Hi Emmanuel
Thanks for your answer. I could solve my problem...!
As BaseDN I had to specify
cn=Administrator,cn=users,dc=<domain>,dc=<country>. Please note the "cn"
for the "users" container (I expected "ou")...
If other tormented Active Directory users exist out there, here my
configuration of application.xml, maybe it helps anybody:
<component>
<role>org.codehaus.plexus.redback.common.ldap.connection.LdapConnectionF
actory</role>
<role-hint>configurable</role-hint>
<implementation>org.codehaus.plexus.redback.common.ldap.connection.Confi
gurableLdapConnectionFactory</implementation>
<description></description>
<configuration>
<hostname>xxx.xxx.xxx.xxx</hostname>
<port>389</port>
<baseDn>ou=users,ou=(some ou),dc=(domain),dc=(country)</baseDn>
<contextFactory>com.sun.jndi.ldap.LdapCtxFactory</contextFactory>
<password>(Admin password)</password>
<bindDn>cn=Administrator,cn=users,dc=(company),dc=(country)</bindDn>
</configuration>
</component>
<component>
<role>org.codehaus.plexus.redback.common.ldap.UserMapper</role>
<role-hint>ldap</role-hint>
<implementation>org.codehaus.plexus.redback.common.ldap.LdapUserMapper</
implementation>
<description></description>
<configuration>
<email-attribute>mail</email-attribute>
<full-name-attribute>name</full-name-attribute>
<password-attribute>userPassword</password-attribute>
<user-id-attribute>mailNickname</user-id-attribute>
<user-base-dn>ou=users,ou=(some
ou),dc=(company),dc=(country)</user-base-dn>
<user-object-class>user</user-object-class>
</configuration>
</component>
Patric
On Mon, Jul 21, 2008 at 6:09 PM, Emmanuel Venisse
<mailto:[EMAIL PROTECTED]> wrote:
> I don't have an AD to test but an other LDAP and Continuum works
correctly.
>
> It isn't Redback that doean't like it but javax.naming API. For the
moment, I can't see a reason of this error.
>
> Emmanuel
>
> On Mon, Jul 21, 2008 at 2:05 PM, Lichtsteiner Patric lip
<[EMAIL PROTECTED]> wrote:
>
> > Hi all
> >
> > I'm trying to configure LDAP authentication against an Active
> > Directory using LDAP. I followed the doc at
> >
http://continuum.apache.org/docs/1.1/administrator_guides/security/ldap.
> >
html<http://continuum.apache.org/docs/1.1/administrator_guides/security/
ldap.html>.
> > As "bindDn" I used a login name like "[EMAIL PROTECTED]" (or domain\user).
> > Unfortunately Plexus does not like my bindDn and says:
> > <snip>
> > Caused by: javax.naming.InvalidNameException: Invalid name:
> > [EMAIL PROTECTED]
> > at
> > javax.naming.ldap.Rfc2253Parser.doParse(Rfc2253Parser.java:86)
> > at
> > javax.naming.ldap.Rfc2253Parser.parseDn(Rfc2253Parser.java:45)
> > at javax.naming.ldap.LdapName.parse(LdapName.java:772)
> > at javax.naming.ldap.LdapName.<init>(LdapName.java:108)
> > at
> >
org.codehaus.plexus.redback.common.ldap.connection.LdapConnectionConfi
> > gu
> > ration.setBindDn(LdapConnectionConfiguration.java:219)
> > at
> >
org.codehaus.plexus.redback.common.ldap.connection.ConfigurableLdapCon
> > ne
> > ctionFactory.initialize(ConfigurableLdapConnectionFactory.java:105)
> > ... 140 more
> > </snip>
> >
> > Has anybody experiences configuring Continuum to authenticate
against
> > an AD?
> >
> > Thanks
> > Patric
