Are you trying to manually import users to cloudstack? Or did you link ldap to a domain? If its the later, users will get automatically imported to the domain once its linked.In this case, check for the values in ldap_trust_map.Here is a demo https://www.youtube.com/watch?v=GI9b9MiOQkw ~ Rajanihttp://cloudplatform.accelerite.com/ On July 22, 2016 at 7:52 PM, Stephan Seitz ([email protected]) wrote:Hi guys! We've currently setup acs 4.8 and trying to integrate theauthentication for different domains with different kind of grouOfNamesusing openldap. Users are getting imported, but are unable to authenticate withfollowing log:
2016-07-22 16:10:50,523 INFO [o.a.c.l.LdapContextFactory] (catalina-exec-19:ctx-25b685df) (logid:f6a56bdc) LDAP SSL enabled.2016-07-22 16:10:50,527 DEBUG [o.a.c.l.LdapContextFactory] (catalina-exec-19:ctx-25b685df) (logid:f6a56bdc) initializing ldap with providerurl: ldaps://XXXXX:6362016-07-22 16:10:50,589 DEBUG [o.a.c.l.LdapManagerImpl] (catalina-exec-19:ctx-25b685df) (logid:f6a56bdc) ldap Exception: javax.naming.NamingException: No user found for basednou=Groups,dc=XXXX,dc=YY and searchString(&(objectClass=inetOrgPerson)(uid=NNNNN)) Interestingly enough, the basedn is expanded to ou=Groups,.... rest ofthe dn is ok. I'ld expecting an ldapquery with the given basedn instead ofou=Groups,basedn... could someone please shed some light where or how to configure thissearchfilter? we double-checked the entries for:ldap.basedn set to our baseldap.group.object groupOfNamesldap.group.user.uniquemenber member as said, importing the users is working as expected. Thanks in advance! cheers, - Stephan
