Ok, I tryed with an other account in an easyest object (ldap_admin_dn=CN=testad, OU=COMPANY,DC=mycompany,DC=pri), but it still the same... "NONE users in LDAP"
I do not understand. I think the link is now good with AD according to this message but I don't know why no users are found! Any ideas? Best regards. Greg 2014-09-23 15:56 GMT+02:00 Grégory Mangeney <[email protected]>: > Ok, Maxim > I found in logs the 52e between "data" and "vece\00" > > According to your ling given previousely, it seems to be an "invalid > credentials" ( > http://kb.juniper.net/InfoCenter/index?page=content&id=KB17098) > > Is it a problem with my user or do you see an other issue? > I could mabe test with a new account, an easyer account that I could creat > for testing. > > Thanks. > > Greg. > > > > 2014-09-23 15:47 GMT+02:00 Grégory Mangeney <[email protected]>: > >> Hello Maxim. >> I had try with the 3.0.4 Version according to your link. >> >> Now I have an other error in log file. >> It said NONE USER FOUND IN LDAP... >> I hope so the connection with my AD is good and it still a config problem >> but maybe you could help me with my logs and my conf file... >> >> My logs: >> >> ERROR 09-23 15:34:55.797 o.a.o.l.LdapLoginManagement:266 >> [http-nio-0.0.0.0-5080-exec-8] - NONE users found in LDAP >> DEBUG 09-23 15:34:55.799 o.a.w.u.c.CookieUtils:273 >> [http-nio-0.0.0.0-5080-exec-8] - Unable to find Cookie with name=LoggedIn >> and request URI=signin?0-5.IBehaviorListener.0-signin-signin-submit >> DEBUG 09-23 15:34:55.802 o.a.w.f.FeedbackMessages:69 >> [http-nio-0.0.0.0-5080-exec-8] - Adding feedback message '[FeedbackMessage >> message = "Invalid password", reporter = signin, level = ERROR]' >> DEBUG 09-23 15:34:55.808 o.a.wicket.Page:871 >> [http-nio-0.0.0.0-5080-exec-8] - ending request for page [Page class = >> org.apache.openmeetings.web.pages.auth.SignInPage, id = 0, render count = >> 5], request org.apache.wicket.protocol.http.servlet.ServletWebRequest@69fbe >> DEBUG 09-23 15:34:55.809 o.a.wicket.Page:871 >> [http-nio-0.0.0.0-5080-exec-8] - ending request for page [Page class = >> org.apache.openmeetings.web.pages.auth.SignInPage, id = 0, render count = >> 5], request org.apache.wicket.protocol.http.servlet.ServletWebRequest@69fbe >> DEBUG 09-23 15:34:55.809 o.a.wicket.Page:871 >> [http-nio-0.0.0.0-5080-exec-8] - ending request for page [Page class = >> org.apache.openmeetings.web.pages.auth.SignInPage, id = 0, render count = >> 5], request org.apache.wicket.protocol.http.servlet.ServletWebRequest@69fbe >> DEBUG 09-23 15:34:55.811 >> o.a.w.p.AsynchronousDataStore$PageSavingRunnable:354 >> [Wicket-PageSavingThread] - Saving asynchronously: Entry >> [sessionId=E576CCA08DEE992DF7CCBD22F2FD64F8, pageId=0]... >> DEBUG 09-23 15:34:55.811 o.a.w.p.DiskDataStore:186 >> [Wicket-PageSavingThread] - Storing data for page with id '0' in session >> with id 'E576CCA08DEE992DF7CCBD22F2FD64F8' >> DEBUG 09-23 15:34:55.812 o.a.w.p.PageAccessSynchronizer:195 >> [http-nio-0.0.0.0-5080-exec-8] - 'http-nio-0.0.0.0-5080-exec-8' released >> lock to page with id '0' >> DEBUG 09-23 15:34:55.812 o.a.w.p.PageAccessSynchronizer:346 >> [http-nio-0.0.0.0-5080-exec-8] - 'http-nio-0.0.0.0-5080-exec-8' notifying >> blocked threads >> DEBUG 09-23 15:35:30.522 o.a.o.m.MailHandler:258 >> [org.springframework.scheduling.quartz.SchedulerFactoryBean#0_Worker-2] - >> sendMails enter ... >> DEBUG 09-23 15:35:30.523 o.a.o.m.MailHandler:260 >> [org.springframework.scheduling.quartz.SchedulerFactoryBean#0_Worker-2] - >> Number of emails in init queue 0 >> DEBUG 09-23 15:35:30.524 o.a.o.m.MailHandler:265 >> [org.springframework.scheduling.quartz.SchedulerFactoryBean#0_Worker-2] - >> ... sendMails done. >> DEBUG 09-23 15:35:35.503 o.a.o.d.d.s.SessiondataDao:404 >> [org.springframework.scheduling.quartz.SchedulerFactoryBean#0_Worker-3] - >> ****** clearSessionTable: >> DEBUG 09-23 15:35:35.505 o.a.o.d.d.s.SessiondataDao:408 >> [org.springframework.scheduling.quartz.SchedulerFactoryBean#0_Worker-3] - >> clearSessionTable: 0 >> DEBUG 09-23 15:35:35.512 o.a.o.q.s.MeetingReminderJob:34 >> [org.springframework.scheduling.quartz.SchedulerFactoryBean#0_Worker-4] - >> MeetingReminderJob.execute >> >> >> >> My conf : >> >> # >> # Licensed to the Apache Software Foundation (ASF) under one >> # or more contributor license agreements. See the NOTICE file >> # distributed with this work for additional information >> # regarding copyright ownership. The ASF licenses this file >> # to you under the Apache License, Version 2.0 (the >> # "License"); you may not use this file except in compliance >> # with the License. You may obtain a copy of the License at >> # >> # http://www.apache.org/licenses/LICENSE-2.0 >> # >> # Unless required by applicable law or agreed to in writing, >> # software distributed under the License is distributed on an >> # "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY >> # KIND, either express or implied. See the License for the >> # specific language governing permissions and limitations >> # under the License. >> # >> #ConfigurationFile for LDAP Auth >> #ConfigKey 'ldap_config_path' must be set in DataBase Configration of OM >> and point to this file >> #o.becherer,14.01.2009 >> >> #LDAP URL >> # This is the URL used to access your LDAP server. >> # if you want to use "ldaps://" links, please be aware that you need to >> import your CA certificate >> # to a java keystore and add the -Djavax.net.ssl.keyStore, >> -Djavax.net.ssl.keyStorePassword, >> # -Djavax.net.ssl.trustStore and -Djavax.net.ssl.trustStorePassword >> parameters to your >> # JAVA_OPT environment >> ldap_conn_host=@IP_of_my_AD >> ldap_conn_port=389 >> ldap_conn_secure=false >> >> # Login distinguished name (DN) for Authentication on LDAP Server - keep >> empty if not required >> # Use full qualified LDAP DN >> ldap_admin_dn=CN=adconnect,OU=Comptes >> Cles,OU=SI,OU=Services,OU=COMPANY,DC=mycompany,DC=priv >> >> # Loginpass for Authentication on LDAP Server - keep empty if not >> required >> ldap_passwd=pass_for_user_adconnect >> >> # base to search for userdata(of user, that wants to login) >> ldap_search_base=OU=COMPANY,DC=mycompany,DC=priv >> >> # Fieldnames (can differ between Ldap servers) >> ldap_search_query=(uid=%s) >> >> # the scope of the search might be: OBJECT, ONELEVEL, SUBTREE >> ldap_search_scope=SUBTREE >> >> # Ldap auth type(NONE, SEARCHANDBIND, SIMPLEBIND) >> # When using SIMPLEBIND a simple bind is performed on the LDAP server to >> check user authentication >> # When using NONE, the Ldap server is not used for authentication >> ldap_auth_type=SEARCHANDBIND >> >> # userDN format, will be used to bind if ldap_auth_type=SIMPLEBIND >> # might be used to get provisionningDn in case ldap_auth_type=NONE >> ldap_userdn_format=uid=%s,OU=COMPANY,DC=mycompany,DC=priv >> >> # Ldap provisioning type(NONE, AUTOCREATE, AUTOUPDATE) >> ldap_provisionning=AUTOCREATE >> >> # Set this to 'true' if you want to use admin_dn to get user attributes >> # If any other value is set, user_dn will be used >> ldap_use_admin_to_get_attrs=true >> >> # Ldap-password synchronization to OM DB >> # Set this to 'true' if you want OM to synchronize the user >> Ldap-password to OM's internal DB >> # If you want to disable the feature, set this to any other string. >> # Defautl value is 'true' >> ldap_sync_password_to_om=true >> >> # Ldap user attributes mapping >> # Set the following internal OM user attributes to their corresponding >> Ldap-attribute >> ldap_user_attr_lastname=sn >> ldap_user_attr_firstname=givenName >> ldap_user_attr_mail=mail >> ldap_user_attr_street=streetAddress >> ldap_user_attr_additionalname=description >> ldap_user_attr_fax=facsimileTelephoneNumber >> ldap_user_attr_zip=postalCode >> ldap_user_attr_country=co >> ldap_user_attr_town=l >> ldap_user_attr_phone=telephoneNumber >> >> # optional, only absolute URLs make sense >> #ldap_user_picture_uri=picture_uri >> >> # optional >> # the timezone has to match any timezone available in Java, otherwise the >> timezone defined in the value of >> # the conf_key "default.timezone" in OpenMeetings "configurations" table >> #ldap_user_timezone=timezone >> >> # Ldap ignore upper/lower case, convert all input to lower case >> ldap_use_lower_case=false >> >> >> Do you see how to fix my problem with this new branch of openmeetings >> 3.0.4? >> >> Thanks a lot. >> >> Greg. >> >> >> >> >> 2014-09-22 17:50 GMT+02:00 Maxim Solodovnik <[email protected]>: >> >>> Please get build #67 here: >>> https://builds.apache.org/view/M-R/view/OpenMeetings/job/Openmeetings%203.0.x/ >>> I have no LDAP infrastructure to test :( I 100% rely on community in this >>> So thanks for the testing :) >>> >>> On 23 September 2014 01:17, Grégory Mangeney <[email protected]> wrote: >>> >>>> Windows Server 2003 R2 >>>> >>>> 2014-09-22 17:13 GMT+02:00 Grégory Mangeney <[email protected]>: >>>> >>>>> Ok,thank you for that. >>>>> For information I am using a Microsoft Active Directory in object >>>>> version 31 >>>>> >>>>> I get this information by tapping dsquery * >>>>> cn=schema,cn=configuration,dc=mycompany,dc=priv -scope base -attr >>>>> objectVersion >>>>> >>>>> Good evening. >>>>> >>>>> Best regards. >>>>> >>>>> Greg. >>>>> >>>>> 2014-09-22 16:40 GMT+02:00 Maxim Solodovnik <[email protected]>: >>>>> >>>>>> You have these Paramaribo in your configuration: >>>>>> ldap_search_base=DC=mycompany,DC=priv >>>>>> # Fieldnames (can differ between Ldap servers) >>>>>> ldap_search_query=(uid=%s) >>>>>> >>>>>> I guess nothing is found. Not sure I never saw error like yours. >>>>>> >>>>>> Will create 3.0.4 nightly fly you later today (with updated ldap >>>>>> library) if error will be the same I'll ask ldap library developers for >>>>>> the >>>>>> help >>>>>> On Sep 22, 2014 9:05 PM, "Grégory Mangeney" <[email protected]> >>>>>> wrote: >>>>>> >>>>>>> a bad search query? >>>>>>> >>>>>>> In this case, the loging error message shouldn't be somthing like : >>>>>>> "Login/password do not exist" ? >>>>>>> >>>>>>> How could I check this point... >>>>>>> I do not modified the source code! >>>>>>> >>>>>>> 2014-09-22 11:25 GMT+02:00 Maxim Solodovnik <[email protected]>: >>>>>>> >>>>>>>> it seems like nothing was found >>>>>>>> Maybe bad search query? >>>>>>>> >>>>>>>> On 22 September 2014 15:55, Grégory Mangeney <[email protected]> >>>>>>>> wrote: >>>>>>>> >>>>>>>>> Hello Maxim. >>>>>>>>> Thanks a lot for your answer. >>>>>>>>> You're helpfull... >>>>>>>>> >>>>>>>>> I had ever try with SEARCHANDBIND but it still not working... >>>>>>>>> So I set it again to give you my logs... >>>>>>>>> The error is quite different but I could not understand what is >>>>>>>>> the problem... >>>>>>>>> >>>>>>>>> In the login screen I have the following message in red : "Unknown >>>>>>>>> error. Please report this to the administrator." >>>>>>>>> >>>>>>>>> >>>>>>>>> >>>>>>>>> >>>>>>>>> Here is my logs : >>>>>>>>> >>>>>>>>> ERROR 09-22 10:34:34.814 o.a.o.l.LdapLoginManagement:356 >>>>>>>>> [http-nio-0.0.0.0-5080-exec-4] - Unexpected exception. >>>>>>>>> org.apache.directory.api.ldap.model.cursor.CursorLdapReferralException: >>>>>>>>> null >>>>>>>>> at >>>>>>>>> org.apache.directory.ldap.client.api.EntryCursorImpl.get(EntryCursorImpl.java:164) >>>>>>>>> ~[api-all-jar-1.0.0-M23.jar:1.0.0-M23] >>>>>>>>> at >>>>>>>>> org.apache.directory.ldap.client.api.EntryCursorImpl.get(EntryCursorImpl.java:50) >>>>>>>>> ~[api-all-jar-1.0.0-M23.jar:1.0.0-M23] >>>>>>>>> at >>>>>>>>> org.apache.openmeetings.ldap.LdapLoginManagement.login(LdapLoginManagement.java:258) >>>>>>>>> ~[openmeetings-core-3.0.3-RELEASE.jar:na] >>>>>>>>> at >>>>>>>>> org.apache.openmeetings.web.app.WebSession.signIn(WebSession.java:257) >>>>>>>>> [openmeetings-web-3.0.3-RELEASE.jar:na] >>>>>>>>> at >>>>>>>>> org.apache.openmeetings.web.pages.auth.SignInDialog.onSubmit(SignInDialog.java:190) >>>>>>>>> [openmeetings-web-3.0.3-RELEASE.jar:na] >>>>>>>>> at >>>>>>>>> com.googlecode.wicket.jquery.ui.widget.dialog.AbstractFormDialog$DialogFormSubmitter.onSubmit(AbstractFormDialog.java:279) >>>>>>>>> [wicket-jquery-ui-jar-6.16.0.jar:na] >>>>>>>>> at >>>>>>>>> org.apache.wicket.markup.html.form.Form.delegateSubmit(Form.java:1266) >>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0] >>>>>>>>> at >>>>>>>>> org.apache.wicket.markup.html.form.Form.process(Form.java:938) >>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0] >>>>>>>>> at >>>>>>>>> org.apache.wicket.markup.html.form.StatelessForm.process(StatelessForm.java:96) >>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0] >>>>>>>>> at >>>>>>>>> org.apache.wicket.markup.html.form.Form.onFormSubmitted(Form.java:770) >>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0] >>>>>>>>> at >>>>>>>>> com.googlecode.wicket.jquery.ui.widget.dialog.AbstractFormDialog.internalOnClick(AbstractFormDialog.java:200) >>>>>>>>> [wicket-jquery-ui-jar-6.16.0.jar:na] >>>>>>>>> at >>>>>>>>> com.googlecode.wicket.jquery.ui.widget.dialog.AbstractDialog$1.onClick(AbstractDialog.java:439) >>>>>>>>> [wicket-jquery-ui-jar-6.16.0.jar:na] >>>>>>>>> at >>>>>>>>> com.googlecode.wicket.jquery.ui.widget.dialog.DialogBehavior.onAjax(DialogBehavior.java:175) >>>>>>>>> [wicket-jquery-ui-jar-6.16.0.jar:na] >>>>>>>>> at >>>>>>>>> com.googlecode.wicket.jquery.core.ajax.JQueryAjaxBehavior.respond(JQueryAjaxBehavior.java:171) >>>>>>>>> [wicket-jquery-ui-core-jar-6.16.0.jar:na] >>>>>>>>> at >>>>>>>>> org.apache.wicket.ajax.AbstractDefaultAjaxBehavior.onRequest(AbstractDefaultAjaxBehavior.java:633) >>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0] >>>>>>>>> at sun.reflect.GeneratedMethodAccessor91.invoke(Unknown >>>>>>>>> Source) ~[na:na] >>>>>>>>> at >>>>>>>>> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43) >>>>>>>>> ~[na:1.7.0_65] >>>>>>>>> at java.lang.reflect.Method.invoke(Method.java:606) >>>>>>>>> ~[na:1.7.0_65] >>>>>>>>> at >>>>>>>>> org.apache.wicket.RequestListenerInterface.internalInvoke(RequestListenerInterface.java:258) >>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0] >>>>>>>>> at >>>>>>>>> org.apache.wicket.RequestListenerInterface.invoke(RequestListenerInterface.java:241) >>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0] >>>>>>>>> at >>>>>>>>> org.apache.wicket.core.request.handler.ListenerInterfaceRequestHandler.invokeListener(ListenerInterfaceRequestHandler.java:250) >>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0] >>>>>>>>> at >>>>>>>>> org.apache.wicket.core.request.handler.ListenerInterfaceRequestHandler.respond(ListenerInterfaceRequestHandler.java:236) >>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0] >>>>>>>>> at >>>>>>>>> org.apache.wicket.request.cycle.RequestCycle$HandlerExecutor.respond(RequestCycle.java:862) >>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0] >>>>>>>>> at >>>>>>>>> org.apache.wicket.request.RequestHandlerStack.execute(RequestHandlerStack.java:64) >>>>>>>>> [wicket-request-jar-6.16.0.jar:6.16.0] >>>>>>>>> at >>>>>>>>> org.apache.wicket.request.cycle.RequestCycle.execute(RequestCycle.java:261) >>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0] >>>>>>>>> at >>>>>>>>> org.apache.wicket.request.cycle.RequestCycle.processRequest(RequestCycle.java:218) >>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0] >>>>>>>>> at >>>>>>>>> org.apache.wicket.request.cycle.RequestCycle.processRequestAndDetach(RequestCycle.java:289) >>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0] >>>>>>>>> at >>>>>>>>> org.apache.wicket.protocol.ws.AbstractUpgradeFilter.processRequestCycle(AbstractUpgradeFilter.java:59) >>>>>>>>> [wicket-native-websocket-core-jar-6.16.0.jar:6.16.0] >>>>>>>>> at >>>>>>>>> org.apache.wicket.protocol.http.WicketFilter.processRequest(WicketFilter.java:201) >>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0] >>>>>>>>> at >>>>>>>>> org.apache.wicket.protocol.http.WicketFilter.doFilter(WicketFilter.java:282) >>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0] >>>>>>>>> at >>>>>>>>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:241) >>>>>>>>> [tomcat-embed-core.jar:7.0.55] >>>>>>>>> at >>>>>>>>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:208) >>>>>>>>> [tomcat-embed-core.jar:7.0.55] >>>>>>>>> at >>>>>>>>> org.red5.logging.LoggerContextFilter.doFilter(LoggerContextFilter.java:77) >>>>>>>>> [red5-server.jar:na] >>>>>>>>> at >>>>>>>>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:241) >>>>>>>>> [tomcat-embed-core.jar:7.0.55] >>>>>>>>> at >>>>>>>>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:208) >>>>>>>>> [tomcat-embed-core.jar:7.0.55] >>>>>>>>> at >>>>>>>>> org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:220) >>>>>>>>> [tomcat-embed-core.jar:7.0.55] >>>>>>>>> at >>>>>>>>> org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:122) >>>>>>>>> [tomcat-embed-core.jar:7.0.55] >>>>>>>>> at >>>>>>>>> org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:501) >>>>>>>>> [tomcat-embed-core.jar:7.0.55] >>>>>>>>> at >>>>>>>>> org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:171) >>>>>>>>> [tomcat-embed-core.jar:7.0.55] >>>>>>>>> at >>>>>>>>> org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:103) >>>>>>>>> [tomcat-embed-core.jar:7.0.55] >>>>>>>>> at >>>>>>>>> org.apache.catalina.valves.AccessLogValve.invoke(AccessLogValve.java:950) >>>>>>>>> [tomcat-embed-core.jar:7.0.55] >>>>>>>>> at >>>>>>>>> org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:116) >>>>>>>>> [tomcat-embed-core.jar:7.0.55] >>>>>>>>> at >>>>>>>>> org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:408) >>>>>>>>> [tomcat-embed-core.jar:7.0.55] >>>>>>>>> at >>>>>>>>> org.apache.coyote.http11.AbstractHttp11Processor.process(AbstractHttp11Processor.java:1070) >>>>>>>>> [tomcat-embed-core.jar:7.0.55] >>>>>>>>> at >>>>>>>>> org.apache.coyote.AbstractProtocol$AbstractConnectionHandler.process(AbstractProtocol.java:611) >>>>>>>>> [tomcat-embed-core.jar:7.0.55] >>>>>>>>> at >>>>>>>>> org.apache.tomcat.util.net.NioEndpoint$SocketProcessor.doRun(NioEndpoint.java:1736) >>>>>>>>> [tomcat-embed-core.jar:7.0.55] >>>>>>>>> at >>>>>>>>> org.apache.tomcat.util.net.NioEndpoint$SocketProcessor.run(NioEndpoint.java:1695) >>>>>>>>> [tomcat-embed-core.jar:7.0.55] >>>>>>>>> at >>>>>>>>> java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1145) >>>>>>>>> [na:1.7.0_65] >>>>>>>>> at >>>>>>>>> java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:615) >>>>>>>>> [na:1.7.0_65] >>>>>>>>> at >>>>>>>>> org.apache.tomcat.util.threads.TaskThread$WrappingRunnable.run(TaskThread.java:61) >>>>>>>>> [tomcat-embed-core.jar:7.0.55] >>>>>>>>> at java.lang.Thread.run(Thread.java:745) [na:1.7.0_65] >>>>>>>>> DEBUG 09-22 10:34:34.817 o.a.w.u.c.CookieUtils:266 >>>>>>>>> [http-nio-0.0.0.0-5080-exec-4] - Unable to find Cookie with >>>>>>>>> name=LoggedIn >>>>>>>>> and request URI=signin?1-1.IBehaviorListener.1-signin >>>>>>>>> DEBUG 09-22 10:34:34.820 o.a.w.f.FeedbackMessages:69 >>>>>>>>> [http-nio-0.0.0.0-5080-exec-4] - Adding feedback message >>>>>>>>> '[FeedbackMessage >>>>>>>>> message = "Unknown error. Please report this to the administrator.", >>>>>>>>> reporter = signin, level = ERROR]' >>>>>>>>> DEBUG 09-22 10:34:34.821 o.a.w.u.c.CookieUtils:266 >>>>>>>>> [http-nio-0.0.0.0-5080-exec-4] - Unable to find Cookie with >>>>>>>>> name=LoggedIn >>>>>>>>> and request URI=signin?1-1.IBehaviorListener.1-signin >>>>>>>>> DEBUG 09-22 10:34:34.822 o.a.wicket.Page:871 >>>>>>>>> [http-nio-0.0.0.0-5080-exec-4] - ending request for page [Page class = >>>>>>>>> org.apache.openmeetings.web.pages.auth.SignInPage, id = 1, render >>>>>>>>> count = >>>>>>>>> 1], request >>>>>>>>> org.apache.wicket.protocol.http.servlet.ServletWebRequest@16618f3 >>>>>>>>> DEBUG 09-22 10:34:34.822 o.a.wicket.Page:871 >>>>>>>>> [http-nio-0.0.0.0-5080-exec-4] - ending request for page [Page class = >>>>>>>>> org.apache.openmeetings.web.pages.auth.SignInPage, id = 1, render >>>>>>>>> count = >>>>>>>>> 1], request >>>>>>>>> org.apache.wicket.protocol.http.servlet.ServletWebRequest@16618f3 >>>>>>>>> DEBUG 09-22 10:34:34.823 o.a.wicket.Page:871 >>>>>>>>> [http-nio-0.0.0.0-5080-exec-4] - ending request for page [Page class = >>>>>>>>> org.apache.openmeetings.web.pages.auth.SignInPage, id = 1, render >>>>>>>>> count = >>>>>>>>> 1], request >>>>>>>>> org.apache.wicket.protocol.http.servlet.ServletWebRequest@16618f3 >>>>>>>>> DEBUG 09-22 10:34:34.828 >>>>>>>>> o.a.w.p.AsynchronousDataStore$PageSavingRunnable:354 >>>>>>>>> [Wicket-PageSavingThread] - Saving asynchronously: Entry >>>>>>>>> [sessionId=907ABBB232B18743F2A67024DA18F185, pageId=1]... >>>>>>>>> DEBUG 09-22 10:34:34.828 o.a.w.p.DiskDataStore:186 >>>>>>>>> [Wicket-PageSavingThread] - Storing data for page with id '1' in >>>>>>>>> session >>>>>>>>> with id '907ABBB232B18743F2A67024DA18F185' >>>>>>>>> DEBUG 09-22 10:34:34.828 o.a.w.p.PageAccessSynchronizer:195 >>>>>>>>> [http-nio-0.0.0.0-5080-exec-4] - 'http-nio-0.0.0.0-5080-exec-4' >>>>>>>>> released >>>>>>>>> lock to page with id '1' >>>>>>>>> DEBUG 09-22 10:34:34.828 o.a.w.p.PageAccessSynchronizer:346 >>>>>>>>> [http-nio-0.0.0.0-5080-exec-4] - 'http-nio-0.0.0.0-5080-exec-4' >>>>>>>>> notifying >>>>>>>>> blocked threads >>>>>>>>> DEBUG 09-22 10:34:36.341 o.a.o.m.MailHandler:249 >>>>>>>>> [org.springframework.scheduling.quartz.SchedulerFactoryBean#0_Worker-1] >>>>>>>>> - >>>>>>>>> resetSendingStatus enter ... >>>>>>>>> >>>>>>>>> >>>>>>>>> >>>>>>>>> Thank you for your time. >>>>>>>>> >>>>>>>>> Greg. >>>>>>>>> >>>>>>>>> 2014-09-20 8:59 GMT+02:00 Maxim Solodovnik <[email protected]>: >>>>>>>>> >>>>>>>>>> According to the logs and config SIMPLEBIND failed for the user >>>>>>>>>> specified >>>>>>>>>> please try SEARCHANDBIND >>>>>>>>>> >>>>>>>>>> On 19 September 2014 17:09, Grégory Mangeney <[email protected]> >>>>>>>>>> wrote: >>>>>>>>>> >>>>>>>>>>> Hello. >>>>>>>>>>> Thank you for your link. >>>>>>>>>>> It appeare that I have a 525 error (user not found). >>>>>>>>>>> >>>>>>>>>>> I think the problem must be in my config file because I'm sure >>>>>>>>>>> that my user is good because I use it for an other app witch use it >>>>>>>>>>> to >>>>>>>>>>> connect with AD. >>>>>>>>>>> >>>>>>>>>>> As you ask me i give you more line of my log file, after that I >>>>>>>>>>> would like to show you my conf file... >>>>>>>>>>> Maybe you will find a setting withch is not good! >>>>>>>>>>> >>>>>>>>>>> >>>>>>>>>>> So here is my log file whene I try to connect : >>>>>>>>>>> DEBUG 09-19 11:47:01.337 o.a.o.q.s.MeetingReminderJob:34 >>>>>>>>>>> [org.springframework.scheduling.quartz.SchedulerFactoryBean#0_Worker-2] >>>>>>>>>>> - >>>>>>>>>>> MeetingReminderJob.execute >>>>>>>>>>> DEBUG 09-19 11:47:25.760 o.a.w.p.h.s.ServletWebRequest:189 >>>>>>>>>>> [http-nio-0.0.0.0-5080-exec-10] - Calculating context relative path >>>>>>>>>>> from: >>>>>>>>>>> context path '/openmeetings', filterPrefix '', uri >>>>>>>>>>> '/openmeetings/signin' >>>>>>>>>>> DEBUG 09-19 11:47:25.761 o.a.w.p.PageAccessSynchronizer:100 >>>>>>>>>>> [http-nio-0.0.0.0-5080-exec-10] - 'http-nio-0.0.0.0-5080-exec-10' >>>>>>>>>>> attempting to acquire lock to page with id '1' >>>>>>>>>>> DEBUG 09-19 11:47:25.761 o.a.w.p.PageAccessSynchronizer:125 >>>>>>>>>>> [http-nio-0.0.0.0-5080-exec-10] - http-nio-0.0.0.0-5080-exec-10 >>>>>>>>>>> acquired >>>>>>>>>>> lock to page 1 >>>>>>>>>>> DEBUG 09-19 11:47:25.762 o.a.o.d.d.s.SessiondataDao:68 >>>>>>>>>>> [http-nio-0.0.0.0-5080-exec-10] - startsession :: startsession >>>>>>>>>>> DEBUG 09-19 11:47:25.763 o.a.o.u.c.ManageCryptStyle:32 >>>>>>>>>>> [http-nio-0.0.0.0-5080-exec-10] - getInstanceOfCrypt:: >>>>>>>>>>> configKeyCryptClassName: >>>>>>>>>>> org.apache.openmeetings.util.crypt.MD5Implementation >>>>>>>>>>> DEBUG 09-19 11:47:25.788 o.a.o.l.LdapLoginManagement:165 >>>>>>>>>>> [http-nio-0.0.0.0-5080-exec-10] - LdapLoginmanagement.doLdapLogin >>>>>>>>>>> ERROR 09-19 11:47:25.924 o.a.o.l.LdapLoginManagement:351 >>>>>>>>>>> [http-nio-0.0.0.0-5080-exec-10] - Not authenticated. >>>>>>>>>>> org.apache.directory.api.ldap.model.exception.LdapAuthenticationException: >>>>>>>>>>> 80090308: LdapErr: DSID-0C090334, comment: AcceptSecurityContext >>>>>>>>>>> error, >>>>>>>>>>> data 525, vece\00 >>>>>>>>>>> at >>>>>>>>>>> org.apache.directory.api.ldap.model.message.ResultCodeEnum.processResponse(ResultCodeEnum.java:2021) >>>>>>>>>>> ~[api-all-jar-1.0.0-M23.jar:1.0.0-M23] >>>>>>>>>>> at >>>>>>>>>>> org.apache.directory.ldap.client.api.AbstractLdapConnection.bind(AbstractLdapConnection.java:129) >>>>>>>>>>> ~[api-all-jar-1.0.0-M23.jar:1.0.0-M23] >>>>>>>>>>> at >>>>>>>>>>> org.apache.openmeetings.ldap.LdapLoginManagement.login(LdapLoginManagement.java:275) >>>>>>>>>>> ~[openmeetings-core-3.0.3-RELEASE.jar:na] >>>>>>>>>>> at >>>>>>>>>>> org.apache.openmeetings.web.app.WebSession.signIn(WebSession.java:257) >>>>>>>>>>> [openmeetings-web-3.0.3-RELEASE.jar:na] >>>>>>>>>>> at >>>>>>>>>>> org.apache.openmeetings.web.pages.auth.SignInDialog.onSubmit(SignInDialog.java:190) >>>>>>>>>>> [openmeetings-web-3.0.3-RELEASE.jar:na] >>>>>>>>>>> at >>>>>>>>>>> com.googlecode.wicket.jquery.ui.widget.dialog.AbstractFormDialog$DialogFormSubmitter.onSubmit(AbstractFormDialog.java:279) >>>>>>>>>>> [wicket-jquery-ui-jar-6.16.0.jar:na] >>>>>>>>>>> at >>>>>>>>>>> org.apache.wicket.markup.html.form.Form.delegateSubmit(Form.java:1266) >>>>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0] >>>>>>>>>>> at >>>>>>>>>>> org.apache.wicket.markup.html.form.Form.process(Form.java:938) >>>>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0] >>>>>>>>>>> at >>>>>>>>>>> org.apache.wicket.markup.html.form.StatelessForm.process(StatelessForm.java:96) >>>>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0] >>>>>>>>>>> at >>>>>>>>>>> org.apache.wicket.markup.html.form.Form.onFormSubmitted(Form.java:770) >>>>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0] >>>>>>>>>>> at >>>>>>>>>>> com.googlecode.wicket.jquery.ui.widget.dialog.AbstractFormDialog.internalOnClick(AbstractFormDialog.java:200) >>>>>>>>>>> [wicket-jquery-ui-jar-6.16.0.jar:na] >>>>>>>>>>> at >>>>>>>>>>> com.googlecode.wicket.jquery.ui.widget.dialog.AbstractDialog$1.onClick(AbstractDialog.java:439) >>>>>>>>>>> [wicket-jquery-ui-jar-6.16.0.jar:na] >>>>>>>>>>> at >>>>>>>>>>> com.googlecode.wicket.jquery.ui.widget.dialog.DialogBehavior.onAjax(DialogBehavior.java:175) >>>>>>>>>>> [wicket-jquery-ui-jar-6.16.0.jar:na] >>>>>>>>>>> at >>>>>>>>>>> com.googlecode.wicket.jquery.core.ajax.JQueryAjaxBehavior.respond(JQueryAjaxBehavior.java:171) >>>>>>>>>>> [wicket-jquery-ui-core-jar-6.16.0.jar:na] >>>>>>>>>>> at >>>>>>>>>>> org.apache.wicket.ajax.AbstractDefaultAjaxBehavior.onRequest(AbstractDefaultAjaxBehavior.java:633) >>>>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0] >>>>>>>>>>> at sun.reflect.GeneratedMethodAccessor91.invoke(Unknown Source) >>>>>>>>>>> ~[na:na] >>>>>>>>>>> at >>>>>>>>>>> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43) >>>>>>>>>>> ~[na:1.7.0_65] >>>>>>>>>>> at java.lang.reflect.Method.invoke(Method.java:606) >>>>>>>>>>> ~[na:1.7.0_65] >>>>>>>>>>> at >>>>>>>>>>> org.apache.wicket.RequestListenerInterface.internalInvoke(RequestListenerInterface.java:258) >>>>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0] >>>>>>>>>>> at >>>>>>>>>>> org.apache.wicket.RequestListenerInterface.invoke(RequestListenerInterface.java:241) >>>>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0] >>>>>>>>>>> at >>>>>>>>>>> org.apache.wicket.core.request.handler.ListenerInterfaceRequestHandler.invokeListener(ListenerInterfaceRequestHandler.java:250) >>>>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0] >>>>>>>>>>> at >>>>>>>>>>> org.apache.wicket.core.request.handler.ListenerInterfaceRequestHandler.respond(ListenerInterfaceRequestHandler.java:236) >>>>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0] >>>>>>>>>>> at >>>>>>>>>>> org.apache.wicket.request.cycle.RequestCycle$HandlerExecutor.respond(RequestCycle.java:862) >>>>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0] >>>>>>>>>>> at >>>>>>>>>>> org.apache.wicket.request.RequestHandlerStack.execute(RequestHandlerStack.java:64) >>>>>>>>>>> [wicket-request-jar-6.16.0.jar:6.16.0] >>>>>>>>>>> at >>>>>>>>>>> org.apache.wicket.request.cycle.RequestCycle.execute(RequestCycle.java:261) >>>>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0] >>>>>>>>>>> at >>>>>>>>>>> org.apache.wicket.request.cycle.RequestCycle.processRequest(RequestCycle.java:218) >>>>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0] >>>>>>>>>>> at >>>>>>>>>>> org.apache.wicket.request.cycle.RequestCycle.processRequestAndDetach(RequestCycle.java:289) >>>>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0] >>>>>>>>>>> at >>>>>>>>>>> org.apache.wicket.protocol.ws.AbstractUpgradeFilter.processRequestCycle(AbstractUpgradeFilter.java:59) >>>>>>>>>>> [wicket-native-websocket-core-jar-6.16.0.jar:6.16.0] >>>>>>>>>>> at >>>>>>>>>>> org.apache.wicket.protocol.http.WicketFilter.processRequest(WicketFilter.java:201) >>>>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0] >>>>>>>>>>> at >>>>>>>>>>> org.apache.wicket.protocol.http.WicketFilter.doFilter(WicketFilter.java:282) >>>>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0] >>>>>>>>>>> at >>>>>>>>>>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:241) >>>>>>>>>>> [tomcat-embed-core.jar:7.0.55] >>>>>>>>>>> at >>>>>>>>>>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:208) >>>>>>>>>>> [tomcat-embed-core.jar:7.0.55] >>>>>>>>>>> at >>>>>>>>>>> org.red5.logging.LoggerContextFilter.doFilter(LoggerContextFilter.java:77) >>>>>>>>>>> [red5-server.jar:na] >>>>>>>>>>> at >>>>>>>>>>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:241) >>>>>>>>>>> [tomcat-embed-core.jar:7.0.55] >>>>>>>>>>> at >>>>>>>>>>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:208) >>>>>>>>>>> [tomcat-embed-core.jar:7.0.55] >>>>>>>>>>> at >>>>>>>>>>> org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:220) >>>>>>>>>>> [tomcat-embed-core.jar:7.0.55] >>>>>>>>>>> at >>>>>>>>>>> org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:122) >>>>>>>>>>> [tomcat-embed-core.jar:7.0.55] >>>>>>>>>>> at >>>>>>>>>>> org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:501) >>>>>>>>>>> [tomcat-embed-core.jar:7.0.55] >>>>>>>>>>> at >>>>>>>>>>> org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:171) >>>>>>>>>>> [tomcat-embed-core.jar:7.0.55] >>>>>>>>>>> at >>>>>>>>>>> org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:103) >>>>>>>>>>> [tomcat-embed-core.jar:7.0.55] >>>>>>>>>>> at >>>>>>>>>>> org.apache.catalina.valves.AccessLogValve.invoke(AccessLogValve.java:950) >>>>>>>>>>> [tomcat-embed-core.jar:7.0.55] >>>>>>>>>>> at >>>>>>>>>>> org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:116) >>>>>>>>>>> [tomcat-embed-core.jar:7.0.55] >>>>>>>>>>> at >>>>>>>>>>> org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:408) >>>>>>>>>>> [tomcat-embed-core.jar:7.0.55] >>>>>>>>>>> at >>>>>>>>>>> org.apache.coyote.http11.AbstractHttp11Processor.process(AbstractHttp11Processor.java:1070) >>>>>>>>>>> [tomcat-embed-core.jar:7.0.55] >>>>>>>>>>> at >>>>>>>>>>> org.apache.coyote.AbstractProtocol$AbstractConnectionHandler.process(AbstractProtocol.java:611) >>>>>>>>>>> [tomcat-embed-core.jar:7.0.55] >>>>>>>>>>> at >>>>>>>>>>> org.apache.tomcat.util.net.NioEndpoint$SocketProcessor.doRun(NioEndpoint.java:1736) >>>>>>>>>>> [tomcat-embed-core.jar:7.0.55] >>>>>>>>>>> at >>>>>>>>>>> org.apache.tomcat.util.net.NioEndpoint$SocketProcessor.run(NioEndpoint.java:1695) >>>>>>>>>>> [tomcat-embed-core.jar:7.0.55] >>>>>>>>>>> at >>>>>>>>>>> java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1145) >>>>>>>>>>> [na:1.7.0_65] >>>>>>>>>>> at >>>>>>>>>>> java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:615) >>>>>>>>>>> [na:1.7.0_65] >>>>>>>>>>> at >>>>>>>>>>> org.apache.tomcat.util.threads.TaskThread$WrappingRunnable.run(TaskThread.java:61) >>>>>>>>>>> [tomcat-embed-core.jar:7.0.55] >>>>>>>>>>> at java.lang.Thread.run(Thread.java:745) [na:1.7.0_65] >>>>>>>>>>> DEBUG 09-19 11:47:25.927 o.a.w.u.c.CookieUtils:266 >>>>>>>>>>> [http-nio-0.0.0.0-5080-exec-10] - Unable to find Cookie with >>>>>>>>>>> name=LoggedIn >>>>>>>>>>> and request URI=signin?1-1.IBehaviorListener.1-signin >>>>>>>>>>> DEBUG 09-19 11:47:25.929 o.a.w.f.FeedbackMessages:69 >>>>>>>>>>> [http-nio-0.0.0.0-5080-exec-10] - Adding feedback message >>>>>>>>>>> '[FeedbackMessage >>>>>>>>>>> message = "Invalid password", reporter = signin, level = ERROR]' >>>>>>>>>>> DEBUG 09-19 11:47:25.929 o.a.w.u.c.CookieUtils:266 >>>>>>>>>>> [http-nio-0.0.0.0-5080-exec-10] - Unable to find Cookie with >>>>>>>>>>> name=LoggedIn >>>>>>>>>>> and request URI=signin?1-1.IBehaviorListener.1-signin >>>>>>>>>>> DEBUG 09-19 11:47:25.930 o.a.wicket.Page:871 >>>>>>>>>>> [http-nio-0.0.0.0-5080-exec-10] - ending request for page [Page >>>>>>>>>>> class = >>>>>>>>>>> org.apache.openmeetings.web.pages.auth.SignInPage, id = 1, render >>>>>>>>>>> count = >>>>>>>>>>> 1], request >>>>>>>>>>> org.apache.wicket.protocol.http.servlet.ServletWebRequest@a6e74b >>>>>>>>>>> DEBUG 09-19 11:47:25.930 o.a.wicket.Page:871 >>>>>>>>>>> [http-nio-0.0.0.0-5080-exec-10] - ending request for page [Page >>>>>>>>>>> class = >>>>>>>>>>> org.apache.openmeetings.web.pages.auth.SignInPage, id = 1, render >>>>>>>>>>> count = >>>>>>>>>>> 1], request >>>>>>>>>>> org.apache.wicket.protocol.http.servlet.ServletWebRequest@a6e74b >>>>>>>>>>> DEBUG 09-19 11:47:25.930 o.a.wicket.Page:871 >>>>>>>>>>> [http-nio-0.0.0.0-5080-exec-10] - ending request for page [Page >>>>>>>>>>> class = >>>>>>>>>>> org.apache.openmeetings.web.pages.auth.SignInPage, id = 1, render >>>>>>>>>>> count = >>>>>>>>>>> 1], request >>>>>>>>>>> org.apache.wicket.protocol.http.servlet.ServletWebRequest@a6e74b >>>>>>>>>>> DEBUG 09-19 11:47:25.988 >>>>>>>>>>> o.a.w.p.AsynchronousDataStore$PageSavingRunnable:354 >>>>>>>>>>> [Wicket-PageSavingThread] - Saving asynchronously: Entry >>>>>>>>>>> [sessionId=2A10AA69C3E771FF51FABD4D26A20559, pageId=1]... >>>>>>>>>>> DEBUG 09-19 11:47:25.988 o.a.w.p.DiskDataStore:186 >>>>>>>>>>> [Wicket-PageSavingThread] - Storing data for page with id '1' in >>>>>>>>>>> session >>>>>>>>>>> with id '2A10AA69C3E771FF51FABD4D26A20559' >>>>>>>>>>> DEBUG 09-19 11:47:25.988 o.a.w.p.PageAccessSynchronizer:195 >>>>>>>>>>> [http-nio-0.0.0.0-5080-exec-10] - 'http-nio-0.0.0.0-5080-exec-10' >>>>>>>>>>> released >>>>>>>>>>> lock to page with id '1' >>>>>>>>>>> DEBUG 09-19 11:47:25.988 o.a.w.p.PageAccessSynchronizer:346 >>>>>>>>>>> [http-nio-0.0.0.0-5080-exec-10] - 'http-nio-0.0.0.0-5080-exec-10' >>>>>>>>>>> notifying >>>>>>>>>>> blocked threads >>>>>>>>>>> >>>>>>>>>>> >>>>>>>>>>> >>>>>>>>>>> >>>>>>>>>>> >>>>>>>>>>> >>>>>>>>>>> >>>>>>>>>>> >>>>>>>>>>> >>>>>>>>>>> And here is my conf file : >>>>>>>>>>> >>>>>>>>>>> # >>>>>>>>>>> # Licensed to the Apache Software Foundation (ASF) under one >>>>>>>>>>> # or more contributor license agreements. See the NOTICE file >>>>>>>>>>> # distributed with this work for additional information >>>>>>>>>>> # regarding copyright ownership. The ASF licenses this file >>>>>>>>>>> # to you under the Apache License, Version 2.0 (the >>>>>>>>>>> # "License"); you may not use this file except in compliance >>>>>>>>>>> # with the License. You may obtain a copy of the License at >>>>>>>>>>> # >>>>>>>>>>> # http://www.apache.org/licenses/LICENSE-2.0 >>>>>>>>>>> # >>>>>>>>>>> # Unless required by applicable law or agreed to in writing, >>>>>>>>>>> # software distributed under the License is distributed on an >>>>>>>>>>> # "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY >>>>>>>>>>> # KIND, either express or implied. See the License for the >>>>>>>>>>> # specific language governing permissions and limitations >>>>>>>>>>> # under the License. >>>>>>>>>>> # >>>>>>>>>>> #ConfigurationFile for LDAP Auth >>>>>>>>>>> #ConfigKey 'ldap_config_path' must be set in DataBase >>>>>>>>>>> Configration of OM and point to this file >>>>>>>>>>> #o.becherer,14.01.2009 >>>>>>>>>>> #LDAP URL >>>>>>>>>>> # This is the URL used to access your LDAP server. >>>>>>>>>>> # if you want to use "ldaps://" links, please be aware that you >>>>>>>>>>> need to import your CA certificate >>>>>>>>>>> # to a java keystore and add the -Djavax.net.ssl.keyStore, >>>>>>>>>>> -Djavax.net.ssl.keyStorePassword, >>>>>>>>>>> # -Djavax.net.ssl.trustStore and >>>>>>>>>>> -Djavax.net.ssl.trustStorePassword parameters to your >>>>>>>>>>> # JAVA_OPT environment >>>>>>>>>>> ldap_conn_host=@IP_of_my_AD >>>>>>>>>>> ldap_conn_port=389 >>>>>>>>>>> ldap_conn_secure=false >>>>>>>>>>> # Login distinguished name (DN) for Authentication on LDAP >>>>>>>>>>> Server - keep empty if not required >>>>>>>>>>> # Use full qualified LDAP DN >>>>>>>>>>> >>>>>>>>>>> ldap_admin_dn=CN=adconnect,OU=Comptes,OU=SI,OU=Services,OU=COMPANY,DC=mycompany,DC=priv >>>>>>>>>>> # Loginpass for Authentication on LDAP Server - keep empty if >>>>>>>>>>> not required >>>>>>>>>>> ldap_passwd=pass_for_user_adconnect >>>>>>>>>>> # base to search for userdata(of user, that wants to login) >>>>>>>>>>> ldap_search_base=DC=mycompany,DC=priv >>>>>>>>>>> # Fieldnames (can differ between Ldap servers) >>>>>>>>>>> ldap_search_query=(uid=%s) >>>>>>>>>>> # the scope of the search might be: OBJECT, ONELEVEL, SUBTREE >>>>>>>>>>> ldap_search_scope=ONELEVEL >>>>>>>>>>> # Ldap auth type(NONE, SEARCHANDBIND, SIMPLEBIND) >>>>>>>>>>> # When using SIMPLEBIND a simple bind is performed on the LDAP >>>>>>>>>>> server to check user authentication >>>>>>>>>>> # When using NONE, the Ldap server is not used for >>>>>>>>>>> authentication >>>>>>>>>>> ldap_auth_type=SIMPLEBIND >>>>>>>>>>> # userDN format, will be used to bind if >>>>>>>>>>> ldap_auth_type=SIMPLEBIND >>>>>>>>>>> # might be used to get provisionningDn in case >>>>>>>>>>> ldap_auth_type=NONE >>>>>>>>>>> ldap_userdn_format=uid=%s,OU=COMPANY,DC=mycompany,DC=priv >>>>>>>>>>> # Ldap provisioning type(NONE, AUTOCREATE, AUTOUPDATE) >>>>>>>>>>> ldap_provisionning=AUTOCREATE >>>>>>>>>>> # Set this to 'true' if you want to use admin_dn to get user >>>>>>>>>>> attributes >>>>>>>>>>> # If any other value is set, user_dn will be used >>>>>>>>>>> ldap_use_admin_to_get_attrs=true >>>>>>>>>>> # Ldap-password synchronization to OM DB >>>>>>>>>>> # Set this to 'true' if you want OM to synchronize the user >>>>>>>>>>> Ldap-password to OM's internal DB >>>>>>>>>>> # If you want to disable the feature, set this to any other >>>>>>>>>>> string. >>>>>>>>>>> # Defautl value is 'true' >>>>>>>>>>> ldap_sync_password_to_om=true >>>>>>>>>>> # Ldap user attributes mapping >>>>>>>>>>> # Set the following internal OM user attributes to their >>>>>>>>>>> corresponding Ldap-attribute >>>>>>>>>>> ldap_user_attr_lastname=sn >>>>>>>>>>> ldap_user_attr_firstname=givenName >>>>>>>>>>> ldap_user_attr_mail=mail >>>>>>>>>>> ldap_user_attr_street=streetAddress >>>>>>>>>>> ldap_user_attr_additionalname=description >>>>>>>>>>> ldap_user_attr_fax=facsimileTelephoneNumber >>>>>>>>>>> ldap_user_attr_zip=postalCode >>>>>>>>>>> ldap_user_attr_country=co >>>>>>>>>>> ldap_user_attr_town=l >>>>>>>>>>> ldap_user_attr_phone=telephoneNumber >>>>>>>>>>> # optional, only absolute URLs make sense >>>>>>>>>>> #ldap_user_picture_uri=picture_uri >>>>>>>>>>> # optional >>>>>>>>>>> # the timezone has to match any timezone available in Java, >>>>>>>>>>> otherwise the timezone defined in the value of >>>>>>>>>>> # the conf_key "default.timezone" in OpenMeetings >>>>>>>>>>> "configurations" table >>>>>>>>>>> #ldap_user_timezone=timezone >>>>>>>>>>> # Ldap ignore upper/lower case, convert all input to lower case >>>>>>>>>>> ldap_use_lower_case=false >>>>>>>>>>> >>>>>>>>>>> >>>>>>>>>>> >>>>>>>>>>> Thanks a lot for your help. >>>>>>>>>>> >>>>>>>>>>> Greg. >>>>>>>>>>> >>>>>>>>>>> >>>>>>>>>>> >>>>>>>>>>> >>>>>>>>>>> 2014-09-18 17:52 GMT+02:00 Maxim Solodovnik < >>>>>>>>>>> [email protected]>: >>>>>>>>>>> >>>>>>>>>>>> please check this URL: >>>>>>>>>>>> http://kb.juniper.net/InfoCenter/index?page=content&id=KB17098 >>>>>>>>>>>> According to it you have "User not found" >>>>>>>>>>>> >>>>>>>>>>>> could you provide more ldap related logs? >>>>>>>>>>>> it might be Admin not found or user entered in login form not >>>>>>>>>>>> found depending on your settings >>>>>>>>>>>> >>>>>>>>>>>> On 18 September 2014 21:43, Grégory Mangeney < >>>>>>>>>>>> [email protected]> wrote: >>>>>>>>>>>> >>>>>>>>>>>>> Hello, It's me again... >>>>>>>>>>>>> I'm back. >>>>>>>>>>>>> Now I have a new problem to connect to my AD... >>>>>>>>>>>>> In log file it is write : *ERROR ......... Not authenticated* >>>>>>>>>>>>> witch is a quite better message than before but after that it >>>>>>>>>>>>> is write : *LdapErr: DSID-0C090334, comment: >>>>>>>>>>>>> AcceptSecurityContext error, data 525, vece\00 at........* >>>>>>>>>>>>> >>>>>>>>>>>>> I try to understand my problem but "AcceptSecurityContext >>>>>>>>>>>>> error" seems to speack about a security problem. >>>>>>>>>>>>> I have set my ldap_conn_secure=false in om_ldap.conf. >>>>>>>>>>>>> I don't understand what could be my problem. >>>>>>>>>>>>> >>>>>>>>>>>>> thanks a lot for your ideas. >>>>>>>>>>>>> >>>>>>>>>>>>> Greg. >>>>>>>>>>>>> 2014-09-18 15:37 GMT+02:00 Grégory Mangeney < >>>>>>>>>>>>> [email protected]>: >>>>>>>>>>>>> >>>>>>>>>>>>>> Ok, I finally understand that I have to put the filename and >>>>>>>>>>>>>> only the filename without >>>>>>>>>>>>>> */usr/lib/red5/webapps/openmeetings/conf/* >>>>>>>>>>>>>> >>>>>>>>>>>>>> Now I have a new message whitch said me invalid password... >>>>>>>>>>>>>> It's quite better... >>>>>>>>>>>>>> Thank you... >>>>>>>>>>>>>> I could continue to try to set it now. >>>>>>>>>>>>>> bye >>>>>>>>>>>>>> >>>>>>>>>>>>>> Greg. >>>>>>>>>>>>>> >>>>>>>>>>>>>> >>>>>>>>>>>>>> >>>>>>>>>>>>>> 2014-09-18 15:06 GMT+02:00 Maxim Solodovnik < >>>>>>>>>>>>>> [email protected]>: >>>>>>>>>>>>>> >>>>>>>>>>>>>>> you need to write file name relative to >>>>>>>>>>>>>>> webapps/openmeetings/conf folder >>>>>>>>>>>>>>> in your case *om_ldap.cfg *should be specified >>>>>>>>>>>>>>> >>>>>>>>>>>>>>> On 18 September 2014 20:04, Grégory Mangeney < >>>>>>>>>>>>>>> [email protected]> wrote: >>>>>>>>>>>>>>> >>>>>>>>>>>>>>>> Thank you very much but I don't understand very well. >>>>>>>>>>>>>>>> I think I put the right information... >>>>>>>>>>>>>>>> Do you want to say that I have to write : >>>>>>>>>>>>>>>> */usr/lib/red5/webapps/openmeetings/conf/* without the >>>>>>>>>>>>>>>> filename *om_ldap.cfg* at the end? >>>>>>>>>>>>>>>> Thanks for your help >>>>>>>>>>>>>>>> Greg >>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>> 2014-09-18 14:52 GMT+02:00 Maxim Solodovnik < >>>>>>>>>>>>>>>> [email protected]>: >>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>> AFAIK the path should be relative to >>>>>>>>>>>>>>>>> /usr/lib/red5/webapps/openmeetings/conf >>>>>>>>>>>>>>>>> Please change this path >>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>> Additionally you can file JIRA issue to add check to the >>>>>>>>>>>>>>>>> Admin screen (so path will be validated on enter) >>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>> On 18 September 2014 19:44, Grégory Mangeney < >>>>>>>>>>>>>>>>> [email protected]> wrote: >>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>> Hello, >>>>>>>>>>>>>>>>>> I have the same problem: I could not connect with AD. >>>>>>>>>>>>>>>>>> I have the domain at the login screen, >>>>>>>>>>>>>>>>>> I am using the 3.0.3. >>>>>>>>>>>>>>>>>> I found this line in my log file :* ERROR 09-18 >>>>>>>>>>>>>>>>>> 14:28:33.994 o.a.o.l.LdapLoginManagement:147 >>>>>>>>>>>>>>>>>> [http-nio-0.0.0.0-5080-exec-4] >>>>>>>>>>>>>>>>>> - Error on LdapLogin : Configurationdata couldnt be >>>>>>>>>>>>>>>>>> retrieved!* >>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>> This seem strange because in my LDAP config (in >>>>>>>>>>>>>>>>>> openmeetings Administration/LDAP menu), I put the correct >>>>>>>>>>>>>>>>>> path in the >>>>>>>>>>>>>>>>>> "Config file name" : >>>>>>>>>>>>>>>>>> /usr/lib/red5/webapps/openmeetings/conf/om_ldap.cfg >>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>> Why is this error appeared : *Configurationdata couldnt >>>>>>>>>>>>>>>>>> be retrieved! *??? >>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>> Thanks a lot >>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>> Greg >>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>> 2014-09-17 12:52 GMT+02:00 Maxim Solodovnik < >>>>>>>>>>>>>>>>>> [email protected]>: >>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>> great :) >>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>> On 17 September 2014 17:46, Teddy Jayasaputra < >>>>>>>>>>>>>>>>>>> [email protected]> wrote: >>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>> Dear Maxim, >>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>> After close look to console log. >>>>>>>>>>>>>>>>>>>> We found this error : >>>>>>>>>>>>>>>>>>>> ERROR 09-17 17:28:33.278 LdapLoginManagement.java >>>>>>>>>>>>>>>>>>>> 135070 285 org.apache.openmeetings.ldap.LdapLoginManagement >>>>>>>>>>>>>>>>>>>> [http-nio-0.0.0.0-5080-exec-6] - User not found in OM DB >>>>>>>>>>>>>>>>>>>> and >>>>>>>>>>>>>>>>>>>> Provisionning.AUTOCREATE was not set >>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>> After we change ldapconfiguration file from >>>>>>>>>>>>>>>>>>>> ldap_provisionning=NONE to AUTOCREATE we can login using >>>>>>>>>>>>>>>>>>>> AD. >>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>> thanks. >>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>> Best Regards, >>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>> -Teddy Jayasaputra- >>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>> On 9/17/2014 4:25 PM, Maxim Solodovnik wrote: >>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>> do you have your AD domain on the login screen? >>>>>>>>>>>>>>>>>>>> are there errors in the log? >>>>>>>>>>>>>>>>>>>> what OM version are you using? >>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>> On 17 September 2014 16:02, ARI HENDIAWAN < >>>>>>>>>>>>>>>>>>>> [email protected]> wrote: >>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>> Dear all, >>>>>>>>>>>>>>>>>>>>> please we need extra information how to integrate >>>>>>>>>>>>>>>>>>>>> openmeetings 3.0.3 with AD? >>>>>>>>>>>>>>>>>>>>> we already setting on ldap.conf and still problem.. if >>>>>>>>>>>>>>>>>>>>> we saw on AD , user that want sign-in openmeetings >>>>>>>>>>>>>>>>>>>>> success, but on login >>>>>>>>>>>>>>>>>>>>> menu openmeetings shown error "invalid password" >>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>> Tks >>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>> -- >>>>>>>>>>>>>>>>>>>>> Disclaimer : >>>>>>>>>>>>>>>>>>>>> Confidential information may be contained in this >>>>>>>>>>>>>>>>>>>>> message. If you are not the intended recipient, you are >>>>>>>>>>>>>>>>>>>>> strictly prohibited >>>>>>>>>>>>>>>>>>>>> and may be unlawful to use, copy, store, distribute, >>>>>>>>>>>>>>>>>>>>> disclose or >>>>>>>>>>>>>>>>>>>>> communicate any part of it to others and you are obliged >>>>>>>>>>>>>>>>>>>>> to return it >>>>>>>>>>>>>>>>>>>>> immediately to sender or notify us and delete the e-mail >>>>>>>>>>>>>>>>>>>>> and any >>>>>>>>>>>>>>>>>>>>> attachments from your system. Opinions, conclusions and >>>>>>>>>>>>>>>>>>>>> other information >>>>>>>>>>>>>>>>>>>>> in this e-mail that do not relate to the official >>>>>>>>>>>>>>>>>>>>> business of any PT Bank >>>>>>>>>>>>>>>>>>>>> OCBC NISP Tbk shall be understood as neither given nor >>>>>>>>>>>>>>>>>>>>> endorsed by it. No >>>>>>>>>>>>>>>>>>>>> assumption of responsibility or liability whatsoever is >>>>>>>>>>>>>>>>>>>>> undertaken by PT >>>>>>>>>>>>>>>>>>>>> Bank OCBC NISP Tbk in respect of prohibited and >>>>>>>>>>>>>>>>>>>>> unauthorised use by any >>>>>>>>>>>>>>>>>>>>> other person. >>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>> -- >>>>>>>>>>>>>>>>>>>> WBR >>>>>>>>>>>>>>>>>>>> Maxim aka solomax >>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>>> -- >>>>>>>>>>>>>>>>>>>> Disclaimer : >>>>>>>>>>>>>>>>>>>> Confidential information may be contained in this >>>>>>>>>>>>>>>>>>>> message. If you are not the intended recipient, you are >>>>>>>>>>>>>>>>>>>> strictly prohibited >>>>>>>>>>>>>>>>>>>> and may be unlawful to use, copy, store, distribute, >>>>>>>>>>>>>>>>>>>> disclose or >>>>>>>>>>>>>>>>>>>> communicate any part of it to others and you are obliged >>>>>>>>>>>>>>>>>>>> to return it >>>>>>>>>>>>>>>>>>>> immediately to sender or notify us and delete the e-mail >>>>>>>>>>>>>>>>>>>> and any >>>>>>>>>>>>>>>>>>>> attachments from your system. Opinions, conclusions and >>>>>>>>>>>>>>>>>>>> other information >>>>>>>>>>>>>>>>>>>> in this e-mail that do not relate to the official business >>>>>>>>>>>>>>>>>>>> of any PT Bank >>>>>>>>>>>>>>>>>>>> OCBC NISP Tbk shall be understood as neither given nor >>>>>>>>>>>>>>>>>>>> endorsed by it. No >>>>>>>>>>>>>>>>>>>> assumption of responsibility or liability whatsoever is >>>>>>>>>>>>>>>>>>>> undertaken by PT >>>>>>>>>>>>>>>>>>>> Bank OCBC NISP Tbk in respect of prohibited and >>>>>>>>>>>>>>>>>>>> unauthorised use by any >>>>>>>>>>>>>>>>>>>> other person. >>>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>>> -- >>>>>>>>>>>>>>>>>>> WBR >>>>>>>>>>>>>>>>>>> Maxim aka solomax >>>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>>> -- >>>>>>>>>>>>>>>>> WBR >>>>>>>>>>>>>>>>> Maxim aka solomax >>>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>> >>>>>>>>>>>>>>>> >>>>>>>>>>>>>>> >>>>>>>>>>>>>>> >>>>>>>>>>>>>>> -- >>>>>>>>>>>>>>> WBR >>>>>>>>>>>>>>> Maxim aka solomax >>>>>>>>>>>>>>> >>>>>>>>>>>>>> >>>>>>>>>>>>>> >>>>>>>>>>>>> >>>>>>>>>>>> >>>>>>>>>>>> >>>>>>>>>>>> -- >>>>>>>>>>>> WBR >>>>>>>>>>>> Maxim aka solomax >>>>>>>>>>>> >>>>>>>>>>> >>>>>>>>>>> >>>>>>>>>> >>>>>>>>>> >>>>>>>>>> -- >>>>>>>>>> WBR >>>>>>>>>> Maxim aka solomax >>>>>>>>>> >>>>>>>>> >>>>>>>>> >>>>>>>> >>>>>>>> >>>>>>>> -- >>>>>>>> WBR >>>>>>>> Maxim aka solomax >>>>>>>> >>>>>>> >>>>>>> >>>>> >>>> >>> >>> >>> -- >>> WBR >>> Maxim aka solomax >>> >> >> >
