Yeah, I’m not using the model for authentication to AD, I’m intending to use simply to return EO's from AD. I’m encountering the error below when I simply try:
ADUser.fetchAllADUsers(pageEditingContext()); The WARN log seems to indicate that I can’t search objectClass “user.” But it is modeled and was reverse engineered. I’m unsure why that would be considering I haven’t had that issue before with other ldap services. Tim > On Jul 21, 2017, at 12:50 PM, Theodore Petrosky <tedp...@yahoo.com> wrote: > > did you see this: > > https://www.slideshare.net/wocommunity/third-party-auth-in-webobjects > > I was looking to see if there was a video to go along with the slides but > didn’t find one. > > >> On Jul 21, 2017, at 3:10 PM, Tim Worman <li...@thetimmy.com> wrote: >> >> Has anyone used the JNDI plugin to model Active Directory? I’ve used it with >> a lot of success with other ldap directories but I’m running into a problem >> with a pretty simple model (which I’m sure has to do with AD’s >> implementation). >> >> I reverse engineered our AD (Server 2016) instance with no problem - and >> only included Person and User in my model. However, when I try to do a >> simple fetch of all User (or Person) I get sth like: >> >> Jul 21 11:11:23 GSEISNetTestApplication[54777] DEBUG NSLog - Waiting for >> requests... >> Jul 21 11:11:24 GSEISNetTestApplication[54777] WARN >> er.extensions.eof.ERXModelGroup - Clearing previous class descriptions >> Jul 21 11:11:24 GSEISNetTestApplication[54777] DEBUG NSLog - Context >> factory cache is already clear >> Jul 21 11:11:24 GSEISNetTestApplication[54777] DEBUG NSLog - Connecting: >> {plugInClassName = "com.webobjects.jndiadaptor.LDAPPlugIn"; timeout = >> "3600"; scope = "Subtree"; username = "CN="Application Server",OU="Service >> Accounts",OU=ETU,DC=gseisnet,DC=ucla,DC=edu"; authenticationMethod = >> "Simple"; password = "<omitted from log>"; serverUrl = >> "ldap://gseisnet.ucla.edu:389";; initialContextFactory = >> "com.sun.jndi.ldap.LdapCtxFactory"; } >> Jul 21 11:11:24 GSEISNetTestApplication[54777] DEBUG NSLog - Creating >> plug-in com.webobjects.jndiadaptor.LDAPPlugIn for JNDIAdaptor@1084219182 >> Jul 21 11:11:24 GSEISNetTestApplication[54777] WARN NSLog - Cannot search >> (&(objectClass=user)) >> [2017-7-21 11:11:24 PDT] <WorkerThread0> javax.naming.NameNotFoundException: >> [LDAP: error code 32 - 0000208D: NameErr: DSID-0310021B, problem 2001 >> (NO_OBJECT), data 0, best match of: >> '' >> ]; remaining name '' >> >> When I use Directory Studio to perform what appears to be the same search, >> filtering on objectClass user, I get the results I would expect. I’m using >> the same bind credentials in both as well. One guess I have is the search >> base, which I have set to the base DN in Directory Studio. Is there a way to >> get a handle on the JNDI adaptor and set the search base globally in case it >> isn’t right? >> >> Any other ideas? I know I’m probably off the reservation here. >> >> Tim >> UCLA GSE&IS >> _______________________________________________ >> Do not post admin requests to the list. They will be ignored. >> Webobjects-dev mailing list (Webobjects-dev@lists.apple.com) >> Help/Unsubscribe/Update your Subscription: >> https://lists.apple.com/mailman/options/webobjects-dev/tedpet5%40yahoo.com >> >> This email sent to tedp...@yahoo.com > _______________________________________________ Do not post admin requests to the list. They will be ignored. Webobjects-dev mailing list (Webobjects-dev@lists.apple.com) Help/Unsubscribe/Update your Subscription: https://lists.apple.com/mailman/options/webobjects-dev/archive%40mail-archive.com This email sent to arch...@mail-archive.com
