Active Directory, JNDI, EOModel

Fri, 21 Jul 2017 12:10:47 -0700 

Has anyone used the JNDI plugin to model Active Directory? I’ve used it with a 
lot of success with other ldap directories but I’m running into a problem with 
a pretty simple model (which I’m sure has to do with AD’s implementation).

I reverse engineered our AD (Server 2016) instance with no problem - and only 
included Person and User in my model. However, when I try to do a simple fetch 
of all User (or Person) I get sth like:

Jul 21 11:11:23 GSEISNetTestApplication[54777] DEBUG NSLog  - Waiting for 
requests...
Jul 21 11:11:24 GSEISNetTestApplication[54777] WARN  
er.extensions.eof.ERXModelGroup  - Clearing previous class descriptions
Jul 21 11:11:24 GSEISNetTestApplication[54777] DEBUG NSLog  - Context factory 
cache is already clear
Jul 21 11:11:24 GSEISNetTestApplication[54777] DEBUG NSLog  - Connecting: 
{plugInClassName = "com.webobjects.jndiadaptor.LDAPPlugIn"; timeout = "3600"; 
scope = "Subtree"; username = "CN="Application Server",OU="Service 
Accounts",OU=ETU,DC=gseisnet,DC=ucla,DC=edu"; authenticationMethod = "Simple"; 
password = "<omitted from log>"; serverUrl = "ldap://gseisnet.ucla.edu:389";; 
initialContextFactory = "com.sun.jndi.ldap.LdapCtxFactory"; }
Jul 21 11:11:24 GSEISNetTestApplication[54777] DEBUG NSLog  - Creating plug-in 
com.webobjects.jndiadaptor.LDAPPlugIn for JNDIAdaptor@1084219182
Jul 21 11:11:24 GSEISNetTestApplication[54777] WARN  NSLog  - Cannot search 
(&(objectClass=user))
[2017-7-21 11:11:24 PDT] <WorkerThread0> javax.naming.NameNotFoundException: 
[LDAP: error code 32 - 0000208D: NameErr: DSID-0310021B, problem 2001 
(NO_OBJECT), data 0, best match of:
        ''
]; remaining name ''

When I use Directory Studio to perform what appears to be the same search, 
filtering on objectClass user, I get the results I would expect. I’m using the 
same bind credentials in both as well. One guess I have is the search base, 
which I have set to the base DN in Directory Studio. Is there a way to get a 
handle on the JNDI adaptor and set the search base globally in case it isn’t 
right?

Any other ideas? I know I’m probably off the reservation here.

Tim
UCLA GSE&IS
 _______________________________________________
Do not post admin requests to the list. They will be ignored.
Webobjects-dev mailing list      (Webobjects-dev@lists.apple.com)
Help/Unsubscribe/Update your Subscription:
https://lists.apple.com/mailman/options/webobjects-dev/archive%40mail-archive.com

This email sent to arch...@mail-archive.com

Reply via email to