/cRamani.jpg
o: ORG
st: TX
l: Dallas
postalAddress: 2908 Greenville Ave.
sn: Ramani
homePostalAddress: 14 Cherry Ln.$Plano TX 78888
title: Developemnt Engineer
Are we missing any parameters either in properties file or, if you can suggest, in the schema(we are new to LDAP)?
Thanks in advance.
Regards
Shishir
[EMAIL PROTECTED] schrieb:
> (...) The ldap.properties
> now looks like:
>
> provider-url=""> >
> # Manager/user which is allowed to retrieve a list of "all" users
> (fullname) from LDAP server
> mgr-dn=cn=anonymous,ou=LP,o=ORG
> # Password of Manager
> mgr-pw=
> usr-branch=ou=LP
this only makes sense if you actually have a user branch ou=LP in your
LDAP directory. So your users would be underneath ou=LP,ou=LP,o=ORG -
this is probably not what you want. So the setting
usr-branch=
is probably right.
> The exception I am now receiving is:
> javax.naming.NameNotFoundException: [LDAP: error code 32 - No Such
> Object] (...)
At least LDAP is working, and it is responding to you saying that it did
not find your entry.
What does an entry in your directory for an existing user in your LDAP
actually look like ?
Also, for the exception you'll need to look further down, to find out
what exactly caused the exception (I assume it's the search in LDAP for
the id you typed in for the new user creation in Lenya)
I suggest you provide us with
- the complete ldap.properties file
- an example of an existing user path in your LDAP
- the complete exception stacktrace
--
Wolfgang
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
ForwardSourceID:NT00003A52
| Notice: The information contained in this e-mail message and/or attachments to it may contain confidential or privileged information. If you are not the intended recipient, any dissemination, use, review, distribution, printing or copying of the information contained in this e-mail message and/or attachments to it are strictly prohibited. If you have received this communication in error, please notify us by reply e-mail or telephone and immediately and permanently delete the message and any attachments. Thank you |
