You have these Paramaribo in your configuration: ldap_search_base=DC=mycompany,DC=priv # Fieldnames (can differ between Ldap servers) ldap_search_query=(uid=%s)
I guess nothing is found. Not sure I never saw error like yours. Will create 3.0.4 nightly fly you later today (with updated ldap library) if error will be the same I'll ask ldap library developers for the help On Sep 22, 2014 9:05 PM, "Grégory Mangeney" <[email protected]> wrote: > a bad search query? > > In this case, the loging error message shouldn't be somthing like : > "Login/password do not exist" ? > > How could I check this point... > I do not modified the source code! > > 2014-09-22 11:25 GMT+02:00 Maxim Solodovnik <[email protected]>: > >> it seems like nothing was found >> Maybe bad search query? >> >> On 22 September 2014 15:55, Grégory Mangeney <[email protected]> wrote: >> >>> Hello Maxim. >>> Thanks a lot for your answer. >>> You're helpfull... >>> >>> I had ever try with SEARCHANDBIND but it still not working... >>> So I set it again to give you my logs... >>> The error is quite different but I could not understand what is the >>> problem... >>> >>> In the login screen I have the following message in red : "Unknown >>> error. Please report this to the administrator." >>> >>> >>> >>> >>> Here is my logs : >>> >>> ERROR 09-22 10:34:34.814 o.a.o.l.LdapLoginManagement:356 >>> [http-nio-0.0.0.0-5080-exec-4] - Unexpected exception. >>> org.apache.directory.api.ldap.model.cursor.CursorLdapReferralException: >>> null >>> at >>> org.apache.directory.ldap.client.api.EntryCursorImpl.get(EntryCursorImpl.java:164) >>> ~[api-all-jar-1.0.0-M23.jar:1.0.0-M23] >>> at >>> org.apache.directory.ldap.client.api.EntryCursorImpl.get(EntryCursorImpl.java:50) >>> ~[api-all-jar-1.0.0-M23.jar:1.0.0-M23] >>> at >>> org.apache.openmeetings.ldap.LdapLoginManagement.login(LdapLoginManagement.java:258) >>> ~[openmeetings-core-3.0.3-RELEASE.jar:na] >>> at >>> org.apache.openmeetings.web.app.WebSession.signIn(WebSession.java:257) >>> [openmeetings-web-3.0.3-RELEASE.jar:na] >>> at >>> org.apache.openmeetings.web.pages.auth.SignInDialog.onSubmit(SignInDialog.java:190) >>> [openmeetings-web-3.0.3-RELEASE.jar:na] >>> at >>> com.googlecode.wicket.jquery.ui.widget.dialog.AbstractFormDialog$DialogFormSubmitter.onSubmit(AbstractFormDialog.java:279) >>> [wicket-jquery-ui-jar-6.16.0.jar:na] >>> at >>> org.apache.wicket.markup.html.form.Form.delegateSubmit(Form.java:1266) >>> [wicket-core-jar-6.16.0.jar:6.16.0] >>> at org.apache.wicket.markup.html.form.Form.process(Form.java:938) >>> [wicket-core-jar-6.16.0.jar:6.16.0] >>> at >>> org.apache.wicket.markup.html.form.StatelessForm.process(StatelessForm.java:96) >>> [wicket-core-jar-6.16.0.jar:6.16.0] >>> at >>> org.apache.wicket.markup.html.form.Form.onFormSubmitted(Form.java:770) >>> [wicket-core-jar-6.16.0.jar:6.16.0] >>> at >>> com.googlecode.wicket.jquery.ui.widget.dialog.AbstractFormDialog.internalOnClick(AbstractFormDialog.java:200) >>> [wicket-jquery-ui-jar-6.16.0.jar:na] >>> at >>> com.googlecode.wicket.jquery.ui.widget.dialog.AbstractDialog$1.onClick(AbstractDialog.java:439) >>> [wicket-jquery-ui-jar-6.16.0.jar:na] >>> at >>> com.googlecode.wicket.jquery.ui.widget.dialog.DialogBehavior.onAjax(DialogBehavior.java:175) >>> [wicket-jquery-ui-jar-6.16.0.jar:na] >>> at >>> com.googlecode.wicket.jquery.core.ajax.JQueryAjaxBehavior.respond(JQueryAjaxBehavior.java:171) >>> [wicket-jquery-ui-core-jar-6.16.0.jar:na] >>> at >>> org.apache.wicket.ajax.AbstractDefaultAjaxBehavior.onRequest(AbstractDefaultAjaxBehavior.java:633) >>> [wicket-core-jar-6.16.0.jar:6.16.0] >>> at sun.reflect.GeneratedMethodAccessor91.invoke(Unknown Source) >>> ~[na:na] >>> at >>> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43) >>> ~[na:1.7.0_65] >>> at java.lang.reflect.Method.invoke(Method.java:606) ~[na:1.7.0_65] >>> at >>> org.apache.wicket.RequestListenerInterface.internalInvoke(RequestListenerInterface.java:258) >>> [wicket-core-jar-6.16.0.jar:6.16.0] >>> at >>> org.apache.wicket.RequestListenerInterface.invoke(RequestListenerInterface.java:241) >>> [wicket-core-jar-6.16.0.jar:6.16.0] >>> at >>> org.apache.wicket.core.request.handler.ListenerInterfaceRequestHandler.invokeListener(ListenerInterfaceRequestHandler.java:250) >>> [wicket-core-jar-6.16.0.jar:6.16.0] >>> at >>> org.apache.wicket.core.request.handler.ListenerInterfaceRequestHandler.respond(ListenerInterfaceRequestHandler.java:236) >>> [wicket-core-jar-6.16.0.jar:6.16.0] >>> at >>> org.apache.wicket.request.cycle.RequestCycle$HandlerExecutor.respond(RequestCycle.java:862) >>> [wicket-core-jar-6.16.0.jar:6.16.0] >>> at >>> org.apache.wicket.request.RequestHandlerStack.execute(RequestHandlerStack.java:64) >>> [wicket-request-jar-6.16.0.jar:6.16.0] >>> at >>> org.apache.wicket.request.cycle.RequestCycle.execute(RequestCycle.java:261) >>> [wicket-core-jar-6.16.0.jar:6.16.0] >>> at >>> org.apache.wicket.request.cycle.RequestCycle.processRequest(RequestCycle.java:218) >>> [wicket-core-jar-6.16.0.jar:6.16.0] >>> at >>> org.apache.wicket.request.cycle.RequestCycle.processRequestAndDetach(RequestCycle.java:289) >>> [wicket-core-jar-6.16.0.jar:6.16.0] >>> at >>> org.apache.wicket.protocol.ws.AbstractUpgradeFilter.processRequestCycle(AbstractUpgradeFilter.java:59) >>> [wicket-native-websocket-core-jar-6.16.0.jar:6.16.0] >>> at >>> org.apache.wicket.protocol.http.WicketFilter.processRequest(WicketFilter.java:201) >>> [wicket-core-jar-6.16.0.jar:6.16.0] >>> at >>> org.apache.wicket.protocol.http.WicketFilter.doFilter(WicketFilter.java:282) >>> [wicket-core-jar-6.16.0.jar:6.16.0] >>> at >>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:241) >>> [tomcat-embed-core.jar:7.0.55] >>> at >>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:208) >>> [tomcat-embed-core.jar:7.0.55] >>> at >>> org.red5.logging.LoggerContextFilter.doFilter(LoggerContextFilter.java:77) >>> [red5-server.jar:na] >>> at >>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:241) >>> [tomcat-embed-core.jar:7.0.55] >>> at >>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:208) >>> [tomcat-embed-core.jar:7.0.55] >>> at >>> org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:220) >>> [tomcat-embed-core.jar:7.0.55] >>> at >>> org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:122) >>> [tomcat-embed-core.jar:7.0.55] >>> at >>> org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:501) >>> [tomcat-embed-core.jar:7.0.55] >>> at >>> org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:171) >>> [tomcat-embed-core.jar:7.0.55] >>> at >>> org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:103) >>> [tomcat-embed-core.jar:7.0.55] >>> at >>> org.apache.catalina.valves.AccessLogValve.invoke(AccessLogValve.java:950) >>> [tomcat-embed-core.jar:7.0.55] >>> at >>> org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:116) >>> [tomcat-embed-core.jar:7.0.55] >>> at >>> org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:408) >>> [tomcat-embed-core.jar:7.0.55] >>> at >>> org.apache.coyote.http11.AbstractHttp11Processor.process(AbstractHttp11Processor.java:1070) >>> [tomcat-embed-core.jar:7.0.55] >>> at >>> org.apache.coyote.AbstractProtocol$AbstractConnectionHandler.process(AbstractProtocol.java:611) >>> [tomcat-embed-core.jar:7.0.55] >>> at >>> org.apache.tomcat.util.net.NioEndpoint$SocketProcessor.doRun(NioEndpoint.java:1736) >>> [tomcat-embed-core.jar:7.0.55] >>> at >>> org.apache.tomcat.util.net.NioEndpoint$SocketProcessor.run(NioEndpoint.java:1695) >>> [tomcat-embed-core.jar:7.0.55] >>> at >>> java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1145) >>> [na:1.7.0_65] >>> at >>> java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:615) >>> [na:1.7.0_65] >>> at >>> org.apache.tomcat.util.threads.TaskThread$WrappingRunnable.run(TaskThread.java:61) >>> [tomcat-embed-core.jar:7.0.55] >>> at java.lang.Thread.run(Thread.java:745) [na:1.7.0_65] >>> DEBUG 09-22 10:34:34.817 o.a.w.u.c.CookieUtils:266 >>> [http-nio-0.0.0.0-5080-exec-4] - Unable to find Cookie with name=LoggedIn >>> and request URI=signin?1-1.IBehaviorListener.1-signin >>> DEBUG 09-22 10:34:34.820 o.a.w.f.FeedbackMessages:69 >>> [http-nio-0.0.0.0-5080-exec-4] - Adding feedback message '[FeedbackMessage >>> message = "Unknown error. Please report this to the administrator.", >>> reporter = signin, level = ERROR]' >>> DEBUG 09-22 10:34:34.821 o.a.w.u.c.CookieUtils:266 >>> [http-nio-0.0.0.0-5080-exec-4] - Unable to find Cookie with name=LoggedIn >>> and request URI=signin?1-1.IBehaviorListener.1-signin >>> DEBUG 09-22 10:34:34.822 o.a.wicket.Page:871 >>> [http-nio-0.0.0.0-5080-exec-4] - ending request for page [Page class = >>> org.apache.openmeetings.web.pages.auth.SignInPage, id = 1, render count = >>> 1], request >>> org.apache.wicket.protocol.http.servlet.ServletWebRequest@16618f3 >>> DEBUG 09-22 10:34:34.822 o.a.wicket.Page:871 >>> [http-nio-0.0.0.0-5080-exec-4] - ending request for page [Page class = >>> org.apache.openmeetings.web.pages.auth.SignInPage, id = 1, render count = >>> 1], request >>> org.apache.wicket.protocol.http.servlet.ServletWebRequest@16618f3 >>> DEBUG 09-22 10:34:34.823 o.a.wicket.Page:871 >>> [http-nio-0.0.0.0-5080-exec-4] - ending request for page [Page class = >>> org.apache.openmeetings.web.pages.auth.SignInPage, id = 1, render count = >>> 1], request >>> org.apache.wicket.protocol.http.servlet.ServletWebRequest@16618f3 >>> DEBUG 09-22 10:34:34.828 >>> o.a.w.p.AsynchronousDataStore$PageSavingRunnable:354 >>> [Wicket-PageSavingThread] - Saving asynchronously: Entry >>> [sessionId=907ABBB232B18743F2A67024DA18F185, pageId=1]... >>> DEBUG 09-22 10:34:34.828 o.a.w.p.DiskDataStore:186 >>> [Wicket-PageSavingThread] - Storing data for page with id '1' in session >>> with id '907ABBB232B18743F2A67024DA18F185' >>> DEBUG 09-22 10:34:34.828 o.a.w.p.PageAccessSynchronizer:195 >>> [http-nio-0.0.0.0-5080-exec-4] - 'http-nio-0.0.0.0-5080-exec-4' released >>> lock to page with id '1' >>> DEBUG 09-22 10:34:34.828 o.a.w.p.PageAccessSynchronizer:346 >>> [http-nio-0.0.0.0-5080-exec-4] - 'http-nio-0.0.0.0-5080-exec-4' notifying >>> blocked threads >>> DEBUG 09-22 10:34:36.341 o.a.o.m.MailHandler:249 >>> [org.springframework.scheduling.quartz.SchedulerFactoryBean#0_Worker-1] - >>> resetSendingStatus enter ... >>> >>> >>> >>> Thank you for your time. >>> >>> Greg. >>> >>> 2014-09-20 8:59 GMT+02:00 Maxim Solodovnik <[email protected]>: >>> >>>> According to the logs and config SIMPLEBIND failed for the user >>>> specified >>>> please try SEARCHANDBIND >>>> >>>> On 19 September 2014 17:09, Grégory Mangeney <[email protected]> >>>> wrote: >>>> >>>>> Hello. >>>>> Thank you for your link. >>>>> It appeare that I have a 525 error (user not found). >>>>> >>>>> I think the problem must be in my config file because I'm sure that my >>>>> user is good because I use it for an other app witch use it to connect >>>>> with >>>>> AD. >>>>> >>>>> As you ask me i give you more line of my log file, after that I would >>>>> like to show you my conf file... >>>>> Maybe you will find a setting withch is not good! >>>>> >>>>> >>>>> So here is my log file whene I try to connect : >>>>> DEBUG 09-19 11:47:01.337 o.a.o.q.s.MeetingReminderJob:34 >>>>> [org.springframework.scheduling.quartz.SchedulerFactoryBean#0_Worker-2] - >>>>> MeetingReminderJob.execute >>>>> DEBUG 09-19 11:47:25.760 o.a.w.p.h.s.ServletWebRequest:189 >>>>> [http-nio-0.0.0.0-5080-exec-10] - Calculating context relative path from: >>>>> context path '/openmeetings', filterPrefix '', uri '/openmeetings/signin' >>>>> DEBUG 09-19 11:47:25.761 o.a.w.p.PageAccessSynchronizer:100 >>>>> [http-nio-0.0.0.0-5080-exec-10] - 'http-nio-0.0.0.0-5080-exec-10' >>>>> attempting to acquire lock to page with id '1' >>>>> DEBUG 09-19 11:47:25.761 o.a.w.p.PageAccessSynchronizer:125 >>>>> [http-nio-0.0.0.0-5080-exec-10] - http-nio-0.0.0.0-5080-exec-10 acquired >>>>> lock to page 1 >>>>> DEBUG 09-19 11:47:25.762 o.a.o.d.d.s.SessiondataDao:68 >>>>> [http-nio-0.0.0.0-5080-exec-10] - startsession :: startsession >>>>> DEBUG 09-19 11:47:25.763 o.a.o.u.c.ManageCryptStyle:32 >>>>> [http-nio-0.0.0.0-5080-exec-10] - getInstanceOfCrypt:: >>>>> configKeyCryptClassName: >>>>> org.apache.openmeetings.util.crypt.MD5Implementation >>>>> DEBUG 09-19 11:47:25.788 o.a.o.l.LdapLoginManagement:165 >>>>> [http-nio-0.0.0.0-5080-exec-10] - LdapLoginmanagement.doLdapLogin >>>>> ERROR 09-19 11:47:25.924 o.a.o.l.LdapLoginManagement:351 >>>>> [http-nio-0.0.0.0-5080-exec-10] - Not authenticated. >>>>> org.apache.directory.api.ldap.model.exception.LdapAuthenticationException: >>>>> 80090308: LdapErr: DSID-0C090334, comment: AcceptSecurityContext error, >>>>> data 525, vece\00 >>>>> at >>>>> org.apache.directory.api.ldap.model.message.ResultCodeEnum.processResponse(ResultCodeEnum.java:2021) >>>>> ~[api-all-jar-1.0.0-M23.jar:1.0.0-M23] >>>>> at >>>>> org.apache.directory.ldap.client.api.AbstractLdapConnection.bind(AbstractLdapConnection.java:129) >>>>> ~[api-all-jar-1.0.0-M23.jar:1.0.0-M23] >>>>> at >>>>> org.apache.openmeetings.ldap.LdapLoginManagement.login(LdapLoginManagement.java:275) >>>>> ~[openmeetings-core-3.0.3-RELEASE.jar:na] >>>>> at >>>>> org.apache.openmeetings.web.app.WebSession.signIn(WebSession.java:257) >>>>> [openmeetings-web-3.0.3-RELEASE.jar:na] >>>>> at >>>>> org.apache.openmeetings.web.pages.auth.SignInDialog.onSubmit(SignInDialog.java:190) >>>>> [openmeetings-web-3.0.3-RELEASE.jar:na] >>>>> at >>>>> com.googlecode.wicket.jquery.ui.widget.dialog.AbstractFormDialog$DialogFormSubmitter.onSubmit(AbstractFormDialog.java:279) >>>>> [wicket-jquery-ui-jar-6.16.0.jar:na] >>>>> at >>>>> org.apache.wicket.markup.html.form.Form.delegateSubmit(Form.java:1266) >>>>> [wicket-core-jar-6.16.0.jar:6.16.0] >>>>> at org.apache.wicket.markup.html.form.Form.process(Form.java:938) >>>>> [wicket-core-jar-6.16.0.jar:6.16.0] >>>>> at >>>>> org.apache.wicket.markup.html.form.StatelessForm.process(StatelessForm.java:96) >>>>> [wicket-core-jar-6.16.0.jar:6.16.0] >>>>> at >>>>> org.apache.wicket.markup.html.form.Form.onFormSubmitted(Form.java:770) >>>>> [wicket-core-jar-6.16.0.jar:6.16.0] >>>>> at >>>>> com.googlecode.wicket.jquery.ui.widget.dialog.AbstractFormDialog.internalOnClick(AbstractFormDialog.java:200) >>>>> [wicket-jquery-ui-jar-6.16.0.jar:na] >>>>> at >>>>> com.googlecode.wicket.jquery.ui.widget.dialog.AbstractDialog$1.onClick(AbstractDialog.java:439) >>>>> [wicket-jquery-ui-jar-6.16.0.jar:na] >>>>> at >>>>> com.googlecode.wicket.jquery.ui.widget.dialog.DialogBehavior.onAjax(DialogBehavior.java:175) >>>>> [wicket-jquery-ui-jar-6.16.0.jar:na] >>>>> at >>>>> com.googlecode.wicket.jquery.core.ajax.JQueryAjaxBehavior.respond(JQueryAjaxBehavior.java:171) >>>>> [wicket-jquery-ui-core-jar-6.16.0.jar:na] >>>>> at >>>>> org.apache.wicket.ajax.AbstractDefaultAjaxBehavior.onRequest(AbstractDefaultAjaxBehavior.java:633) >>>>> [wicket-core-jar-6.16.0.jar:6.16.0] >>>>> at sun.reflect.GeneratedMethodAccessor91.invoke(Unknown Source) >>>>> ~[na:na] >>>>> at >>>>> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43) >>>>> ~[na:1.7.0_65] >>>>> at java.lang.reflect.Method.invoke(Method.java:606) ~[na:1.7.0_65] >>>>> at >>>>> org.apache.wicket.RequestListenerInterface.internalInvoke(RequestListenerInterface.java:258) >>>>> [wicket-core-jar-6.16.0.jar:6.16.0] >>>>> at >>>>> org.apache.wicket.RequestListenerInterface.invoke(RequestListenerInterface.java:241) >>>>> [wicket-core-jar-6.16.0.jar:6.16.0] >>>>> at >>>>> org.apache.wicket.core.request.handler.ListenerInterfaceRequestHandler.invokeListener(ListenerInterfaceRequestHandler.java:250) >>>>> [wicket-core-jar-6.16.0.jar:6.16.0] >>>>> at >>>>> org.apache.wicket.core.request.handler.ListenerInterfaceRequestHandler.respond(ListenerInterfaceRequestHandler.java:236) >>>>> [wicket-core-jar-6.16.0.jar:6.16.0] >>>>> at >>>>> org.apache.wicket.request.cycle.RequestCycle$HandlerExecutor.respond(RequestCycle.java:862) >>>>> [wicket-core-jar-6.16.0.jar:6.16.0] >>>>> at >>>>> org.apache.wicket.request.RequestHandlerStack.execute(RequestHandlerStack.java:64) >>>>> [wicket-request-jar-6.16.0.jar:6.16.0] >>>>> at >>>>> org.apache.wicket.request.cycle.RequestCycle.execute(RequestCycle.java:261) >>>>> [wicket-core-jar-6.16.0.jar:6.16.0] >>>>> at >>>>> org.apache.wicket.request.cycle.RequestCycle.processRequest(RequestCycle.java:218) >>>>> [wicket-core-jar-6.16.0.jar:6.16.0] >>>>> at >>>>> org.apache.wicket.request.cycle.RequestCycle.processRequestAndDetach(RequestCycle.java:289) >>>>> [wicket-core-jar-6.16.0.jar:6.16.0] >>>>> at >>>>> org.apache.wicket.protocol.ws.AbstractUpgradeFilter.processRequestCycle(AbstractUpgradeFilter.java:59) >>>>> [wicket-native-websocket-core-jar-6.16.0.jar:6.16.0] >>>>> at >>>>> org.apache.wicket.protocol.http.WicketFilter.processRequest(WicketFilter.java:201) >>>>> [wicket-core-jar-6.16.0.jar:6.16.0] >>>>> at >>>>> org.apache.wicket.protocol.http.WicketFilter.doFilter(WicketFilter.java:282) >>>>> [wicket-core-jar-6.16.0.jar:6.16.0] >>>>> at >>>>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:241) >>>>> [tomcat-embed-core.jar:7.0.55] >>>>> at >>>>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:208) >>>>> [tomcat-embed-core.jar:7.0.55] >>>>> at >>>>> org.red5.logging.LoggerContextFilter.doFilter(LoggerContextFilter.java:77) >>>>> [red5-server.jar:na] >>>>> at >>>>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:241) >>>>> [tomcat-embed-core.jar:7.0.55] >>>>> at >>>>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:208) >>>>> [tomcat-embed-core.jar:7.0.55] >>>>> at >>>>> org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:220) >>>>> [tomcat-embed-core.jar:7.0.55] >>>>> at >>>>> org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:122) >>>>> [tomcat-embed-core.jar:7.0.55] >>>>> at >>>>> org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:501) >>>>> [tomcat-embed-core.jar:7.0.55] >>>>> at >>>>> org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:171) >>>>> [tomcat-embed-core.jar:7.0.55] >>>>> at >>>>> org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:103) >>>>> [tomcat-embed-core.jar:7.0.55] >>>>> at >>>>> org.apache.catalina.valves.AccessLogValve.invoke(AccessLogValve.java:950) >>>>> [tomcat-embed-core.jar:7.0.55] >>>>> at >>>>> org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:116) >>>>> [tomcat-embed-core.jar:7.0.55] >>>>> at >>>>> org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:408) >>>>> [tomcat-embed-core.jar:7.0.55] >>>>> at >>>>> org.apache.coyote.http11.AbstractHttp11Processor.process(AbstractHttp11Processor.java:1070) >>>>> [tomcat-embed-core.jar:7.0.55] >>>>> at >>>>> org.apache.coyote.AbstractProtocol$AbstractConnectionHandler.process(AbstractProtocol.java:611) >>>>> [tomcat-embed-core.jar:7.0.55] >>>>> at >>>>> org.apache.tomcat.util.net.NioEndpoint$SocketProcessor.doRun(NioEndpoint.java:1736) >>>>> [tomcat-embed-core.jar:7.0.55] >>>>> at >>>>> org.apache.tomcat.util.net.NioEndpoint$SocketProcessor.run(NioEndpoint.java:1695) >>>>> [tomcat-embed-core.jar:7.0.55] >>>>> at >>>>> java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1145) >>>>> [na:1.7.0_65] >>>>> at >>>>> java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:615) >>>>> [na:1.7.0_65] >>>>> at >>>>> org.apache.tomcat.util.threads.TaskThread$WrappingRunnable.run(TaskThread.java:61) >>>>> [tomcat-embed-core.jar:7.0.55] >>>>> at java.lang.Thread.run(Thread.java:745) [na:1.7.0_65] >>>>> DEBUG 09-19 11:47:25.927 o.a.w.u.c.CookieUtils:266 >>>>> [http-nio-0.0.0.0-5080-exec-10] - Unable to find Cookie with name=LoggedIn >>>>> and request URI=signin?1-1.IBehaviorListener.1-signin >>>>> DEBUG 09-19 11:47:25.929 o.a.w.f.FeedbackMessages:69 >>>>> [http-nio-0.0.0.0-5080-exec-10] - Adding feedback message >>>>> '[FeedbackMessage >>>>> message = "Invalid password", reporter = signin, level = ERROR]' >>>>> DEBUG 09-19 11:47:25.929 o.a.w.u.c.CookieUtils:266 >>>>> [http-nio-0.0.0.0-5080-exec-10] - Unable to find Cookie with name=LoggedIn >>>>> and request URI=signin?1-1.IBehaviorListener.1-signin >>>>> DEBUG 09-19 11:47:25.930 o.a.wicket.Page:871 >>>>> [http-nio-0.0.0.0-5080-exec-10] - ending request for page [Page class = >>>>> org.apache.openmeetings.web.pages.auth.SignInPage, id = 1, render count = >>>>> 1], request >>>>> org.apache.wicket.protocol.http.servlet.ServletWebRequest@a6e74b >>>>> DEBUG 09-19 11:47:25.930 o.a.wicket.Page:871 >>>>> [http-nio-0.0.0.0-5080-exec-10] - ending request for page [Page class = >>>>> org.apache.openmeetings.web.pages.auth.SignInPage, id = 1, render count = >>>>> 1], request >>>>> org.apache.wicket.protocol.http.servlet.ServletWebRequest@a6e74b >>>>> DEBUG 09-19 11:47:25.930 o.a.wicket.Page:871 >>>>> [http-nio-0.0.0.0-5080-exec-10] - ending request for page [Page class = >>>>> org.apache.openmeetings.web.pages.auth.SignInPage, id = 1, render count = >>>>> 1], request >>>>> org.apache.wicket.protocol.http.servlet.ServletWebRequest@a6e74b >>>>> DEBUG 09-19 11:47:25.988 >>>>> o.a.w.p.AsynchronousDataStore$PageSavingRunnable:354 >>>>> [Wicket-PageSavingThread] - Saving asynchronously: Entry >>>>> [sessionId=2A10AA69C3E771FF51FABD4D26A20559, pageId=1]... >>>>> DEBUG 09-19 11:47:25.988 o.a.w.p.DiskDataStore:186 >>>>> [Wicket-PageSavingThread] - Storing data for page with id '1' in session >>>>> with id '2A10AA69C3E771FF51FABD4D26A20559' >>>>> DEBUG 09-19 11:47:25.988 o.a.w.p.PageAccessSynchronizer:195 >>>>> [http-nio-0.0.0.0-5080-exec-10] - 'http-nio-0.0.0.0-5080-exec-10' released >>>>> lock to page with id '1' >>>>> DEBUG 09-19 11:47:25.988 o.a.w.p.PageAccessSynchronizer:346 >>>>> [http-nio-0.0.0.0-5080-exec-10] - 'http-nio-0.0.0.0-5080-exec-10' >>>>> notifying >>>>> blocked threads >>>>> >>>>> >>>>> >>>>> >>>>> >>>>> >>>>> >>>>> >>>>> >>>>> And here is my conf file : >>>>> >>>>> # >>>>> # Licensed to the Apache Software Foundation (ASF) under one >>>>> # or more contributor license agreements. See the NOTICE file >>>>> # distributed with this work for additional information >>>>> # regarding copyright ownership. The ASF licenses this file >>>>> # to you under the Apache License, Version 2.0 (the >>>>> # "License"); you may not use this file except in compliance >>>>> # with the License. You may obtain a copy of the License at >>>>> # >>>>> # http://www.apache.org/licenses/LICENSE-2.0 >>>>> # >>>>> # Unless required by applicable law or agreed to in writing, >>>>> # software distributed under the License is distributed on an >>>>> # "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY >>>>> # KIND, either express or implied. See the License for the >>>>> # specific language governing permissions and limitations >>>>> # under the License. >>>>> # >>>>> #ConfigurationFile for LDAP Auth >>>>> #ConfigKey 'ldap_config_path' must be set in DataBase Configration of >>>>> OM and point to this file >>>>> #o.becherer,14.01.2009 >>>>> #LDAP URL >>>>> # This is the URL used to access your LDAP server. >>>>> # if you want to use "ldaps://" links, please be aware that you need >>>>> to import your CA certificate >>>>> # to a java keystore and add the -Djavax.net.ssl.keyStore, >>>>> -Djavax.net.ssl.keyStorePassword, >>>>> # -Djavax.net.ssl.trustStore and -Djavax.net.ssl.trustStorePassword >>>>> parameters to your >>>>> # JAVA_OPT environment >>>>> ldap_conn_host=@IP_of_my_AD >>>>> ldap_conn_port=389 >>>>> ldap_conn_secure=false >>>>> # Login distinguished name (DN) for Authentication on LDAP Server - >>>>> keep empty if not required >>>>> # Use full qualified LDAP DN >>>>> >>>>> ldap_admin_dn=CN=adconnect,OU=Comptes,OU=SI,OU=Services,OU=COMPANY,DC=mycompany,DC=priv >>>>> # Loginpass for Authentication on LDAP Server - keep empty if not >>>>> required >>>>> ldap_passwd=pass_for_user_adconnect >>>>> # base to search for userdata(of user, that wants to login) >>>>> ldap_search_base=DC=mycompany,DC=priv >>>>> # Fieldnames (can differ between Ldap servers) >>>>> ldap_search_query=(uid=%s) >>>>> # the scope of the search might be: OBJECT, ONELEVEL, SUBTREE >>>>> ldap_search_scope=ONELEVEL >>>>> # Ldap auth type(NONE, SEARCHANDBIND, SIMPLEBIND) >>>>> # When using SIMPLEBIND a simple bind is performed on the LDAP server >>>>> to check user authentication >>>>> # When using NONE, the Ldap server is not used for authentication >>>>> ldap_auth_type=SIMPLEBIND >>>>> # userDN format, will be used to bind if ldap_auth_type=SIMPLEBIND >>>>> # might be used to get provisionningDn in case ldap_auth_type=NONE >>>>> ldap_userdn_format=uid=%s,OU=COMPANY,DC=mycompany,DC=priv >>>>> # Ldap provisioning type(NONE, AUTOCREATE, AUTOUPDATE) >>>>> ldap_provisionning=AUTOCREATE >>>>> # Set this to 'true' if you want to use admin_dn to get user >>>>> attributes >>>>> # If any other value is set, user_dn will be used >>>>> ldap_use_admin_to_get_attrs=true >>>>> # Ldap-password synchronization to OM DB >>>>> # Set this to 'true' if you want OM to synchronize the user >>>>> Ldap-password to OM's internal DB >>>>> # If you want to disable the feature, set this to any other string. >>>>> # Defautl value is 'true' >>>>> ldap_sync_password_to_om=true >>>>> # Ldap user attributes mapping >>>>> # Set the following internal OM user attributes to their corresponding >>>>> Ldap-attribute >>>>> ldap_user_attr_lastname=sn >>>>> ldap_user_attr_firstname=givenName >>>>> ldap_user_attr_mail=mail >>>>> ldap_user_attr_street=streetAddress >>>>> ldap_user_attr_additionalname=description >>>>> ldap_user_attr_fax=facsimileTelephoneNumber >>>>> ldap_user_attr_zip=postalCode >>>>> ldap_user_attr_country=co >>>>> ldap_user_attr_town=l >>>>> ldap_user_attr_phone=telephoneNumber >>>>> # optional, only absolute URLs make sense >>>>> #ldap_user_picture_uri=picture_uri >>>>> # optional >>>>> # the timezone has to match any timezone available in Java, otherwise >>>>> the timezone defined in the value of >>>>> # the conf_key "default.timezone" in OpenMeetings "configurations" >>>>> table >>>>> #ldap_user_timezone=timezone >>>>> # Ldap ignore upper/lower case, convert all input to lower case >>>>> ldap_use_lower_case=false >>>>> >>>>> >>>>> >>>>> Thanks a lot for your help. >>>>> >>>>> Greg. >>>>> >>>>> >>>>> >>>>> >>>>> 2014-09-18 17:52 GMT+02:00 Maxim Solodovnik <[email protected]>: >>>>> >>>>>> please check this URL: >>>>>> http://kb.juniper.net/InfoCenter/index?page=content&id=KB17098 >>>>>> According to it you have "User not found" >>>>>> >>>>>> could you provide more ldap related logs? >>>>>> it might be Admin not found or user entered in login form not found >>>>>> depending on your settings >>>>>> >>>>>> On 18 September 2014 21:43, Grégory Mangeney <[email protected]> >>>>>> wrote: >>>>>> >>>>>>> Hello, It's me again... >>>>>>> I'm back. >>>>>>> Now I have a new problem to connect to my AD... >>>>>>> In log file it is write : *ERROR ......... Not authenticated* >>>>>>> witch is a quite better message than before but after that it is >>>>>>> write : *LdapErr: DSID-0C090334, comment: AcceptSecurityContext >>>>>>> error, data 525, vece\00 at........* >>>>>>> >>>>>>> I try to understand my problem but "AcceptSecurityContext error" >>>>>>> seems to speack about a security problem. >>>>>>> I have set my ldap_conn_secure=false in om_ldap.conf. >>>>>>> I don't understand what could be my problem. >>>>>>> >>>>>>> thanks a lot for your ideas. >>>>>>> >>>>>>> Greg. >>>>>>> 2014-09-18 15:37 GMT+02:00 Grégory Mangeney <[email protected]>: >>>>>>> >>>>>>>> Ok, I finally understand that I have to put the filename and only >>>>>>>> the filename without */usr/lib/red5/webapps/openmeetings/conf/* >>>>>>>> >>>>>>>> Now I have a new message whitch said me invalid password... >>>>>>>> It's quite better... >>>>>>>> Thank you... >>>>>>>> I could continue to try to set it now. >>>>>>>> bye >>>>>>>> >>>>>>>> Greg. >>>>>>>> >>>>>>>> >>>>>>>> >>>>>>>> 2014-09-18 15:06 GMT+02:00 Maxim Solodovnik <[email protected]>: >>>>>>>> >>>>>>>>> you need to write file name relative to webapps/openmeetings/conf >>>>>>>>> folder >>>>>>>>> in your case *om_ldap.cfg *should be specified >>>>>>>>> >>>>>>>>> On 18 September 2014 20:04, Grégory Mangeney <[email protected]> >>>>>>>>> wrote: >>>>>>>>> >>>>>>>>>> Thank you very much but I don't understand very well. >>>>>>>>>> I think I put the right information... >>>>>>>>>> Do you want to say that I have to write : >>>>>>>>>> */usr/lib/red5/webapps/openmeetings/conf/* without the filename >>>>>>>>>> *om_ldap.cfg* at the end? >>>>>>>>>> Thanks for your help >>>>>>>>>> Greg >>>>>>>>>> >>>>>>>>>> >>>>>>>>>> 2014-09-18 14:52 GMT+02:00 Maxim Solodovnik <[email protected] >>>>>>>>>> >: >>>>>>>>>> >>>>>>>>>>> AFAIK the path should be relative to /usr/lib/red5/webapps/ >>>>>>>>>>> openmeetings/conf >>>>>>>>>>> Please change this path >>>>>>>>>>> >>>>>>>>>>> Additionally you can file JIRA issue to add check to the Admin >>>>>>>>>>> screen (so path will be validated on enter) >>>>>>>>>>> >>>>>>>>>>> On 18 September 2014 19:44, Grégory Mangeney <[email protected] >>>>>>>>>>> > wrote: >>>>>>>>>>> >>>>>>>>>>>> Hello, >>>>>>>>>>>> I have the same problem: I could not connect with AD. >>>>>>>>>>>> I have the domain at the login screen, >>>>>>>>>>>> I am using the 3.0.3. >>>>>>>>>>>> I found this line in my log file :* ERROR 09-18 14:28:33.994 >>>>>>>>>>>> o.a.o.l.LdapLoginManagement:147 [http-nio-0.0.0.0-5080-exec-4] - >>>>>>>>>>>> Error on >>>>>>>>>>>> LdapLogin : Configurationdata couldnt be retrieved!* >>>>>>>>>>>> >>>>>>>>>>>> This seem strange because in my LDAP config (in openmeetings >>>>>>>>>>>> Administration/LDAP menu), I put the correct path in the "Config >>>>>>>>>>>> file name" >>>>>>>>>>>> : /usr/lib/red5/webapps/openmeetings/conf/om_ldap.cfg >>>>>>>>>>>> >>>>>>>>>>>> Why is this error appeared : *Configurationdata couldnt be >>>>>>>>>>>> retrieved! *??? >>>>>>>>>>>> >>>>>>>>>>>> >>>>>>>>>>>> Thanks a lot >>>>>>>>>>>> >>>>>>>>>>>> Greg >>>>>>>>>>>> >>>>>>>>>>>> >>>>>>>>>>>> 2014-09-17 12:52 GMT+02:00 Maxim Solodovnik < >>>>>>>>>>>> [email protected]>: >>>>>>>>>>>> >>>>>>>>>>>>> great :) >>>>>>>>>>>>> >>>>>>>>>>>>> On 17 September 2014 17:46, Teddy Jayasaputra < >>>>>>>>>>>>> [email protected]> wrote: >>>>>>>>>>>>> >>>>>>>>>>>>>> Dear Maxim, >>>>>>>>>>>>>> >>>>>>>>>>>>>> After close look to console log. >>>>>>>>>>>>>> We found this error : >>>>>>>>>>>>>> ERROR 09-17 17:28:33.278 LdapLoginManagement.java 135070 285 >>>>>>>>>>>>>> org.apache.openmeetings.ldap.LdapLoginManagement >>>>>>>>>>>>>> [http-nio-0.0.0.0-5080-exec-6] - User not found in OM DB and >>>>>>>>>>>>>> Provisionning.AUTOCREATE was not set >>>>>>>>>>>>>> >>>>>>>>>>>>>> After we change ldapconfiguration file from >>>>>>>>>>>>>> ldap_provisionning=NONE to AUTOCREATE we can login using AD. >>>>>>>>>>>>>> >>>>>>>>>>>>>> thanks. >>>>>>>>>>>>>> >>>>>>>>>>>>>> Best Regards, >>>>>>>>>>>>>> >>>>>>>>>>>>>> >>>>>>>>>>>>>> -Teddy Jayasaputra- >>>>>>>>>>>>>> >>>>>>>>>>>>>> >>>>>>>>>>>>>> On 9/17/2014 4:25 PM, Maxim Solodovnik wrote: >>>>>>>>>>>>>> >>>>>>>>>>>>>> do you have your AD domain on the login screen? >>>>>>>>>>>>>> are there errors in the log? >>>>>>>>>>>>>> what OM version are you using? >>>>>>>>>>>>>> >>>>>>>>>>>>>> On 17 September 2014 16:02, ARI HENDIAWAN < >>>>>>>>>>>>>> [email protected]> wrote: >>>>>>>>>>>>>> >>>>>>>>>>>>>>> Dear all, >>>>>>>>>>>>>>> please we need extra information how to integrate >>>>>>>>>>>>>>> openmeetings 3.0.3 with AD? >>>>>>>>>>>>>>> we already setting on ldap.conf and still problem.. if we >>>>>>>>>>>>>>> saw on AD , user that want sign-in openmeetings success, but on >>>>>>>>>>>>>>> login menu >>>>>>>>>>>>>>> openmeetings shown error "invalid password" >>>>>>>>>>>>>>> >>>>>>>>>>>>>>> >>>>>>>>>>>>>>> Tks >>>>>>>>>>>>>>> >>>>>>>>>>>>>>> >>>>>>>>>>>>>>> -- >>>>>>>>>>>>>>> Disclaimer : >>>>>>>>>>>>>>> Confidential information may be contained in this message. >>>>>>>>>>>>>>> If you are not the intended recipient, you are strictly >>>>>>>>>>>>>>> prohibited and may >>>>>>>>>>>>>>> be unlawful to use, copy, store, distribute, disclose or >>>>>>>>>>>>>>> communicate any >>>>>>>>>>>>>>> part of it to others and you are obliged to return it >>>>>>>>>>>>>>> immediately to sender >>>>>>>>>>>>>>> or notify us and delete the e-mail and any attachments from >>>>>>>>>>>>>>> your system. >>>>>>>>>>>>>>> Opinions, conclusions and other information in this e-mail that >>>>>>>>>>>>>>> do not >>>>>>>>>>>>>>> relate to the official business of any PT Bank OCBC NISP Tbk >>>>>>>>>>>>>>> shall be >>>>>>>>>>>>>>> understood as neither given nor endorsed by it. No assumption of >>>>>>>>>>>>>>> responsibility or liability whatsoever is undertaken by PT Bank >>>>>>>>>>>>>>> OCBC NISP >>>>>>>>>>>>>>> Tbk in respect of prohibited and unauthorised use by any other >>>>>>>>>>>>>>> person. >>>>>>>>>>>>>>> >>>>>>>>>>>>>>> >>>>>>>>>>>>>> >>>>>>>>>>>>>> >>>>>>>>>>>>>> -- >>>>>>>>>>>>>> WBR >>>>>>>>>>>>>> Maxim aka solomax >>>>>>>>>>>>>> >>>>>>>>>>>>>> >>>>>>>>>>>>>> >>>>>>>>>>>>>> >>>>>>>>>>>>>> -- >>>>>>>>>>>>>> Disclaimer : >>>>>>>>>>>>>> Confidential information may be contained in this message. If >>>>>>>>>>>>>> you are not the intended recipient, you are strictly prohibited >>>>>>>>>>>>>> and may be >>>>>>>>>>>>>> unlawful to use, copy, store, distribute, disclose or >>>>>>>>>>>>>> communicate any part >>>>>>>>>>>>>> of it to others and you are obliged to return it immediately to >>>>>>>>>>>>>> sender or >>>>>>>>>>>>>> notify us and delete the e-mail and any attachments from your >>>>>>>>>>>>>> system. >>>>>>>>>>>>>> Opinions, conclusions and other information in this e-mail that >>>>>>>>>>>>>> do not >>>>>>>>>>>>>> relate to the official business of any PT Bank OCBC NISP Tbk >>>>>>>>>>>>>> shall be >>>>>>>>>>>>>> understood as neither given nor endorsed by it. No assumption of >>>>>>>>>>>>>> responsibility or liability whatsoever is undertaken by PT Bank >>>>>>>>>>>>>> OCBC NISP >>>>>>>>>>>>>> Tbk in respect of prohibited and unauthorised use by any other >>>>>>>>>>>>>> person. >>>>>>>>>>>>>> >>>>>>>>>>>>> >>>>>>>>>>>>> >>>>>>>>>>>>> >>>>>>>>>>>>> -- >>>>>>>>>>>>> WBR >>>>>>>>>>>>> Maxim aka solomax >>>>>>>>>>>>> >>>>>>>>>>>> >>>>>>>>>>>> >>>>>>>>>>> >>>>>>>>>>> >>>>>>>>>>> -- >>>>>>>>>>> WBR >>>>>>>>>>> Maxim aka solomax >>>>>>>>>>> >>>>>>>>>> >>>>>>>>>> >>>>>>>>> >>>>>>>>> >>>>>>>>> -- >>>>>>>>> WBR >>>>>>>>> Maxim aka solomax >>>>>>>>> >>>>>>>> >>>>>>>> >>>>>>> >>>>>> >>>>>> >>>>>> -- >>>>>> WBR >>>>>> Maxim aka solomax >>>>>> >>>>> >>>>> >>>> >>>> >>>> -- >>>> WBR >>>> Maxim aka solomax >>>> >>> >>> >> >> >> -- >> WBR >> Maxim aka solomax >> > >
