You are viewing a plain text version of this content. The canonical link for it is here.

Posted to user@manifoldcf.apache.org by Theodor Carp <th...@gmail.com> on 2017/07/12 14:07:09 UTC

ldap authentication with crawler ui

Hi,
Using the below settings:
<property name="org.apache.manifoldcf.authimplementationclass" value="org.apache.manifoldcf.core.auth.LdapAuthenticator" />
<property name="org.apache.manifoldcf.login.authenticationtype" value="LDAP-AUTHENTICATION" />
<property name="org.apache.manifoldcf.login.ldap.providerurl" value="ldap://hdp01.local:389 <ldap://hdp01.local:389>" />
<property name="org.apache.manifoldcf.login.ldap.securityauthenticationtype" value="simple" />
<property name="org.apache.manifoldcf.login.ldap.securityprincipal" value="uid=$(userID),ou=Users,dc=local" />
<property name="org.apache.manifoldcf.login.ldap.contextsearchquery" value="(uid=$(userID))" />
<property name="org.apache.manifoldcf.login.ldap.searchattribute" value="uid" />
I'm getting errors like: 
ERROR 2017-07-12 15:20:32,951 (qtp1295083508-17) - User not authenticated = authenticating_user exception = [LDAP: error code 32 - No Such Object]
javax.naming.NameNotFoundException: [LDAP: error code 32 - No Such Object]; remaining name ''
at com.sun.jndi.ldap.LdapCtx.mapErrorCode(LdapCtx.java:3161)
at com.sun.jndi.ldap.LdapCtx.processReturnCode(LdapCtx.java:3082)
at com.sun.jndi.ldap.LdapCtx.processReturnCode(LdapCtx.java:2888)
[...]
FATAL 2017-07-12 15:20:32,956 (qtp1295083508-17) - Exception logging in: User not authenticated: [LDAP: error code 32 - No Such Object]
org.apache.manifoldcf.core.interfaces.ManifoldCFException: User not authenticated: [LDAP: error code 32 - No Such Object]
at org.apache.manifoldcf.core.auth.LdapAuthenticator.verifyLogin(LdapAuthenticator.java:162)
at org.apache.manifoldcf.core.auth.LdapAuthenticator.verifyUILogin(LdapAuthenticator.java:107)
at org.apache.manifoldcf.ui.beans.AdminProfile.login(AdminProfile.java:103)
[...]
Caused by: javax.naming.NameNotFoundException: [LDAP: error code 32 - No Such Object]; remaining name ''
at com.sun.jndi.ldap.LdapCtx.mapErrorCode(LdapCtx.java:3161)
at com.sun.jndi.ldap.LdapCtx.processReturnCode(LdapCtx.java:3082)
at com.sun.jndi.ldap.LdapCtx.processReturnCode(LdapCtx.java:2888)
But if do maual ldapsearch basicaly using the same settings: e.g.:
ldapsearch -x -H ldap://hdp01.local <ldap://hdp01.local> -b "dc=local" -s sub '(uid=authenticating_user)'
Or 
ldapsearch -x -D "uid=authenticating_user1,ou=Users,dc=local" -W -H ldap://hdp01.local <ldap://hdp01.local> -b "dc=local" -s sub 'uid=authenticating_user'
It basically works ok.
for reference i'm running manifold 2.7, on tomcat, using postgresql for database and zookeeper as config repo and orchestrator.
Any ideas?
Best,
T

Re: ldap authentication with crawler ui

Posted by Theodor Carp <th...@gmail.com>.

Hi Karl,

Many thanks for the support! I'll keep looking into this, as this is a
feature a would really like to have functional.

Best
T

-- 
Theodor Carp

From: Karl Wright <da...@gmail.com> <da...@gmail.com>
Reply: user@manifoldcf.apache.org <us...@manifoldcf.apache.org>
<us...@manifoldcf.apache.org>
Date: 13 July 2017 at 14:17:14
To: user@manifoldcf.apache.org <us...@manifoldcf.apache.org>
<us...@manifoldcf.apache.org>
Subject:  Re: ldap authentication with crawler ui

I wish I was familiar enough with the code for this feature that I could be
> of help.  Nobody seems to have responded either.  It *is* summer and many
> people have vacations.
>
> I think, therefore, you're going to wind up needing to debug this
> yourself.  There's no magic; it's just using the javax packages for LDAP
> communication -- but obviously there's something not set up right and I
> don't know what it is.  It may be a default parameter value or some such.
>
> Thanks,
> Karl
>
>
> On Wed, Jul 12, 2017 at 11:29 AM, Karl Wright <da...@gmail.com> wrote:
>
>> Have any users out there made use of LDAP crawler-UI authentication?  If
>> so, can you have a look at Theodor's configuration and setup?
>>
>> Karl
>>
>>
>> On Wed, Jul 12, 2017 at 10:07 AM, Theodor Carp <th...@gmail.com>
>> wrote:
>>
>>> Hi,
>>>
>>> Using the below settings:
>>>
>>> <property name="org.apache.manifoldcf.authimplementationclass"
>>> value="org.apache.manifoldcf.core.auth.LdapAuthenticator" />
>>> <property name="org.apache.manifoldcf.login.authenticationtype"
>>> value="LDAP-AUTHENTICATION" />
>>> <property name="org.apache.manifoldcf.login.ldap.providerurl" value="
>>> ldap://hdp01.local:389" />
>>> <property name="org.apache.manifoldcf.login.ldap.securityauthenticationtype"
>>> value="simple" />
>>> <property name="org.apache.manifoldcf.login.ldap.securityprincipal"
>>> value="uid=$(userID),ou=Users,dc=local" />
>>> <property name="org.apache.manifoldcf.login.ldap.contextsearchquery"
>>> value="(uid=$(userID))" />
>>> <property name="org.apache.manifoldcf.login.ldap.searchattribute"
>>> value="uid" />
>>>
>>> I'm getting errors like:
>>>
>>> ERROR 2017-07-12 15:20:32,951 (qtp1295083508-17) - User not
>>> authenticated = authenticating_user exception = [LDAP: error code 32 -
>>> No Such Object]
>>> javax.naming.NameNotFoundException: [LDAP: error code 32 - No Such
>>> Object]; remaining name ''
>>> at com.sun.jndi.ldap.LdapCtx.mapErrorCode(LdapCtx.java:3161)
>>> at com.sun.jndi.ldap.LdapCtx.processReturnCode(LdapCtx.java:3082)
>>> at com.sun.jndi.ldap.LdapCtx.processReturnCode(LdapCtx.java:2888)
>>> [...]
>>> FATAL 2017-07-12 15:20:32,956 (qtp1295083508-17) - Exception logging in:
>>> User not authenticated: [LDAP: error code 32 - No Such Object]
>>> org.apache.manifoldcf.core.interfaces.ManifoldCFException: User not
>>> authenticated: [LDAP: error code 32 - No Such Object]
>>> at org.apache.manifoldcf.core.auth.LdapAuthenticator.verifyLogi
>>> n(LdapAuthenticator.java:162)
>>> at org.apache.manifoldcf.core.auth.LdapAuthenticator.verifyUILo
>>> gin(LdapAuthenticator.java:107)
>>> at org.apache.manifoldcf.ui.beans.AdminProfile.login(AdminProfi
>>> le.java:103)
>>> [...]
>>> Caused by: javax.naming.NameNotFoundException: [LDAP: error code 32 -
>>> No Such Object]; remaining name ''
>>> at com.sun.jndi.ldap.LdapCtx.mapErrorCode(LdapCtx.java:3161)
>>> at com.sun.jndi.ldap.LdapCtx.processReturnCode(LdapCtx.java:3082)
>>> at com.sun.jndi.ldap.LdapCtx.processReturnCode(LdapCtx.java:2888)
>>>
>>> But if do maual ldapsearch basicaly using the same settings: e.g.:
>>>
>>> ldapsearch -x -H ldap://hdp01.local -b "dc=local" -s sub
>>> '(uid=authenticating_user)'
>>>
>>> Or
>>>
>>> ldapsearch -x -D "uid=authenticating_user1,ou=Users,dc=local" -W -H
>>> ldap://hdp01.local -b "dc=local" -s sub 'uid=authenticating_user'
>>>
>>> It basically works ok.
>>>
>>> for reference i'm running manifold 2.7, on tomcat, using postgresql for
>>> database and zookeeper as config repo and orchestrator.
>>>
>>> Any ideas?
>>>
>>> Best,
>>> T
>>>
>>
>>
>

Re: ldap authentication with crawler ui

Posted by Karl Wright <da...@gmail.com>.

I wish I was familiar enough with the code for this feature that I could be
of help.  Nobody seems to have responded either.  It *is* summer and many
people have vacations.

I think, therefore, you're going to wind up needing to debug this
yourself.  There's no magic; it's just using the javax packages for LDAP
communication -- but obviously there's something not set up right and I
don't know what it is.  It may be a default parameter value or some such.

Thanks,
Karl


On Wed, Jul 12, 2017 at 11:29 AM, Karl Wright <da...@gmail.com> wrote:

> Have any users out there made use of LDAP crawler-UI authentication?  If
> so, can you have a look at Theodor's configuration and setup?
>
> Karl
>
>
> On Wed, Jul 12, 2017 at 10:07 AM, Theodor Carp <th...@gmail.com>
> wrote:
>
>> Hi,
>>
>> Using the below settings:
>>
>> <property name="org.apache.manifoldcf.authimplementationclass"
>> value="org.apache.manifoldcf.core.auth.LdapAuthenticator" />
>> <property name="org.apache.manifoldcf.login.authenticationtype"
>> value="LDAP-AUTHENTICATION" />
>> <property name="org.apache.manifoldcf.login.ldap.providerurl" value="
>> ldap://hdp01.local:389" />
>> <property name="org.apache.manifoldcf.login.ldap.securityauthenticationtype"
>> value="simple" />
>> <property name="org.apache.manifoldcf.login.ldap.securityprincipal"
>> value="uid=$(userID),ou=Users,dc=local" />
>> <property name="org.apache.manifoldcf.login.ldap.contextsearchquery"
>> value="(uid=$(userID))" />
>> <property name="org.apache.manifoldcf.login.ldap.searchattribute"
>> value="uid" />
>>
>> I'm getting errors like:
>>
>> ERROR 2017-07-12 15:20:32,951 (qtp1295083508-17) - User not authenticated
>> = authenticating_user exception = [LDAP: error code 32 - No Such Object]
>> javax.naming.NameNotFoundException: [LDAP: error code 32 - No Such
>> Object]; remaining name ''
>> at com.sun.jndi.ldap.LdapCtx.mapErrorCode(LdapCtx.java:3161)
>> at com.sun.jndi.ldap.LdapCtx.processReturnCode(LdapCtx.java:3082)
>> at com.sun.jndi.ldap.LdapCtx.processReturnCode(LdapCtx.java:2888)
>> [...]
>> FATAL 2017-07-12 15:20:32,956 (qtp1295083508-17) - Exception logging in:
>> User not authenticated: [LDAP: error code 32 - No Such Object]
>> org.apache.manifoldcf.core.interfaces.ManifoldCFException: User not
>> authenticated: [LDAP: error code 32 - No Such Object]
>> at org.apache.manifoldcf.core.auth.LdapAuthenticator.verifyLogi
>> n(LdapAuthenticator.java:162)
>> at org.apache.manifoldcf.core.auth.LdapAuthenticator.verifyUILo
>> gin(LdapAuthenticator.java:107)
>> at org.apache.manifoldcf.ui.beans.AdminProfile.login(AdminProfi
>> le.java:103)
>> [...]
>> Caused by: javax.naming.NameNotFoundException: [LDAP: error code 32 - No
>> Such Object]; remaining name ''
>> at com.sun.jndi.ldap.LdapCtx.mapErrorCode(LdapCtx.java:3161)
>> at com.sun.jndi.ldap.LdapCtx.processReturnCode(LdapCtx.java:3082)
>> at com.sun.jndi.ldap.LdapCtx.processReturnCode(LdapCtx.java:2888)
>>
>> But if do maual ldapsearch basicaly using the same settings: e.g.:
>>
>> ldapsearch -x -H ldap://hdp01.local -b "dc=local" -s sub
>> '(uid=authenticating_user)'
>>
>> Or
>>
>> ldapsearch -x -D "uid=authenticating_user1,ou=Users,dc=local" -W -H
>> ldap://hdp01.local -b "dc=local" -s sub 'uid=authenticating_user'
>>
>> It basically works ok.
>>
>> for reference i'm running manifold 2.7, on tomcat, using postgresql for
>> database and zookeeper as config repo and orchestrator.
>>
>> Any ideas?
>>
>> Best,
>> T
>>
>
>

Re: ldap authentication with crawler ui

Posted by Karl Wright <da...@gmail.com>.

Have any users out there made use of LDAP crawler-UI authentication?  If
so, can you have a look at Theodor's configuration and setup?

Karl


On Wed, Jul 12, 2017 at 10:07 AM, Theodor Carp <th...@gmail.com>
wrote:

> Hi,
>
> Using the below settings:
>
> <property name="org.apache.manifoldcf.authimplementationclass"
> value="org.apache.manifoldcf.core.auth.LdapAuthenticator" />
> <property name="org.apache.manifoldcf.login.authenticationtype"
> value="LDAP-AUTHENTICATION" />
> <property name="org.apache.manifoldcf.login.ldap.providerurl" value="
> ldap://hdp01.local:389" />
> <property name="org.apache.manifoldcf.login.ldap.securityauthenticationtype"
> value="simple" />
> <property name="org.apache.manifoldcf.login.ldap.securityprincipal"
> value="uid=$(userID),ou=Users,dc=local" />
> <property name="org.apache.manifoldcf.login.ldap.contextsearchquery"
> value="(uid=$(userID))" />
> <property name="org.apache.manifoldcf.login.ldap.searchattribute"
> value="uid" />
>
> I'm getting errors like:
>
> ERROR 2017-07-12 15:20:32,951 (qtp1295083508-17) - User not authenticated
> = authenticating_user exception = [LDAP: error code 32 - No Such Object]
> javax.naming.NameNotFoundException: [LDAP: error code 32 - No Such Object];
> remaining name ''
> at com.sun.jndi.ldap.LdapCtx.mapErrorCode(LdapCtx.java:3161)
> at com.sun.jndi.ldap.LdapCtx.processReturnCode(LdapCtx.java:3082)
> at com.sun.jndi.ldap.LdapCtx.processReturnCode(LdapCtx.java:2888)
> [...]
> FATAL 2017-07-12 15:20:32,956 (qtp1295083508-17) - Exception logging in:
> User not authenticated: [LDAP: error code 32 - No Such Object]
> org.apache.manifoldcf.core.interfaces.ManifoldCFException: User not
> authenticated: [LDAP: error code 32 - No Such Object]
> at org.apache.manifoldcf.core.auth.LdapAuthenticator.
> verifyLogin(LdapAuthenticator.java:162)
> at org.apache.manifoldcf.core.auth.LdapAuthenticator.verifyUILogin(
> LdapAuthenticator.java:107)
> at org.apache.manifoldcf.ui.beans.AdminProfile.login(
> AdminProfile.java:103)
> [...]
> Caused by: javax.naming.NameNotFoundException: [LDAP: error code 32 - No
> Such Object]; remaining name ''
> at com.sun.jndi.ldap.LdapCtx.mapErrorCode(LdapCtx.java:3161)
> at com.sun.jndi.ldap.LdapCtx.processReturnCode(LdapCtx.java:3082)
> at com.sun.jndi.ldap.LdapCtx.processReturnCode(LdapCtx.java:2888)
>
> But if do maual ldapsearch basicaly using the same settings: e.g.:
>
> ldapsearch -x -H ldap://hdp01.local -b "dc=local" -s sub
> '(uid=authenticating_user)'
>
> Or
>
> ldapsearch -x -D "uid=authenticating_user1,ou=Users,dc=local" -W -H
> ldap://hdp01.local -b "dc=local" -s sub 'uid=authenticating_user'
>
> It basically works ok.
>
> for reference i'm running manifold 2.7, on tomcat, using postgresql for
> database and zookeeper as config repo and orchestrator.
>
> Any ideas?
>
> Best,
> T
>