manifoldcf-user mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Karl Wright <daddy...@gmail.com>
Subject Re: ldap authentication with crawler ui
Date Thu, 13 Jul 2017 12:17:14 GMT
I wish I was familiar enough with the code for this feature that I could be
of help.  Nobody seems to have responded either.  It *is* summer and many
people have vacations.

I think, therefore, you're going to wind up needing to debug this
yourself.  There's no magic; it's just using the javax packages for LDAP
communication -- but obviously there's something not set up right and I
don't know what it is.  It may be a default parameter value or some such.

Thanks,
Karl


On Wed, Jul 12, 2017 at 11:29 AM, Karl Wright <daddywri@gmail.com> wrote:

> Have any users out there made use of LDAP crawler-UI authentication?  If
> so, can you have a look at Theodor's configuration and setup?
>
> Karl
>
>
> On Wed, Jul 12, 2017 at 10:07 AM, Theodor Carp <theodor.carp@gmail.com>
> wrote:
>
>> Hi,
>>
>> Using the below settings:
>>
>> <property name="org.apache.manifoldcf.authimplementationclass"
>> value="org.apache.manifoldcf.core.auth.LdapAuthenticator" />
>> <property name="org.apache.manifoldcf.login.authenticationtype"
>> value="LDAP-AUTHENTICATION" />
>> <property name="org.apache.manifoldcf.login.ldap.providerurl" value="
>> ldap://hdp01.local:389" />
>> <property name="org.apache.manifoldcf.login.ldap.securityauthenticationtype"
>> value="simple" />
>> <property name="org.apache.manifoldcf.login.ldap.securityprincipal"
>> value="uid=$(userID),ou=Users,dc=local" />
>> <property name="org.apache.manifoldcf.login.ldap.contextsearchquery"
>> value="(uid=$(userID))" />
>> <property name="org.apache.manifoldcf.login.ldap.searchattribute"
>> value="uid" />
>>
>> I'm getting errors like:
>>
>> ERROR 2017-07-12 15:20:32,951 (qtp1295083508-17) - User not authenticated
>> = authenticating_user exception = [LDAP: error code 32 - No Such Object]
>> javax.naming.NameNotFoundException: [LDAP: error code 32 - No Such
>> Object]; remaining name ''
>> at com.sun.jndi.ldap.LdapCtx.mapErrorCode(LdapCtx.java:3161)
>> at com.sun.jndi.ldap.LdapCtx.processReturnCode(LdapCtx.java:3082)
>> at com.sun.jndi.ldap.LdapCtx.processReturnCode(LdapCtx.java:2888)
>> [...]
>> FATAL 2017-07-12 15:20:32,956 (qtp1295083508-17) - Exception logging in:
>> User not authenticated: [LDAP: error code 32 - No Such Object]
>> org.apache.manifoldcf.core.interfaces.ManifoldCFException: User not
>> authenticated: [LDAP: error code 32 - No Such Object]
>> at org.apache.manifoldcf.core.auth.LdapAuthenticator.verifyLogi
>> n(LdapAuthenticator.java:162)
>> at org.apache.manifoldcf.core.auth.LdapAuthenticator.verifyUILo
>> gin(LdapAuthenticator.java:107)
>> at org.apache.manifoldcf.ui.beans.AdminProfile.login(AdminProfi
>> le.java:103)
>> [...]
>> Caused by: javax.naming.NameNotFoundException: [LDAP: error code 32 - No
>> Such Object]; remaining name ''
>> at com.sun.jndi.ldap.LdapCtx.mapErrorCode(LdapCtx.java:3161)
>> at com.sun.jndi.ldap.LdapCtx.processReturnCode(LdapCtx.java:3082)
>> at com.sun.jndi.ldap.LdapCtx.processReturnCode(LdapCtx.java:2888)
>>
>> But if do maual ldapsearch basicaly using the same settings: e.g.:
>>
>> ldapsearch -x -H ldap://hdp01.local -b "dc=local" -s sub
>> '(uid=authenticating_user)'
>>
>> Or
>>
>> ldapsearch -x -D "uid=authenticating_user1,ou=Users,dc=local" -W -H
>> ldap://hdp01.local -b "dc=local" -s sub 'uid=authenticating_user'
>>
>> It basically works ok.
>>
>> for reference i'm running manifold 2.7, on tomcat, using postgresql for
>> database and zookeeper as config repo and orchestrator.
>>
>> Any ideas?
>>
>> Best,
>> T
>>
>
>

Mime
View raw message