You are viewing a plain text version of this content. The canonical link for it is here.
Posted to user@openmeetings.apache.org by ARI HENDIAWAN <ar...@ocbcnisp.com> on 2014/09/17 11:02:16 UTC
need info about problem when integration AD
Dear all,
please we need extra information how to integrate openmeetings 3.0.3
with AD?
we already setting on ldap.conf and still problem.. if we saw on AD ,
user that want sign-in openmeetings success, but on login menu
openmeetings shown error "invalid password"
Tks
--
Disclaimer :
Confidential information may be contained in this message. If you are not the intended recipient, you are strictly prohibited and may be unlawful to use, copy, store, distribute, disclose or communicate any part of it to others and you are obliged to return it immediately to sender or notify us and delete the e-mail and any attachments from your system. Opinions, conclusions and other information in this e-mail that do not relate to the official business of any PT Bank OCBC NISP Tbk shall be understood as neither given nor endorsed by it. No assumption of responsibility or liability whatsoever is undertaken by PT Bank OCBC NISP Tbk in respect of prohibited and unauthorised use by any other person.
Re: need info about problem when integration AD
Posted by Thibault Le Meur <Th...@supelec.fr>.
I've not read the whole thread, but if it's an active directory server,
and since you're using the SEARCHANDBIND mode are you really sure that
the LDAP filter should be "ldap_search_query=(uid=%s) " ?
Have you tried with "ldap_search_query=(samaccountname=%s) " ?
In any case, in order to debug this, you should have a look at the
directory structure using an LDAP browser such as
http://ldaptool.sourceforge.net/
My 2 cents,
Thibault
Le 23/09/2014 17:51, Maxim Solodovnik a écrit :
> Maybe others can help
> I'm out of ideas :(
>
> On 23 September 2014 22:34, Grégory Mangeney <mangeney@gmail.com
> <ma...@gmail.com>> wrote:
>
> Ok, I tryed with an other account in an easyest object
> (ldap_admin_dn=CN=testad,
> OU=COMPANY,DC=mycompany,DC=pri), but it still the same...
> "NONE users in LDAP"
>
> I do not understand.
> I think the link is now good with AD according to this message but
> I don't know why no users are found!
>
> Any ideas?
>
> Best regards.
> Greg
>
> 2014-09-23 15:56 GMT+02:00 Grégory Mangeney <mangeney@gmail.com
> <ma...@gmail.com>>:
>
> Ok, Maxim
> I found in logs the 52e between "data" and "vece\00"
>
> According to your ling given previousely, it seems to be an
> "|invalid credentials"
> (http://kb.juniper.net/InfoCenter/index?page=content&id=KB17098)
>
> |
> |Is it a problem with my user or do you see an other issue?
> |
> |I could mabe test with a new account, an easyer account that
> I could creat for testing.
>
> |
> |Thanks.
>
> |
> |Greg.
> |
> |
>
> |
>
> 2014-09-23 15:47 GMT+02:00 Grégory Mangeney
> <mangeney@gmail.com <ma...@gmail.com>>:
>
> Hello Maxim.
> I had try with the 3.0.4 Version according to your link.
>
> Now I have an other error in log file.
> It said NONE USER FOUND IN LDAP...
> I hope so the connection with my AD is good and it still a
> config problem but maybe you could help me with my logs
> and my conf file...
>
> My logs:
>
> ERROR 09-23 15:34:55.797 o.a.o.l.LdapLoginManagement:266
> [http-nio-0.0.0.0-5080-exec-8] - NONE users found in LDAP
> DEBUG 09-23 15:34:55.799 o.a.w.u.c.CookieUtils:273
> [http-nio-0.0.0.0-5080-exec-8] - Unable to find Cookie
> with name=LoggedIn and request
> URI=signin?0-5.IBehaviorListener.0-signin-signin-submit
> DEBUG 09-23 15:34:55.802 o.a.w.f.FeedbackMessages:69
> [http-nio-0.0.0.0-5080-exec-8] - Adding feedback message
> '[FeedbackMessage message = "Invalid password", reporter =
> signin, level = ERROR]'
> DEBUG 09-23 15:34:55.808 o.a.wicket.Page:871
> [http-nio-0.0.0.0-5080-exec-8] - ending request for page
> [Page class =
> org.apache.openmeetings.web.pages.auth.SignInPage, id = 0,
> render count = 5], request
> org.apache.wicket.protocol.http.servlet.ServletWebRequest@69fbe
> DEBUG 09-23 15:34:55.809 o.a.wicket.Page:871
> [http-nio-0.0.0.0-5080-exec-8] - ending request for page
> [Page class =
> org.apache.openmeetings.web.pages.auth.SignInPage, id = 0,
> render count = 5], request
> org.apache.wicket.protocol.http.servlet.ServletWebRequest@69fbe
> DEBUG 09-23 15:34:55.809 o.a.wicket.Page:871
> [http-nio-0.0.0.0-5080-exec-8] - ending request for page
> [Page class =
> org.apache.openmeetings.web.pages.auth.SignInPage, id = 0,
> render count = 5], request
> org.apache.wicket.protocol.http.servlet.ServletWebRequest@69fbe
> DEBUG 09-23 15:34:55.811
> o.a.w.p.AsynchronousDataStore$PageSavingRunnable:354
> [Wicket-PageSavingThread] - Saving asynchronously: Entry
> [sessionId=E576CCA08DEE992DF7CCBD22F2FD64F8, pageId=0]...
> DEBUG 09-23 15:34:55.811 o.a.w.p.DiskDataStore:186
> [Wicket-PageSavingThread] - Storing data for page with id
> '0' in session with id 'E576CCA08DEE992DF7CCBD22F2FD64F8'
> DEBUG 09-23 15:34:55.812
> o.a.w.p.PageAccessSynchronizer:195
> [http-nio-0.0.0.0-5080-exec-8] -
> 'http-nio-0.0.0.0-5080-exec-8' released lock to page with
> id '0'
> DEBUG 09-23 15:34:55.812
> o.a.w.p.PageAccessSynchronizer:346
> [http-nio-0.0.0.0-5080-exec-8] -
> 'http-nio-0.0.0.0-5080-exec-8' notifying blocked threads
> DEBUG 09-23 15:35:30.522 o.a.o.m.MailHandler:258
> [org.springframework.scheduling.quartz.SchedulerFactoryBean#0_Worker-2]
> - sendMails enter ...
> DEBUG 09-23 15:35:30.523 o.a.o.m.MailHandler:260
> [org.springframework.scheduling.quartz.SchedulerFactoryBean#0_Worker-2]
> - Number of emails in init queue 0
> DEBUG 09-23 15:35:30.524 o.a.o.m.MailHandler:265
> [org.springframework.scheduling.quartz.SchedulerFactoryBean#0_Worker-2]
> - ... sendMails done.
> DEBUG 09-23 15:35:35.503 o.a.o.d.d.s.SessiondataDao:404
> [org.springframework.scheduling.quartz.SchedulerFactoryBean#0_Worker-3]
> - ****** clearSessionTable:
> DEBUG 09-23 15:35:35.505 o.a.o.d.d.s.SessiondataDao:408
> [org.springframework.scheduling.quartz.SchedulerFactoryBean#0_Worker-3]
> - clearSessionTable: 0
> DEBUG 09-23 15:35:35.512 o.a.o.q.s.MeetingReminderJob:34
> [org.springframework.scheduling.quartz.SchedulerFactoryBean#0_Worker-4]
> - MeetingReminderJob.execute
>
>
>
> My conf :
>
> #
> # Licensed to the Apache Software Foundation (ASF) under one
> # or more contributor license agreements. See the NOTICE
> file
> # distributed with this work for additional information
> # regarding copyright ownership. The ASF licenses this file
> # to you under the Apache License, Version 2.0 (the
> # "License"); you may not use this file except in compliance
> # with the License. You may obtain a copy of the License at
> #
> # http://www.apache.org/licenses/LICENSE-2.0
> #
> # Unless required by applicable law or agreed to in writing,
> # software distributed under the License is distributed on an
> # "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
> # KIND, either express or implied. See the License for the
> # specific language governing permissions and limitations
> # under the License.
> #
> #ConfigurationFile for LDAP Auth
> #ConfigKey 'ldap_config_path' must be set in DataBase
> Configration of OM and point to this file
> #o.becherer,14.01.2009
>
> #LDAP URL
> # This is the URL used to access your LDAP server.
> # if you want to use "ldaps://" links, please be aware
> that you need to import your CA certificate
> # to a java keystore and add the
> -Djavax.net.ssl.keyStore, -Djavax.net.ssl.keyStorePassword,
> # -Djavax.net.ssl.trustStore and
> -Djavax.net.ssl.trustStorePassword parameters to your
> # JAVA_OPT environment
> ldap_conn_host=@IP_of_my_AD
> ldap_conn_port=389
> ldap_conn_secure=false
>
> # Login distinguished name (DN) for Authentication on LDAP
> Server - keep empty if not required
> # Use full qualified LDAP DN
> ldap_admin_dn=CN=adconnect,OU=Comptes
> Cles,OU=SI,OU=Services,OU=COMPANY,DC=mycompany,DC=priv
>
> # Loginpass for Authentication on LDAP Server - keep empty
> if not required
> ldap_passwd=pass_for_user_adconnect
>
> # base to search for userdata(of user, that wants to login)
> ldap_search_base=OU=COMPANY,DC=mycompany,DC=priv
>
> # Fieldnames (can differ between Ldap servers)
> ldap_search_query=(uid=%s)
>
> # the scope of the search might be: OBJECT, ONELEVEL, SUBTREE
> ldap_search_scope=SUBTREE
>
> # Ldap auth type(NONE, SEARCHANDBIND, SIMPLEBIND)
> # When using SIMPLEBIND a simple bind is performed on the
> LDAP server to check user authentication
> # When using NONE, the Ldap server is not used for
> authentication
> ldap_auth_type=SEARCHANDBIND
>
> # userDN format, will be used to bind if
> ldap_auth_type=SIMPLEBIND
> # might be used to get provisionningDn in case
> ldap_auth_type=NONE
> ldap_userdn_format=uid=%s,OU=COMPANY,DC=mycompany,DC=priv
>
> # Ldap provisioning type(NONE, AUTOCREATE, AUTOUPDATE)
> ldap_provisionning=AUTOCREATE
>
> # Set this to 'true' if you want to use admin_dn to get
> user attributes
> # If any other value is set, user_dn will be used
> ldap_use_admin_to_get_attrs=true
>
> # Ldap-password synchronization to OM DB
> # Set this to 'true' if you want OM to synchronize the
> user Ldap-password to OM's internal DB
> # If you want to disable the feature, set this to any
> other string.
> # Defautl value is 'true'
> ldap_sync_password_to_om=true
>
> # Ldap user attributes mapping
> # Set the following internal OM user attributes to their
> corresponding Ldap-attribute
> ldap_user_attr_lastname=sn
> ldap_user_attr_firstname=givenName
> ldap_user_attr_mail=mail
> ldap_user_attr_street=streetAddress
> ldap_user_attr_additionalname=description
> ldap_user_attr_fax=facsimileTelephoneNumber
> ldap_user_attr_zip=postalCode
> ldap_user_attr_country=co
> ldap_user_attr_town=l
> ldap_user_attr_phone=telephoneNumber
>
> # optional, only absolute URLs make sense
> #ldap_user_picture_uri=picture_uri
>
> # optional
> # the timezone has to match any timezone available in
> Java, otherwise the timezone defined in the value of
> # the conf_key "default.timezone" in OpenMeetings
> "configurations" table
> #ldap_user_timezone=timezone
>
> # Ldap ignore upper/lower case, convert all input to lower
> case
> ldap_use_lower_case=false
>
>
> Do you see how to fix my problem with this new branch of
> openmeetings 3.0.4?
>
> Thanks a lot.
>
> Greg.
>
>
>
>
> 2014-09-22 17:50 GMT+02:00 Maxim Solodovnik
> <solomax666@gmail.com <ma...@gmail.com>>:
>
> Please get build #67 here:
> https://builds.apache.org/view/M-R/view/OpenMeetings/job/Openmeetings%203.0.x/
>
> I have no LDAP infrastructure to test :( I 100% rely
> on community in this
> So thanks for the testing :)
>
> On 23 September 2014 01:17, Grégory Mangeney
> <mangeney@gmail.com <ma...@gmail.com>> wrote:
>
> Windows Server 2003 R2
>
> 2014-09-22 17:13 GMT+02:00 Grégory Mangeney
> <mangeney@gmail.com <ma...@gmail.com>>:
>
> Ok,thank you for that.
> For information I am using a Microsoft Active
> Directory in object version 31
>
> I get this information by tapping dsquery *
> cn=schema,cn=configuration,dc=mycompany,dc=priv -scope
> base -attr objectVersion
>
> Good evening.
>
> Best regards.
>
> Greg.
>
> 2014-09-22 16:40 GMT+02:00 Maxim Solodovnik
> <solomax666@gmail.com
> <ma...@gmail.com>>:
>
> You have these Paramaribo in your
> configuration:
> ldap_search_base=DC=mycompany,DC=priv
> # Fieldnames (can differ between Ldap
> servers)
> ldap_search_query=(uid=%s)
>
> I guess nothing is found. Not sure I never
> saw error like yours.
>
> Will create 3.0.4 nightly fly you later
> today (with updated ldap library) if error
> will be the same I'll ask ldap library
> developers for the help
>
> On Sep 22, 2014 9:05 PM, "Grégory
> Mangeney" <mangeney@gmail.com
> <ma...@gmail.com>> wrote:
>
> a bad search query?
>
> In this case, the loging error message
> shouldn't be somthing like :
> "Login/password do not exist" ?
>
> How could I check this point...
> I do not modified the source code!
>
> 2014-09-22 11:25 GMT+02:00 Maxim
> Solodovnik <solomax666@gmail.com
> <ma...@gmail.com>>:
>
> it seems like nothing was found
> Maybe bad search query?
>
> On 22 September 2014 15:55,
> Grégory Mangeney
> <mangeney@gmail.com
> <ma...@gmail.com>> wrote:
>
> Hello Maxim.
> Thanks a lot for your answer.
> You're helpfull...
>
> I had ever try with
> SEARCHANDBIND but it still not
> working...
> So I set it again to give you
> my logs...
> The error is quite different
> but I could not understand
> what is the problem...
>
> In the login screen I have the
> following message in red :
> "Unknown error. Please report
> this to the administrator."
>
>
>
>
> Here is my logs :
>
> ERROR 09-22 10:34:34.814
> o.a.o.l.LdapLoginManagement:356 [http-nio-0.0.0.0-5080-exec-4]
> - Unexpected exception.
> org.apache.directory.api.ldap.model.cursor.CursorLdapReferralException:
> null
> at
> org.apache.directory.ldap.client.api.EntryCursorImpl.get(EntryCursorImpl.java:164)
> ~[api-all-jar-1.0.0-M23.jar:1.0.0-M23]
> at
> org.apache.directory.ldap.client.api.EntryCursorImpl.get(EntryCursorImpl.java:50)
> ~[api-all-jar-1.0.0-M23.jar:1.0.0-M23]
> at
> org.apache.openmeetings.ldap.LdapLoginManagement.login(LdapLoginManagement.java:258)
> ~[openmeetings-core-3.0.3-RELEASE.jar:na]
> at
> org.apache.openmeetings.web.app.WebSession.signIn(WebSession.java:257)
> [openmeetings-web-3.0.3-RELEASE.jar:na]
> at
> org.apache.openmeetings.web.pages.auth.SignInDialog.onSubmit(SignInDialog.java:190)
> [openmeetings-web-3.0.3-RELEASE.jar:na]
> at
> com.googlecode.wicket.jquery.ui.widget.dialog.AbstractFormDialog$DialogFormSubmitter.onSubmit(AbstractFormDialog.java:279)
> [wicket-jquery-ui-jar-6.16.0.jar:na]
> at
> org.apache.wicket.markup.html.form.Form.delegateSubmit(Form.java:1266)
> [wicket-core-jar-6.16.0.jar:6.16.0]
> at
> org.apache.wicket.markup.html.form.Form.process(Form.java:938)
> [wicket-core-jar-6.16.0.jar:6.16.0]
> at
> org.apache.wicket.markup.html.form.StatelessForm.process(StatelessForm.java:96)
> [wicket-core-jar-6.16.0.jar:6.16.0]
> at
> org.apache.wicket.markup.html.form.Form.onFormSubmitted(Form.java:770)
> [wicket-core-jar-6.16.0.jar:6.16.0]
> at
> com.googlecode.wicket.jquery.ui.widget.dialog.AbstractFormDialog.internalOnClick(AbstractFormDialog.java:200)
> [wicket-jquery-ui-jar-6.16.0.jar:na]
> at
> com.googlecode.wicket.jquery.ui.widget.dialog.AbstractDialog$1.onClick(AbstractDialog.java:439)
> [wicket-jquery-ui-jar-6.16.0.jar:na]
> at
> com.googlecode.wicket.jquery.ui.widget.dialog.DialogBehavior.onAjax(DialogBehavior.java:175)
> [wicket-jquery-ui-jar-6.16.0.jar:na]
> at
> com.googlecode.wicket.jquery.core.ajax.JQueryAjaxBehavior.respond(JQueryAjaxBehavior.java:171)
> [wicket-jquery-ui-core-jar-6.16.0.jar:na]
> at
> org.apache.wicket.ajax.AbstractDefaultAjaxBehavior.onRequest(AbstractDefaultAjaxBehavior.java:633)
> [wicket-core-jar-6.16.0.jar:6.16.0]
> at
> sun.reflect.GeneratedMethodAccessor91.invoke(Unknown
> Source) ~[na:na]
> at
> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
> ~[na:1.7.0_65]
> at
> java.lang.reflect.Method.invoke(Method.java:606)
> ~[na:1.7.0_65]
> at
> org.apache.wicket.RequestListenerInterface.internalInvoke(RequestListenerInterface.java:258)
> [wicket-core-jar-6.16.0.jar:6.16.0]
> at
> org.apache.wicket.RequestListenerInterface.invoke(RequestListenerInterface.java:241)
> [wicket-core-jar-6.16.0.jar:6.16.0]
> at
> org.apache.wicket.core.request.handler.ListenerInterfaceRequestHandler.invokeListener(ListenerInterfaceRequestHandler.java:250)
> [wicket-core-jar-6.16.0.jar:6.16.0]
> at
> org.apache.wicket.core.request.handler.ListenerInterfaceRequestHandler.respond(ListenerInterfaceRequestHandler.java:236)
> [wicket-core-jar-6.16.0.jar:6.16.0]
> at
> org.apache.wicket.request.cycle.RequestCycle$HandlerExecutor.respond(RequestCycle.java:862)
> [wicket-core-jar-6.16.0.jar:6.16.0]
> at
> org.apache.wicket.request.RequestHandlerStack.execute(RequestHandlerStack.java:64)
> [wicket-request-jar-6.16.0.jar:6.16.0]
> at
> org.apache.wicket.request.cycle.RequestCycle.execute(RequestCycle.java:261)
> [wicket-core-jar-6.16.0.jar:6.16.0]
> at
> org.apache.wicket.request.cycle.RequestCycle.processRequest(RequestCycle.java:218)
> [wicket-core-jar-6.16.0.jar:6.16.0]
> at
> org.apache.wicket.request.cycle.RequestCycle.processRequestAndDetach(RequestCycle.java:289)
> [wicket-core-jar-6.16.0.jar:6.16.0]
> at
> org.apache.wicket.protocol.ws.AbstractUpgradeFilter.processRequestCycle(AbstractUpgradeFilter.java:59)
> [wicket-native-websocket-core-jar-6.16.0.jar:6.16.0]
> at
> org.apache.wicket.protocol.http.WicketFilter.processRequest(WicketFilter.java:201)
> [wicket-core-jar-6.16.0.jar:6.16.0]
> at
> org.apache.wicket.protocol.http.WicketFilter.doFilter(WicketFilter.java:282)
> [wicket-core-jar-6.16.0.jar:6.16.0]
> at
> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:241)
> [tomcat-embed-core.jar:7.0.55]
> at
> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:208)
> [tomcat-embed-core.jar:7.0.55]
> at
> org.red5.logging.LoggerContextFilter.doFilter(LoggerContextFilter.java:77)
> [red5-server.jar:na]
> at
> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:241)
> [tomcat-embed-core.jar:7.0.55]
> at
> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:208)
> [tomcat-embed-core.jar:7.0.55]
> at
> org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:220)
> [tomcat-embed-core.jar:7.0.55]
> at
> org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:122)
> [tomcat-embed-core.jar:7.0.55]
> at
> org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:501)
> [tomcat-embed-core.jar:7.0.55]
> at
> org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:171)
> [tomcat-embed-core.jar:7.0.55]
> at
> org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:103)
> [tomcat-embed-core.jar:7.0.55]
> at
> org.apache.catalina.valves.AccessLogValve.invoke(AccessLogValve.java:950)
> [tomcat-embed-core.jar:7.0.55]
> at
> org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:116)
> [tomcat-embed-core.jar:7.0.55]
> at
> org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:408)
> [tomcat-embed-core.jar:7.0.55]
> at
> org.apache.coyote.http11.AbstractHttp11Processor.process(AbstractHttp11Processor.java:1070)
> [tomcat-embed-core.jar:7.0.55]
> at
> org.apache.coyote.AbstractProtocol$AbstractConnectionHandler.process(AbstractProtocol.java:611)
> [tomcat-embed-core.jar:7.0.55]
> at
> org.apache.tomcat.util.net.NioEndpoint$SocketProcessor.doRun(NioEndpoint.java:1736)
> [tomcat-embed-core.jar:7.0.55]
> at
> org.apache.tomcat.util.net.NioEndpoint$SocketProcessor.run(NioEndpoint.java:1695)
> [tomcat-embed-core.jar:7.0.55]
> at
> java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1145)
> [na:1.7.0_65]
> at
> java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:615)
> [na:1.7.0_65]
> at
> org.apache.tomcat.util.threads.TaskThread$WrappingRunnable.run(TaskThread.java:61)
> [tomcat-embed-core.jar:7.0.55]
> at
> java.lang.Thread.run(Thread.java:745)
> [na:1.7.0_65]
> DEBUG 09-22 10:34:34.817
> o.a.w.u.c.CookieUtils:266
> [http-nio-0.0.0.0-5080-exec-4]
> - Unable to find Cookie with
> name=LoggedIn and request
> URI=signin?1-1.IBehaviorListener.1-signin
> DEBUG 09-22 10:34:34.820
> o.a.w.f.FeedbackMessages:69
> [http-nio-0.0.0.0-5080-exec-4]
> - Adding feedback message
> '[FeedbackMessage message =
> "Unknown error. Please report
> this to the administrator.",
> reporter = signin, level = ERROR]'
> DEBUG 09-22 10:34:34.821
> o.a.w.u.c.CookieUtils:266
> [http-nio-0.0.0.0-5080-exec-4]
> - Unable to find Cookie with
> name=LoggedIn and request
> URI=signin?1-1.IBehaviorListener.1-signin
> DEBUG 09-22 10:34:34.822
> o.a.wicket.Page:871
> [http-nio-0.0.0.0-5080-exec-4]
> - ending request for page
> [Page class =
> org.apache.openmeetings.web.pages.auth.SignInPage,
> id = 1, render count = 1],
> request
> org.apache.wicket.protocol.http.servlet.ServletWebRequest@16618f3
> DEBUG 09-22 10:34:34.822
> o.a.wicket.Page:871
> [http-nio-0.0.0.0-5080-exec-4]
> - ending request for page
> [Page class =
> org.apache.openmeetings.web.pages.auth.SignInPage,
> id = 1, render count = 1],
> request
> org.apache.wicket.protocol.http.servlet.ServletWebRequest@16618f3
> DEBUG 09-22 10:34:34.823
> o.a.wicket.Page:871
> [http-nio-0.0.0.0-5080-exec-4]
> - ending request for page
> [Page class =
> org.apache.openmeetings.web.pages.auth.SignInPage,
> id = 1, render count = 1],
> request
> org.apache.wicket.protocol.http.servlet.ServletWebRequest@16618f3
> DEBUG 09-22 10:34:34.828
> o.a.w.p.AsynchronousDataStore$PageSavingRunnable:354
> [Wicket-PageSavingThread] -
> Saving asynchronously: Entry
> [sessionId=907ABBB232B18743F2A67024DA18F185,
> pageId=1]...
> DEBUG 09-22 10:34:34.828
> o.a.w.p.DiskDataStore:186
> [Wicket-PageSavingThread] -
> Storing data for page with id
> '1' in session with id
> '907ABBB232B18743F2A67024DA18F185'
> DEBUG 09-22 10:34:34.828
> o.a.w.p.PageAccessSynchronizer:195
> [http-nio-0.0.0.0-5080-exec-4]
> -
> 'http-nio-0.0.0.0-5080-exec-4'
> released lock to page with id '1'
> DEBUG 09-22 10:34:34.828
> o.a.w.p.PageAccessSynchronizer:346
> [http-nio-0.0.0.0-5080-exec-4]
> -
> 'http-nio-0.0.0.0-5080-exec-4'
> notifying blocked threads
> DEBUG 09-22 10:34:36.341
> o.a.o.m.MailHandler:249
> [org.springframework.scheduling.quartz.SchedulerFactoryBean#0_Worker-1]
> - resetSendingStatus enter ...
>
>
>
> Thank you for your time.
>
> Greg.
>
> 2014-09-20 8:59 GMT+02:00
> Maxim Solodovnik
> <solomax666@gmail.com
> <ma...@gmail.com>>:
>
> According to the logs and
> config SIMPLEBIND failed
> for the user specified
> please try SEARCHANDBIND
>
> On 19 September 2014
> 17:09, Grégory Mangeney
> <mangeney@gmail.com
> <ma...@gmail.com>>
> wrote:
>
> Hello.
> Thank you for your link.
> It appeare that I have
> a 525 error (user not
> found).
>
> I think the problem
> must be in my config
> file because I'm sure
> that my user is good
> because I use it for
> an other app witch use
> it to connect with AD.
>
> As you ask me i give
> you more line of my
> log file, after that I
> would like to show you
> my conf file...
> Maybe you will find a
> setting withch is not
> good!
>
>
> So here is my log file
> whene I try to connect :
> DEBUG 09-19
> 11:47:01.337
> o.a.o.q.s.MeetingReminderJob:34
> [org.springframework.scheduling.quartz.SchedulerFactoryBean#0_Worker-2]
> -
> MeetingReminderJob.execute
> DEBUG 09-19
> 11:47:25.760
> o.a.w.p.h.s.ServletWebRequest:189
> [http-nio-0.0.0.0-5080-exec-10]
> - Calculating context
> relative path from:
> context path
> '/openmeetings',
> filterPrefix '', uri
> '/openmeetings/signin'
> DEBUG 09-19
> 11:47:25.761
> o.a.w.p.PageAccessSynchronizer:100
> [http-nio-0.0.0.0-5080-exec-10]
> -
> 'http-nio-0.0.0.0-5080-exec-10'
> attempting to acquire
> lock to page with id '1'
> DEBUG 09-19
> 11:47:25.761
> o.a.w.p.PageAccessSynchronizer:125
> [http-nio-0.0.0.0-5080-exec-10]
> -
> http-nio-0.0.0.0-5080-exec-10
> acquired lock to page 1
> DEBUG 09-19
> 11:47:25.762
> o.a.o.d.d.s.SessiondataDao:68
> [http-nio-0.0.0.0-5080-exec-10]
> - startsession ::
> startsession
> DEBUG 09-19
> 11:47:25.763
> o.a.o.u.c.ManageCryptStyle:32
> [http-nio-0.0.0.0-5080-exec-10]
> - getInstanceOfCrypt::
> configKeyCryptClassName:
> org.apache.openmeetings.util.crypt.MD5Implementation
> DEBUG 09-19
> 11:47:25.788
> o.a.o.l.LdapLoginManagement:165
> [http-nio-0.0.0.0-5080-exec-10]
> -
> LdapLoginmanagement.doLdapLogin
> ERROR 09-19
> 11:47:25.924
> o.a.o.l.LdapLoginManagement:351
> [http-nio-0.0.0.0-5080-exec-10]
> - Not authenticated.
> org.apache.directory.api.ldap.model.exception.LdapAuthenticationException:
> 80090308: LdapErr:
> DSID-0C090334,
> comment:
> AcceptSecurityContext
> error, data 525, vece\00
> at
> org.apache.directory.api.ldap.model.message.ResultCodeEnum.processResponse(ResultCodeEnum.java:2021)
> ~[api-all-jar-1.0.0-M23.jar:1.0.0-M23]
> at
> org.apache.directory.ldap.client.api.AbstractLdapConnection.bind(AbstractLdapConnection.java:129)
> ~[api-all-jar-1.0.0-M23.jar:1.0.0-M23]
> at
> org.apache.openmeetings.ldap.LdapLoginManagement.login(LdapLoginManagement.java:275)
> ~[openmeetings-core-3.0.3-RELEASE.jar:na]
> at
> org.apache.openmeetings.web.app.WebSession.signIn(WebSession.java:257)
> [openmeetings-web-3.0.3-RELEASE.jar:na]
> at
> org.apache.openmeetings.web.pages.auth.SignInDialog.onSubmit(SignInDialog.java:190)
> [openmeetings-web-3.0.3-RELEASE.jar:na]
> at
> com.googlecode.wicket.jquery.ui.widget.dialog.AbstractFormDialog$DialogFormSubmitter.onSubmit(AbstractFormDialog.java:279)
> [wicket-jquery-ui-jar-6.16.0.jar:na]
> at
> org.apache.wicket.markup.html.form.Form.delegateSubmit(Form.java:1266)
> [wicket-core-jar-6.16.0.jar:6.16.0]
> at
> org.apache.wicket.markup.html.form.Form.process(Form.java:938)
> [wicket-core-jar-6.16.0.jar:6.16.0]
> at
> org.apache.wicket.markup.html.form.StatelessForm.process(StatelessForm.java:96)
> [wicket-core-jar-6.16.0.jar:6.16.0]
> at
> org.apache.wicket.markup.html.form.Form.onFormSubmitted(Form.java:770)
> [wicket-core-jar-6.16.0.jar:6.16.0]
> at
> com.googlecode.wicket.jquery.ui.widget.dialog.AbstractFormDialog.internalOnClick(AbstractFormDialog.java:200)
> [wicket-jquery-ui-jar-6.16.0.jar:na]
> at
> com.googlecode.wicket.jquery.ui.widget.dialog.AbstractDialog$1.onClick(AbstractDialog.java:439)
> [wicket-jquery-ui-jar-6.16.0.jar:na]
> at
> com.googlecode.wicket.jquery.ui.widget.dialog.DialogBehavior.onAjax(DialogBehavior.java:175)
> [wicket-jquery-ui-jar-6.16.0.jar:na]
> at
> com.googlecode.wicket.jquery.core.ajax.JQueryAjaxBehavior.respond(JQueryAjaxBehavior.java:171)
> [wicket-jquery-ui-core-jar-6.16.0.jar:na]
> at
> org.apache.wicket.ajax.AbstractDefaultAjaxBehavior.onRequest(AbstractDefaultAjaxBehavior.java:633)
> [wicket-core-jar-6.16.0.jar:6.16.0]
> at
> sun.reflect.GeneratedMethodAccessor91.invoke(Unknown
> Source) ~[na:na]
> at
> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
> ~[na:1.7.0_65]
> at
> java.lang.reflect.Method.invoke(Method.java:606)
> ~[na:1.7.0_65]
> at
> org.apache.wicket.RequestListenerInterface.internalInvoke(RequestListenerInterface.java:258)
> [wicket-core-jar-6.16.0.jar:6.16.0]
> at
> org.apache.wicket.RequestListenerInterface.invoke(RequestListenerInterface.java:241)
> [wicket-core-jar-6.16.0.jar:6.16.0]
> at
> org.apache.wicket.core.request.handler.ListenerInterfaceRequestHandler.invokeListener(ListenerInterfaceRequestHandler.java:250)
> [wicket-core-jar-6.16.0.jar:6.16.0]
> at
> org.apache.wicket.core.request.handler.ListenerInterfaceRequestHandler.respond(ListenerInterfaceRequestHandler.java:236)
> [wicket-core-jar-6.16.0.jar:6.16.0]
> at
> org.apache.wicket.request.cycle.RequestCycle$HandlerExecutor.respond(RequestCycle.java:862)
> [wicket-core-jar-6.16.0.jar:6.16.0]
> at
> org.apache.wicket.request.RequestHandlerStack.execute(RequestHandlerStack.java:64)
> [wicket-request-jar-6.16.0.jar:6.16.0]
> at
> org.apache.wicket.request.cycle.RequestCycle.execute(RequestCycle.java:261)
> [wicket-core-jar-6.16.0.jar:6.16.0]
> at
> org.apache.wicket.request.cycle.RequestCycle.processRequest(RequestCycle.java:218)
> [wicket-core-jar-6.16.0.jar:6.16.0]
> at
> org.apache.wicket.request.cycle.RequestCycle.processRequestAndDetach(RequestCycle.java:289)
> [wicket-core-jar-6.16.0.jar:6.16.0]
> at
> org.apache.wicket.protocol.ws.AbstractUpgradeFilter.processRequestCycle(AbstractUpgradeFilter.java:59)
> [wicket-native-websocket-core-jar-6.16.0.jar:6.16.0]
> at
> org.apache.wicket.protocol.http.WicketFilter.processRequest(WicketFilter.java:201)
> [wicket-core-jar-6.16.0.jar:6.16.0]
> at
> org.apache.wicket.protocol.http.WicketFilter.doFilter(WicketFilter.java:282)
> [wicket-core-jar-6.16.0.jar:6.16.0]
> at
> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:241)
> [tomcat-embed-core.jar:7.0.55]
> at
> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:208)
> [tomcat-embed-core.jar:7.0.55]
> at
> org.red5.logging.LoggerContextFilter.doFilter(LoggerContextFilter.java:77)
> [red5-server.jar:na]
> at
> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:241)
> [tomcat-embed-core.jar:7.0.55]
> at
> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:208)
> [tomcat-embed-core.jar:7.0.55]
> at
> org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:220)
> [tomcat-embed-core.jar:7.0.55]
> at
> org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:122)
> [tomcat-embed-core.jar:7.0.55]
> at
> org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:501)
> [tomcat-embed-core.jar:7.0.55]
> at
> org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:171)
> [tomcat-embed-core.jar:7.0.55]
> at
> org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:103)
> [tomcat-embed-core.jar:7.0.55]
> at
> org.apache.catalina.valves.AccessLogValve.invoke(AccessLogValve.java:950)
> [tomcat-embed-core.jar:7.0.55]
> at
> org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:116)
> [tomcat-embed-core.jar:7.0.55]
> at
> org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:408)
> [tomcat-embed-core.jar:7.0.55]
> at
> org.apache.coyote.http11.AbstractHttp11Processor.process(AbstractHttp11Processor.java:1070)
> [tomcat-embed-core.jar:7.0.55]
> at
> org.apache.coyote.AbstractProtocol$AbstractConnectionHandler.process(AbstractProtocol.java:611)
> [tomcat-embed-core.jar:7.0.55]
> at
> org.apache.tomcat.util.net.NioEndpoint$SocketProcessor.doRun(NioEndpoint.java:1736)
> [tomcat-embed-core.jar:7.0.55]
> at
> org.apache.tomcat.util.net.NioEndpoint$SocketProcessor.run(NioEndpoint.java:1695)
> [tomcat-embed-core.jar:7.0.55]
> at
> java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1145)
> [na:1.7.0_65]
> at
> java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:615)
> [na:1.7.0_65]
> at
> org.apache.tomcat.util.threads.TaskThread$WrappingRunnable.run(TaskThread.java:61)
> [tomcat-embed-core.jar:7.0.55]
> at
> java.lang.Thread.run(Thread.java:745)
> [na:1.7.0_65]
> DEBUG 09-19
> 11:47:25.927
> o.a.w.u.c.CookieUtils:266
> [http-nio-0.0.0.0-5080-exec-10]
> - Unable to find
> Cookie with
> name=LoggedIn and
> request
> URI=signin?1-1.IBehaviorListener.1-signin
> DEBUG 09-19
> 11:47:25.929
> o.a.w.f.FeedbackMessages:69
> [http-nio-0.0.0.0-5080-exec-10]
> - Adding feedback
> message
> '[FeedbackMessage
> message = "Invalid
> password", reporter =
> signin, level = ERROR]'
> DEBUG 09-19
> 11:47:25.929
> o.a.w.u.c.CookieUtils:266
> [http-nio-0.0.0.0-5080-exec-10]
> - Unable to find
> Cookie with
> name=LoggedIn and
> request
> URI=signin?1-1.IBehaviorListener.1-signin
> DEBUG 09-19
> 11:47:25.930
> o.a.wicket.Page:871
> [http-nio-0.0.0.0-5080-exec-10]
> - ending request for
> page [Page class =
> org.apache.openmeetings.web.pages.auth.SignInPage,
> id = 1, render count =
> 1], request
> org.apache.wicket.protocol.http.servlet.ServletWebRequest@a6e74b
> <ma...@a6e74b>
> DEBUG 09-19
> 11:47:25.930
> o.a.wicket.Page:871
> [http-nio-0.0.0.0-5080-exec-10]
> - ending request for
> page [Page class =
> org.apache.openmeetings.web.pages.auth.SignInPage,
> id = 1, render count =
> 1], request
> org.apache.wicket.protocol.http.servlet.ServletWebRequest@a6e74b
> <ma...@a6e74b>
> DEBUG 09-19
> 11:47:25.930
> o.a.wicket.Page:871
> [http-nio-0.0.0.0-5080-exec-10]
> - ending request for
> page [Page class =
> org.apache.openmeetings.web.pages.auth.SignInPage,
> id = 1, render count =
> 1], request
> org.apache.wicket.protocol.http.servlet.ServletWebRequest@a6e74b
> <ma...@a6e74b>
> DEBUG 09-19
> 11:47:25.988
> o.a.w.p.AsynchronousDataStore$PageSavingRunnable:354
> [Wicket-PageSavingThread]
> - Saving
> asynchronously: Entry
> [sessionId=2A10AA69C3E771FF51FABD4D26A20559,
> pageId=1]...
> DEBUG 09-19
> 11:47:25.988
> o.a.w.p.DiskDataStore:186
> [Wicket-PageSavingThread]
> - Storing data for
> page with id '1' in
> session with id
> '2A10AA69C3E771FF51FABD4D26A20559'
> DEBUG 09-19
> 11:47:25.988
> o.a.w.p.PageAccessSynchronizer:195
> [http-nio-0.0.0.0-5080-exec-10]
> -
> 'http-nio-0.0.0.0-5080-exec-10'
> released lock to page
> with id '1'
> DEBUG 09-19
> 11:47:25.988
> o.a.w.p.PageAccessSynchronizer:346
> [http-nio-0.0.0.0-5080-exec-10]
> -
> 'http-nio-0.0.0.0-5080-exec-10'
> notifying blocked threads
> And here is my conf file :
>
> #
> # Licensed to the
> Apache Software
> Foundation (ASF) under one
> # or more contributor
> license agreements.
> See the NOTICE file
> # distributed with
> this work for
> additional information
> # regarding copyright
> ownership. The ASF
> licenses this file
> # to you under the
> Apache License,
> Version 2.0 (the
> # "License"); you may
> not use this file
> except in compliance
> # with the License.
> You may obtain a copy
> of the License at
> #
> #
> http://www.apache.org/licenses/LICENSE-2.0
> #
> # Unless required by
> applicable law or
> agreed to in writing,
> # software distributed
> under the License is
> distributed on an
> # "AS IS" BASIS,
> WITHOUT WARRANTIES OR
> CONDITIONS OF ANY
> # KIND, either express
> or implied. See the
> License for the
> # specific language
> governing permissions
> and limitations
> # under the License.
> #
> #ConfigurationFile for
> LDAP Auth
> #ConfigKey
> 'ldap_config_path'
> must be set in
> DataBase Configration
> of OM and point to
> this file
> #o.becherer,14.01.2009
> #LDAP URL
> # This is the URL used
> to access your LDAP
> server.
> # if you want to use
> "ldaps://" links,
> please be aware that
> you need to import
> your CA certificate
> # to a java keystore
> and add the
> -Djavax.net.ssl.keyStore,
> -Djavax.net.ssl.keyStorePassword,
> #
> -Djavax.net.ssl.trustStore
> and
> -Djavax.net.ssl.trustStorePassword
> parameters to your
> # JAVA_OPT environment
> ldap_conn_host=@IP_of_my_AD
> ldap_conn_port=389
> ldap_conn_secure=false
> # Login distinguished
> name (DN) for
> Authentication on LDAP
> Server - keep empty if
> not required
> # Use full qualified
> LDAP DN
> ldap_admin_dn=CN=adconnect,OU=Comptes,OU=SI,OU=Services,OU=COMPANY,DC=mycompany,DC=priv
> # Loginpass for
> Authentication on LDAP
> Server - keep empty if
> not required
> ldap_passwd=pass_for_user_adconnect
> # base to search for
> userdata(of user, that
> wants to login)
> ldap_search_base=DC=mycompany,DC=priv
> # Fieldnames (can
> differ between Ldap
> servers)
> ldap_search_query=(uid=%s)
> # the scope of the
> search might be:
> OBJECT, ONELEVEL, SUBTREE
> ldap_search_scope=ONELEVEL
> # Ldap auth type(NONE,
> SEARCHANDBIND, SIMPLEBIND)
> # When using
> SIMPLEBIND a simple
> bind is performed on
> the LDAP server to
> check user authentication
> # When using NONE,
> the Ldap server is not
> used for authentication
> ldap_auth_type=SIMPLEBIND
> # userDN format, will
> be used to bind if
> ldap_auth_type=SIMPLEBIND
> # might be used to get
> provisionningDn in
> case ldap_auth_type=NONE
> ldap_userdn_format=uid=%s,OU=COMPANY,DC=mycompany,DC=priv
> # Ldap provisioning
> type(NONE, AUTOCREATE,
> AUTOUPDATE)
> ldap_provisionning=AUTOCREATE
> # Set this to 'true'
> if you want to use
> admin_dn to get user
> attributes
> # If any other value
> is set, user_dn will
> be used
> ldap_use_admin_to_get_attrs=true
> # Ldap-password
> synchronization to OM DB
> # Set this to 'true'
> if you want OM to
> synchronize the user
> Ldap-password to OM's
> internal DB
> # If you want to
> disable the feature,
> set this to any other
> string.
> # Defautl value is 'true'
> ldap_sync_password_to_om=true
> # Ldap user attributes
> mapping
> # Set the following
> internal OM user
> attributes to their
> corresponding
> Ldap-attribute
> ldap_user_attr_lastname=sn
> ldap_user_attr_firstname=givenName
> ldap_user_attr_mail=mail
> ldap_user_attr_street=streetAddress
> ldap_user_attr_additionalname=description
> ldap_user_attr_fax=facsimileTelephoneNumber
> ldap_user_attr_zip=postalCode
> ldap_user_attr_country=co
> ldap_user_attr_town=l
> ldap_user_attr_phone=telephoneNumber
> # optional, only
> absolute URLs make sense
> #ldap_user_picture_uri=picture_uri
> # optional
> # the timezone has to
> match any timezone
> available in Java,
> otherwise the timezone
> defined in the value of
> # the conf_key
> "default.timezone" in
> OpenMeetings
> "configurations" table
> #ldap_user_timezone=timezone
> # Ldap ignore
> upper/lower case,
> convert all input to
> lower case
> ldap_use_lower_case=false
>
>
> Thanks a lot for your
> help.
>
> Greg.
>
>
>
> 2014-09-18 17:52
> GMT+02:00 Maxim
> Solodovnik
> <solomax666@gmail.com
> <ma...@gmail.com>>:
>
> please check this
> URL:
> http://kb.juniper.net/InfoCenter/index?page=content&id=KB17098
>
> According to it
> you have "User not
> found"
>
> could you provide
> more ldap related
> logs?
> it might be Admin
> not found or user
> entered in login
> form not found
> depending on your
> settings
>
> On 18 September
> 2014 21:43,
> Grégory Mangeney
> <mangeney@gmail.com <ma...@gmail.com>>
> wrote:
>
> Hello, It's me
> again...
> I'm back.
> Now I have a
> new problem to
> connect to my
> AD...
> In log file it
> is write :
> *ERROR
> ......... Not
> authenticated*
> witch is a
> quite better
> message than
> before but
> after that it
> is write :
> *LdapErr:
> DSID-0C090334,
> comment:
> AcceptSecurityContext
> error, data
> 525, vece\00
> at........*
> I try to
> understand my
> problem but
> "AcceptSecurityContext
> error" seems
> to speack
> about a
> security problem.
> I have set my
> ldap_conn_secure=false
> in om_ldap.conf.
> I don't
> understand
> what could be
> my problem.
>
> thanks a lot
> for your ideas.
>
> Greg.
> 2014-09-18
> 15:37
> GMT+02:00
> Grégory
> Mangeney
> <mangeney@gmail.com
> <ma...@gmail.com>>:
>
> Ok, I
> finally
> understand
> that I
> have to
> put the
> filename
> and only
> the
> filename
> without
> */usr/lib/red5/webapps/openmeetings/conf/*
>
> Now I have
> a new
> message
> whitch
> said me
> invalid
> password...
> It's quite
> better...
> Thank you...
> I could
> continue
> to try to
> set it now.
> bye
>
> Greg.
>
> 2014-09-18
> 15:06
> GMT+02:00
> Maxim
> Solodovnik
> <solomax666@gmail.com
> <ma...@gmail.com>>:
>
> you
> need
> to
> write
> file
> name
> relative
> to
> webapps/openmeetings/conf
> folder
> in
> your
> case
> *om_ldap.cfg
> *should be
> specified
>
> On 18
> September
> 2014
> 20:04,
> Grégory Mangeney
> <mangeney@gmail.com
> <ma...@gmail.com>>
> wrote:
>
> Thank
> you very
> much
> but I
> don't
> understand
> very
> well.
> I
> think
> I put
> the right
> information...
> Do
> you want
> to
> say that
> I
> have
> to
> write
> :
> */usr/lib/red5/webapps/openmeetings/conf/*
> without
> the filename
> *om_ldap.cfg*
> at
> the end?
> Thanks
> for your
> help
> Greg
>
> 2014-09-18
> 14:52
> GMT+02:00
> Maxim
> Solodovnik
> <solomax666@gmail.com
> <ma...@gmail.com>>:
>
> AFAIK
> the
> path
> should
> be
> relative
> to
> /usr/lib/red5/webapps/openmeetings/conf
>
> Please
> change
> this
> path
>
> Additionally
> you
> can
> file
> JIRA
> issue
> to
> add
> check
> to
> the
> Admin
> screen
> (so
> path
> will
> be
> validated
> on
> enter)
>
> On
> 18
> September
> 2014
> 19:44,
> Grégory
> Mangeney
> <mangeney@gmail.com
> <ma...@gmail.com>>
> wrote:
>
> Hello,
> I have
> the
> same
> problem:
> I could
> not
> connect
> with
> AD.
> I have
> the
> domain
> at
> the
> login
> screen,
>
> I am
> using
> the
> 3.0.3.
> I found
> this
> line
> in
> my
> log
> file
> :*ERROR
> 09-18
> 14:28:33.994
> o.a.o.l.LdapLoginManagement:147
> [http-nio-0.0.0.0-5080-exec-4]
> - Error
> on
> LdapLogin
> : Configurationdata
> couldnt
> be
> retrieved!*
> This
> seem
> strange
> because
> in
> my
> LDAP
> config
> (in
> openmeetings
> Administration/LDAP
> menu),
> I put
> the
> correct
> path
> in
> the
> "Config
> file
> name"
> : /usr/lib/red5/webapps/openmeetings/conf/om_ldap.cfg
> Why
> is
> this
> error
> appeared
> : *Configurationdata
> couldnt
> be
> retrieved!
> *???
> Thanks
> a lot
> Greg
>
>
> 2014-09-17
> 12:52
> GMT+02:00
> Maxim
> Solodovnik
> <solomax666@gmail.com
> <ma...@gmail.com>>:
>
> great
> :)
>
> On
> 17
> September
> 2014
> 17:46,
> Teddy
> Jayasaputra
> <teddy.jayasaputra@ocbcnisp.com
> <ma...@ocbcnisp.com>>
> wrote:
>
> Dear
> Maxim,
>
> After
> close
> look
> to
> console
> log.
>
> We
> found
> this
> error
> :
> ERROR
> 09-17
> 17:28:33.278
> LdapLoginManagement.java
> 135070
> 285
> org.apache.openmeetings.ldap.LdapLoginManagement
> [http-nio-0.0.0.0-5080-exec-6]
> - User
> not
> found
> in
> OM
> DB
> and
> Provisionning.AUTOCREATE
> was
> not
> set
>
> After
> we
> change
> ldapconfiguration
> file
> from
> ldap_provisionning=NONE
> to
> AUTOCREATE
> we
> can
> login
> using
> AD.
>
> thanks.
>
> Best
> Regards,
>
>
> -Teddy
> Jayasaputra-
>
>
>
> On
> 9/17/2014
> 4:25
> PM,
> Maxim
> Solodovnik
> wrote:
>> do
>> you
>> have
>> your
>> AD
>> domain
>> on
>> the
>> login
>> screen?
>>
>> are
>> there
>> errors
>> in
>> the
>> log?
>> what
>> OM
>> version
>> are
>> you
>> using?
>>
>> On
>> 17
>> September
>> 2014
>> 16:02,
>> ARI
>> HENDIAWAN
>> <ari.hendiawan@ocbcnisp.com
>> <ma...@ocbcnisp.com>>
>> wrote:
>>
>> Dear
>> all,
>> please
>> we
>> need
>> extra
>> information
>> how
>> to
>> integrate
>> openmeetings
>> 3.0.3
>> with
>> AD?
>> we
>> already
>> setting
>> on
>> ldap.conf
>> and
>> still
>> problem..
>> if
>> we
>> saw
>> on
>> AD
>> , user
>> that
>> want
>> sign-in
>> openmeetings
>> success,
>> but
>> on
>> login
>> menu
>> openmeetings
>> shown
>> error
>> "invalid
>> password"
>>
>>
>> Tks
>>
>>
>> --
>> Disclaimer
>> :
>> Confidential
>> information
>> may
>> be
>> contained
>> in
>> this
>> message.
>> If
>> you
>> are
>> not
>> the
>> intended
>> recipient,
>> you
>> are
>> strictly
>> prohibited
>> and
>> may
>> be
>> unlawful
>> to
>> use,
>> copy,
>> store,
>> distribute,
>> disclose
>> or
>> communicate
>> any
>> part
>> of
>> it
>> to
>> others
>> and
>> you
>> are
>> obliged
>> to
>> return
>> it
>> immediately
>> to
>> sender
>> or
>> notify
>> us
>> and
>> delete
>> the
>> e-mail
>> and
>> any
>> attachments
>> from
>> your
>> system.
>> Opinions,
>> conclusions
>> and
>> other
>> information
>> in
>> this
>> e-mail
>> that
>> do
>> not
>> relate
>> to
>> the
>> official
>> business
>> of
>> any
>> PT
>> Bank
>> OCBC
>> NISP
>> Tbk
>> shall
>> be
>> understood
>> as
>> neither
>> given
>> nor
>> endorsed
>> by
>> it.
>> No
>> assumption
>> of
>> responsibility
>> or
>> liability
>> whatsoever
>> is
>> undertaken
>> by
>> PT
>> Bank
>> OCBC
>> NISP
>> Tbk
>> in
>> respect
>> of
>> prohibited
>> and
>> unauthorised
>> use
>> by
>> any
>> other
>> person.
>>
>>
>>
>>
>> --
>>
>> WBR
>> Maxim
>> aka
>> solomax
>>
>
>
>
> --
> Disclaimer
> :
> Confidential
> information
> may
> be
> contained
> in
> this
> message.
> If
> you
> are
> not
> the
> intended
> recipient,
> you
> are
> strictly
> prohibited
> and
> may
> be
> unlawful
> to
> use,
> copy,
> store,
> distribute,
> disclose
> or
> communicate
> any
> part
> of
> it
> to
> others
> and
> you
> are
> obliged
> to
> return
> it
> immediately
> to
> sender
> or
> notify
> us
> and
> delete
> the
> e-mail
> and
> any
> attachments
> from
> your
> system.
> Opinions,
> conclusions
> and
> other
> information
> in
> this
> e-mail
> that
> do
> not
> relate
> to
> the
> official
> business
> of
> any
> PT
> Bank
> OCBC
> NISP
> Tbk
> shall
> be
> understood
> as
> neither
> given
> nor
> endorsed
> by
> it.
> No
> assumption
> of
> responsibility
> or
> liability
> whatsoever
> is
> undertaken
> by
> PT
> Bank
> OCBC
> NISP
> Tbk
> in
> respect
> of
> prohibited
> and
> unauthorised
> use
> by
> any
> other
> person.
>
>
>
>
> --
>
> WBR
> Maxim
> aka
> solomax
>
>
>
>
>
>
> --
>
> WBR
> Maxim
> aka
> solomax
>
>
>
>
>
>
> --
> WBR
> Maxim
> aka
> solomax
>
>
>
>
>
>
> --
> WBR
> Maxim aka solomax
>
>
>
>
>
> --
> WBR
> Maxim aka solomax
>
>
>
>
>
> --
> WBR
> Maxim aka solomax
>
>
>
>
>
>
>
> --
> WBR
> Maxim aka solomax
>
>
>
>
>
>
>
> --
> WBR
> Maxim aka solomax
Re: need info about problem when integration AD
Posted by Maxim Solodovnik <so...@gmail.com>.
this setting
ldap_search_query=(uid=%s)
mean your LDAP user should have "uid" attribute with value
"the_string_entered_into_login_field"
Additionally it need to be under this
ldap_search_base=OU=COMPANY,DC=mycompany,DC=priv
base in LDAP tree
On 23 September 2014 20:47, Grégory Mangeney <ma...@gmail.com> wrote:
> Hello Maxim.
> I had try with the 3.0.4 Version according to your link.
>
> Now I have an other error in log file.
> It said NONE USER FOUND IN LDAP...
> I hope so the connection with my AD is good and it still a config problem
> but maybe you could help me with my logs and my conf file...
>
> My logs:
>
> ERROR 09-23 15:34:55.797 o.a.o.l.LdapLoginManagement:266
> [http-nio-0.0.0.0-5080-exec-8] - NONE users found in LDAP
> DEBUG 09-23 15:34:55.799 o.a.w.u.c.CookieUtils:273
> [http-nio-0.0.0.0-5080-exec-8] - Unable to find Cookie with name=LoggedIn
> and request URI=signin?0-5.IBehaviorListener.0-signin-signin-submit
> DEBUG 09-23 15:34:55.802 o.a.w.f.FeedbackMessages:69
> [http-nio-0.0.0.0-5080-exec-8] - Adding feedback message '[FeedbackMessage
> message = "Invalid password", reporter = signin, level = ERROR]'
> DEBUG 09-23 15:34:55.808 o.a.wicket.Page:871
> [http-nio-0.0.0.0-5080-exec-8] - ending request for page [Page class =
> org.apache.openmeetings.web.pages.auth.SignInPage, id = 0, render count =
> 5], request org.apache.wicket.protocol.http.servlet.ServletWebRequest@69fbe
> DEBUG 09-23 15:34:55.809 o.a.wicket.Page:871
> [http-nio-0.0.0.0-5080-exec-8] - ending request for page [Page class =
> org.apache.openmeetings.web.pages.auth.SignInPage, id = 0, render count =
> 5], request org.apache.wicket.protocol.http.servlet.ServletWebRequest@69fbe
> DEBUG 09-23 15:34:55.809 o.a.wicket.Page:871
> [http-nio-0.0.0.0-5080-exec-8] - ending request for page [Page class =
> org.apache.openmeetings.web.pages.auth.SignInPage, id = 0, render count =
> 5], request org.apache.wicket.protocol.http.servlet.ServletWebRequest@69fbe
> DEBUG 09-23 15:34:55.811
> o.a.w.p.AsynchronousDataStore$PageSavingRunnable:354
> [Wicket-PageSavingThread] - Saving asynchronously: Entry
> [sessionId=E576CCA08DEE992DF7CCBD22F2FD64F8, pageId=0]...
> DEBUG 09-23 15:34:55.811 o.a.w.p.DiskDataStore:186
> [Wicket-PageSavingThread] - Storing data for page with id '0' in session
> with id 'E576CCA08DEE992DF7CCBD22F2FD64F8'
> DEBUG 09-23 15:34:55.812 o.a.w.p.PageAccessSynchronizer:195
> [http-nio-0.0.0.0-5080-exec-8] - 'http-nio-0.0.0.0-5080-exec-8' released
> lock to page with id '0'
> DEBUG 09-23 15:34:55.812 o.a.w.p.PageAccessSynchronizer:346
> [http-nio-0.0.0.0-5080-exec-8] - 'http-nio-0.0.0.0-5080-exec-8' notifying
> blocked threads
> DEBUG 09-23 15:35:30.522 o.a.o.m.MailHandler:258
> [org.springframework.scheduling.quartz.SchedulerFactoryBean#0_Worker-2] -
> sendMails enter ...
> DEBUG 09-23 15:35:30.523 o.a.o.m.MailHandler:260
> [org.springframework.scheduling.quartz.SchedulerFactoryBean#0_Worker-2] -
> Number of emails in init queue 0
> DEBUG 09-23 15:35:30.524 o.a.o.m.MailHandler:265
> [org.springframework.scheduling.quartz.SchedulerFactoryBean#0_Worker-2] -
> ... sendMails done.
> DEBUG 09-23 15:35:35.503 o.a.o.d.d.s.SessiondataDao:404
> [org.springframework.scheduling.quartz.SchedulerFactoryBean#0_Worker-3] -
> ****** clearSessionTable:
> DEBUG 09-23 15:35:35.505 o.a.o.d.d.s.SessiondataDao:408
> [org.springframework.scheduling.quartz.SchedulerFactoryBean#0_Worker-3] -
> clearSessionTable: 0
> DEBUG 09-23 15:35:35.512 o.a.o.q.s.MeetingReminderJob:34
> [org.springframework.scheduling.quartz.SchedulerFactoryBean#0_Worker-4] -
> MeetingReminderJob.execute
>
>
>
> My conf :
> #
> # Licensed to the Apache Software Foundation (ASF) under one
> # or more contributor license agreements. See the NOTICE file
> # distributed with this work for additional information
> # regarding copyright ownership. The ASF licenses this file
> # to you under the Apache License, Version 2.0 (the
> # "License"); you may not use this file except in compliance
> # with the License. You may obtain a copy of the License at
> #
> # http://www.apache.org/licenses/LICENSE-2.0
> #
> # Unless required by applicable law or agreed to in writing,
> # software distributed under the License is distributed on an
> # "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
> # KIND, either express or implied. See the License for the
> # specific language governing permissions and limitations
> # under the License.
> #
> #ConfigurationFile for LDAP Auth
> #ConfigKey 'ldap_config_path' must be set in DataBase Configration of OM
> and point to this file
> #o.becherer,14.01.2009
>
> #LDAP URL
> # This is the URL used to access your LDAP server.
> # if you want to use "ldaps://" links, please be aware that you need to
> import your CA certificate
> # to a java keystore and add the -Djavax.net.ssl.keyStore,
> -Djavax.net.ssl.keyStorePassword,
> # -Djavax.net.ssl.trustStore and -Djavax.net.ssl.trustStorePassword
> parameters to your
> # JAVA_OPT environment
> ldap_conn_host=@IP_of_my_AD
> ldap_conn_port=389
> ldap_conn_secure=false
>
> # Login distinguished name (DN) for Authentication on LDAP Server - keep
> empty if not required
> # Use full qualified LDAP DN
> ldap_admin_dn=CN=adconnect,OU=Comptes
> Cles,OU=SI,OU=Services,OU=COMPANY,DC=mycompany,DC=priv
>
> # Loginpass for Authentication on LDAP Server - keep empty if not required
> ldap_passwd=pass_for_user_adconnect
>
> # base to search for userdata(of user, that wants to login)
> ldap_search_base=OU=COMPANY,DC=mycompany,DC=priv
>
> # Fieldnames (can differ between Ldap servers)
> ldap_search_query=(uid=%s)
>
> # the scope of the search might be: OBJECT, ONELEVEL, SUBTREE
> ldap_search_scope=SUBTREE
>
> # Ldap auth type(NONE, SEARCHANDBIND, SIMPLEBIND)
> # When using SIMPLEBIND a simple bind is performed on the LDAP server to
> check user authentication
> # When using NONE, the Ldap server is not used for authentication
> ldap_auth_type=SEARCHANDBIND
>
> # userDN format, will be used to bind if ldap_auth_type=SIMPLEBIND
> # might be used to get provisionningDn in case ldap_auth_type=NONE
> ldap_userdn_format=uid=%s,OU=COMPANY,DC=mycompany,DC=priv
>
> # Ldap provisioning type(NONE, AUTOCREATE, AUTOUPDATE)
> ldap_provisionning=AUTOCREATE
>
> # Set this to 'true' if you want to use admin_dn to get user attributes
> # If any other value is set, user_dn will be used
> ldap_use_admin_to_get_attrs=true
>
> # Ldap-password synchronization to OM DB
> # Set this to 'true' if you want OM to synchronize the user Ldap-password
> to OM's internal DB
> # If you want to disable the feature, set this to any other string.
> # Defautl value is 'true'
> ldap_sync_password_to_om=true
>
> # Ldap user attributes mapping
> # Set the following internal OM user attributes to their corresponding
> Ldap-attribute
> ldap_user_attr_lastname=sn
> ldap_user_attr_firstname=givenName
> ldap_user_attr_mail=mail
> ldap_user_attr_street=streetAddress
> ldap_user_attr_additionalname=description
> ldap_user_attr_fax=facsimileTelephoneNumber
> ldap_user_attr_zip=postalCode
> ldap_user_attr_country=co
> ldap_user_attr_town=l
> ldap_user_attr_phone=telephoneNumber
>
> # optional, only absolute URLs make sense
> #ldap_user_picture_uri=picture_uri
>
> # optional
> # the timezone has to match any timezone available in Java, otherwise the
> timezone defined in the value of
> # the conf_key "default.timezone" in OpenMeetings "configurations" table
> #ldap_user_timezone=timezone
>
> # Ldap ignore upper/lower case, convert all input to lower case
> ldap_use_lower_case=false
>
>
> Do you see how to fix my problem with this new branch of openmeetings
> 3.0.4?
>
> Thanks a lot.
>
> Greg.
>
>
>
> 2014-09-22 17:50 GMT+02:00 Maxim Solodovnik <so...@gmail.com>:
>
>> Please get build #67 here:
>> https://builds.apache.org/view/M-R/view/OpenMeetings/job/Openmeetings%203.0.x/
>> I have no LDAP infrastructure to test :( I 100% rely on community in this
>> So thanks for the testing :)
>>
>> On 23 September 2014 01:17, Grégory Mangeney <ma...@gmail.com> wrote:
>>
>>> Windows Server 2003 R2
>>>
>>> 2014-09-22 17:13 GMT+02:00 Grégory Mangeney <ma...@gmail.com>:
>>>
>>>> Ok,thank you for that.
>>>> For information I am using a Microsoft Active Directory in object
>>>> version 31
>>>>
>>>> I get this information by tapping dsquery *
>>>> cn=schema,cn=configuration,dc=mycompany,dc=priv -scope base -attr
>>>> objectVersion
>>>>
>>>> Good evening.
>>>>
>>>> Best regards.
>>>>
>>>> Greg.
>>>>
>>>> 2014-09-22 16:40 GMT+02:00 Maxim Solodovnik <so...@gmail.com>:
>>>>
>>>>> You have these Paramaribo in your configuration:
>>>>> ldap_search_base=DC=mycompany,DC=priv
>>>>> # Fieldnames (can differ between Ldap servers)
>>>>> ldap_search_query=(uid=%s)
>>>>>
>>>>> I guess nothing is found. Not sure I never saw error like yours.
>>>>>
>>>>> Will create 3.0.4 nightly fly you later today (with updated ldap
>>>>> library) if error will be the same I'll ask ldap library developers for the
>>>>> help
>>>>> On Sep 22, 2014 9:05 PM, "Grégory Mangeney" <ma...@gmail.com>
>>>>> wrote:
>>>>>
>>>>>> a bad search query?
>>>>>>
>>>>>> In this case, the loging error message shouldn't be somthing like :
>>>>>> "Login/password do not exist" ?
>>>>>>
>>>>>> How could I check this point...
>>>>>> I do not modified the source code!
>>>>>>
>>>>>> 2014-09-22 11:25 GMT+02:00 Maxim Solodovnik <so...@gmail.com>:
>>>>>>
>>>>>>> it seems like nothing was found
>>>>>>> Maybe bad search query?
>>>>>>>
>>>>>>> On 22 September 2014 15:55, Grégory Mangeney <ma...@gmail.com>
>>>>>>> wrote:
>>>>>>>
>>>>>>>> Hello Maxim.
>>>>>>>> Thanks a lot for your answer.
>>>>>>>> You're helpfull...
>>>>>>>>
>>>>>>>> I had ever try with SEARCHANDBIND but it still not working...
>>>>>>>> So I set it again to give you my logs...
>>>>>>>> The error is quite different but I could not understand what is the
>>>>>>>> problem...
>>>>>>>>
>>>>>>>> In the login screen I have the following message in red : "Unknown
>>>>>>>> error. Please report this to the administrator."
>>>>>>>>
>>>>>>>>
>>>>>>>>
>>>>>>>>
>>>>>>>> Here is my logs :
>>>>>>>>
>>>>>>>> ERROR 09-22 10:34:34.814 o.a.o.l.LdapLoginManagement:356
>>>>>>>> [http-nio-0.0.0.0-5080-exec-4] - Unexpected exception.
>>>>>>>> org.apache.directory.api.ldap.model.cursor.CursorLdapReferralException:
>>>>>>>> null
>>>>>>>> at
>>>>>>>> org.apache.directory.ldap.client.api.EntryCursorImpl.get(EntryCursorImpl.java:164)
>>>>>>>> ~[api-all-jar-1.0.0-M23.jar:1.0.0-M23]
>>>>>>>> at
>>>>>>>> org.apache.directory.ldap.client.api.EntryCursorImpl.get(EntryCursorImpl.java:50)
>>>>>>>> ~[api-all-jar-1.0.0-M23.jar:1.0.0-M23]
>>>>>>>> at
>>>>>>>> org.apache.openmeetings.ldap.LdapLoginManagement.login(LdapLoginManagement.java:258)
>>>>>>>> ~[openmeetings-core-3.0.3-RELEASE.jar:na]
>>>>>>>> at
>>>>>>>> org.apache.openmeetings.web.app.WebSession.signIn(WebSession.java:257)
>>>>>>>> [openmeetings-web-3.0.3-RELEASE.jar:na]
>>>>>>>> at
>>>>>>>> org.apache.openmeetings.web.pages.auth.SignInDialog.onSubmit(SignInDialog.java:190)
>>>>>>>> [openmeetings-web-3.0.3-RELEASE.jar:na]
>>>>>>>> at
>>>>>>>> com.googlecode.wicket.jquery.ui.widget.dialog.AbstractFormDialog$DialogFormSubmitter.onSubmit(AbstractFormDialog.java:279)
>>>>>>>> [wicket-jquery-ui-jar-6.16.0.jar:na]
>>>>>>>> at
>>>>>>>> org.apache.wicket.markup.html.form.Form.delegateSubmit(Form.java:1266)
>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>> at
>>>>>>>> org.apache.wicket.markup.html.form.Form.process(Form.java:938)
>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>> at
>>>>>>>> org.apache.wicket.markup.html.form.StatelessForm.process(StatelessForm.java:96)
>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>> at
>>>>>>>> org.apache.wicket.markup.html.form.Form.onFormSubmitted(Form.java:770)
>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>> at
>>>>>>>> com.googlecode.wicket.jquery.ui.widget.dialog.AbstractFormDialog.internalOnClick(AbstractFormDialog.java:200)
>>>>>>>> [wicket-jquery-ui-jar-6.16.0.jar:na]
>>>>>>>> at
>>>>>>>> com.googlecode.wicket.jquery.ui.widget.dialog.AbstractDialog$1.onClick(AbstractDialog.java:439)
>>>>>>>> [wicket-jquery-ui-jar-6.16.0.jar:na]
>>>>>>>> at
>>>>>>>> com.googlecode.wicket.jquery.ui.widget.dialog.DialogBehavior.onAjax(DialogBehavior.java:175)
>>>>>>>> [wicket-jquery-ui-jar-6.16.0.jar:na]
>>>>>>>> at
>>>>>>>> com.googlecode.wicket.jquery.core.ajax.JQueryAjaxBehavior.respond(JQueryAjaxBehavior.java:171)
>>>>>>>> [wicket-jquery-ui-core-jar-6.16.0.jar:na]
>>>>>>>> at
>>>>>>>> org.apache.wicket.ajax.AbstractDefaultAjaxBehavior.onRequest(AbstractDefaultAjaxBehavior.java:633)
>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>> at sun.reflect.GeneratedMethodAccessor91.invoke(Unknown Source)
>>>>>>>> ~[na:na]
>>>>>>>> at
>>>>>>>> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
>>>>>>>> ~[na:1.7.0_65]
>>>>>>>> at java.lang.reflect.Method.invoke(Method.java:606)
>>>>>>>> ~[na:1.7.0_65]
>>>>>>>> at
>>>>>>>> org.apache.wicket.RequestListenerInterface.internalInvoke(RequestListenerInterface.java:258)
>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>> at
>>>>>>>> org.apache.wicket.RequestListenerInterface.invoke(RequestListenerInterface.java:241)
>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>> at
>>>>>>>> org.apache.wicket.core.request.handler.ListenerInterfaceRequestHandler.invokeListener(ListenerInterfaceRequestHandler.java:250)
>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>> at
>>>>>>>> org.apache.wicket.core.request.handler.ListenerInterfaceRequestHandler.respond(ListenerInterfaceRequestHandler.java:236)
>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>> at
>>>>>>>> org.apache.wicket.request.cycle.RequestCycle$HandlerExecutor.respond(RequestCycle.java:862)
>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>> at
>>>>>>>> org.apache.wicket.request.RequestHandlerStack.execute(RequestHandlerStack.java:64)
>>>>>>>> [wicket-request-jar-6.16.0.jar:6.16.0]
>>>>>>>> at
>>>>>>>> org.apache.wicket.request.cycle.RequestCycle.execute(RequestCycle.java:261)
>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>> at
>>>>>>>> org.apache.wicket.request.cycle.RequestCycle.processRequest(RequestCycle.java:218)
>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>> at
>>>>>>>> org.apache.wicket.request.cycle.RequestCycle.processRequestAndDetach(RequestCycle.java:289)
>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>> at
>>>>>>>> org.apache.wicket.protocol.ws.AbstractUpgradeFilter.processRequestCycle(AbstractUpgradeFilter.java:59)
>>>>>>>> [wicket-native-websocket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>> at
>>>>>>>> org.apache.wicket.protocol.http.WicketFilter.processRequest(WicketFilter.java:201)
>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>> at
>>>>>>>> org.apache.wicket.protocol.http.WicketFilter.doFilter(WicketFilter.java:282)
>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>> at
>>>>>>>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:241)
>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>> at
>>>>>>>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:208)
>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>> at
>>>>>>>> org.red5.logging.LoggerContextFilter.doFilter(LoggerContextFilter.java:77)
>>>>>>>> [red5-server.jar:na]
>>>>>>>> at
>>>>>>>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:241)
>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>> at
>>>>>>>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:208)
>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>> at
>>>>>>>> org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:220)
>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>> at
>>>>>>>> org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:122)
>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>> at
>>>>>>>> org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:501)
>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>> at
>>>>>>>> org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:171)
>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>> at
>>>>>>>> org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:103)
>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>> at
>>>>>>>> org.apache.catalina.valves.AccessLogValve.invoke(AccessLogValve.java:950)
>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>> at
>>>>>>>> org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:116)
>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>> at
>>>>>>>> org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:408)
>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>> at
>>>>>>>> org.apache.coyote.http11.AbstractHttp11Processor.process(AbstractHttp11Processor.java:1070)
>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>> at
>>>>>>>> org.apache.coyote.AbstractProtocol$AbstractConnectionHandler.process(AbstractProtocol.java:611)
>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>> at
>>>>>>>> org.apache.tomcat.util.net.NioEndpoint$SocketProcessor.doRun(NioEndpoint.java:1736)
>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>> at
>>>>>>>> org.apache.tomcat.util.net.NioEndpoint$SocketProcessor.run(NioEndpoint.java:1695)
>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>> at
>>>>>>>> java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1145)
>>>>>>>> [na:1.7.0_65]
>>>>>>>> at
>>>>>>>> java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:615)
>>>>>>>> [na:1.7.0_65]
>>>>>>>> at
>>>>>>>> org.apache.tomcat.util.threads.TaskThread$WrappingRunnable.run(TaskThread.java:61)
>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>> at java.lang.Thread.run(Thread.java:745) [na:1.7.0_65]
>>>>>>>> DEBUG 09-22 10:34:34.817 o.a.w.u.c.CookieUtils:266
>>>>>>>> [http-nio-0.0.0.0-5080-exec-4] - Unable to find Cookie with name=LoggedIn
>>>>>>>> and request URI=signin?1-1.IBehaviorListener.1-signin
>>>>>>>> DEBUG 09-22 10:34:34.820 o.a.w.f.FeedbackMessages:69
>>>>>>>> [http-nio-0.0.0.0-5080-exec-4] - Adding feedback message '[FeedbackMessage
>>>>>>>> message = "Unknown error. Please report this to the administrator.",
>>>>>>>> reporter = signin, level = ERROR]'
>>>>>>>> DEBUG 09-22 10:34:34.821 o.a.w.u.c.CookieUtils:266
>>>>>>>> [http-nio-0.0.0.0-5080-exec-4] - Unable to find Cookie with name=LoggedIn
>>>>>>>> and request URI=signin?1-1.IBehaviorListener.1-signin
>>>>>>>> DEBUG 09-22 10:34:34.822 o.a.wicket.Page:871
>>>>>>>> [http-nio-0.0.0.0-5080-exec-4] - ending request for page [Page class =
>>>>>>>> org.apache.openmeetings.web.pages.auth.SignInPage, id = 1, render count =
>>>>>>>> 1], request
>>>>>>>> org.apache.wicket.protocol.http.servlet.ServletWebRequest@16618f3
>>>>>>>> DEBUG 09-22 10:34:34.822 o.a.wicket.Page:871
>>>>>>>> [http-nio-0.0.0.0-5080-exec-4] - ending request for page [Page class =
>>>>>>>> org.apache.openmeetings.web.pages.auth.SignInPage, id = 1, render count =
>>>>>>>> 1], request
>>>>>>>> org.apache.wicket.protocol.http.servlet.ServletWebRequest@16618f3
>>>>>>>> DEBUG 09-22 10:34:34.823 o.a.wicket.Page:871
>>>>>>>> [http-nio-0.0.0.0-5080-exec-4] - ending request for page [Page class =
>>>>>>>> org.apache.openmeetings.web.pages.auth.SignInPage, id = 1, render count =
>>>>>>>> 1], request
>>>>>>>> org.apache.wicket.protocol.http.servlet.ServletWebRequest@16618f3
>>>>>>>> DEBUG 09-22 10:34:34.828
>>>>>>>> o.a.w.p.AsynchronousDataStore$PageSavingRunnable:354
>>>>>>>> [Wicket-PageSavingThread] - Saving asynchronously: Entry
>>>>>>>> [sessionId=907ABBB232B18743F2A67024DA18F185, pageId=1]...
>>>>>>>> DEBUG 09-22 10:34:34.828 o.a.w.p.DiskDataStore:186
>>>>>>>> [Wicket-PageSavingThread] - Storing data for page with id '1' in session
>>>>>>>> with id '907ABBB232B18743F2A67024DA18F185'
>>>>>>>> DEBUG 09-22 10:34:34.828 o.a.w.p.PageAccessSynchronizer:195
>>>>>>>> [http-nio-0.0.0.0-5080-exec-4] - 'http-nio-0.0.0.0-5080-exec-4' released
>>>>>>>> lock to page with id '1'
>>>>>>>> DEBUG 09-22 10:34:34.828 o.a.w.p.PageAccessSynchronizer:346
>>>>>>>> [http-nio-0.0.0.0-5080-exec-4] - 'http-nio-0.0.0.0-5080-exec-4' notifying
>>>>>>>> blocked threads
>>>>>>>> DEBUG 09-22 10:34:36.341 o.a.o.m.MailHandler:249
>>>>>>>> [org.springframework.scheduling.quartz.SchedulerFactoryBean#0_Worker-1] -
>>>>>>>> resetSendingStatus enter ...
>>>>>>>>
>>>>>>>>
>>>>>>>>
>>>>>>>> Thank you for your time.
>>>>>>>>
>>>>>>>> Greg.
>>>>>>>>
>>>>>>>> 2014-09-20 8:59 GMT+02:00 Maxim Solodovnik <so...@gmail.com>:
>>>>>>>>
>>>>>>>>> According to the logs and config SIMPLEBIND failed for the user
>>>>>>>>> specified
>>>>>>>>> please try SEARCHANDBIND
>>>>>>>>>
>>>>>>>>> On 19 September 2014 17:09, Grégory Mangeney <ma...@gmail.com>
>>>>>>>>> wrote:
>>>>>>>>>
>>>>>>>>>> Hello.
>>>>>>>>>> Thank you for your link.
>>>>>>>>>> It appeare that I have a 525 error (user not found).
>>>>>>>>>>
>>>>>>>>>> I think the problem must be in my config file because I'm sure
>>>>>>>>>> that my user is good because I use it for an other app witch use it to
>>>>>>>>>> connect with AD.
>>>>>>>>>>
>>>>>>>>>> As you ask me i give you more line of my log file, after that I
>>>>>>>>>> would like to show you my conf file...
>>>>>>>>>> Maybe you will find a setting withch is not good!
>>>>>>>>>>
>>>>>>>>>>
>>>>>>>>>> So here is my log file whene I try to connect :
>>>>>>>>>> DEBUG 09-19 11:47:01.337 o.a.o.q.s.MeetingReminderJob:34
>>>>>>>>>> [org.springframework.scheduling.quartz.SchedulerFactoryBean#0_Worker-2] -
>>>>>>>>>> MeetingReminderJob.execute
>>>>>>>>>> DEBUG 09-19 11:47:25.760 o.a.w.p.h.s.ServletWebRequest:189
>>>>>>>>>> [http-nio-0.0.0.0-5080-exec-10] - Calculating context relative path from:
>>>>>>>>>> context path '/openmeetings', filterPrefix '', uri '/openmeetings/signin'
>>>>>>>>>> DEBUG 09-19 11:47:25.761 o.a.w.p.PageAccessSynchronizer:100
>>>>>>>>>> [http-nio-0.0.0.0-5080-exec-10] - 'http-nio-0.0.0.0-5080-exec-10'
>>>>>>>>>> attempting to acquire lock to page with id '1'
>>>>>>>>>> DEBUG 09-19 11:47:25.761 o.a.w.p.PageAccessSynchronizer:125
>>>>>>>>>> [http-nio-0.0.0.0-5080-exec-10] - http-nio-0.0.0.0-5080-exec-10 acquired
>>>>>>>>>> lock to page 1
>>>>>>>>>> DEBUG 09-19 11:47:25.762 o.a.o.d.d.s.SessiondataDao:68
>>>>>>>>>> [http-nio-0.0.0.0-5080-exec-10] - startsession :: startsession
>>>>>>>>>> DEBUG 09-19 11:47:25.763 o.a.o.u.c.ManageCryptStyle:32
>>>>>>>>>> [http-nio-0.0.0.0-5080-exec-10] - getInstanceOfCrypt::
>>>>>>>>>> configKeyCryptClassName:
>>>>>>>>>> org.apache.openmeetings.util.crypt.MD5Implementation
>>>>>>>>>> DEBUG 09-19 11:47:25.788 o.a.o.l.LdapLoginManagement:165
>>>>>>>>>> [http-nio-0.0.0.0-5080-exec-10] - LdapLoginmanagement.doLdapLogin
>>>>>>>>>> ERROR 09-19 11:47:25.924 o.a.o.l.LdapLoginManagement:351
>>>>>>>>>> [http-nio-0.0.0.0-5080-exec-10] - Not authenticated.
>>>>>>>>>> org.apache.directory.api.ldap.model.exception.LdapAuthenticationException:
>>>>>>>>>> 80090308: LdapErr: DSID-0C090334, comment: AcceptSecurityContext error,
>>>>>>>>>> data 525, vece\00
>>>>>>>>>> at
>>>>>>>>>> org.apache.directory.api.ldap.model.message.ResultCodeEnum.processResponse(ResultCodeEnum.java:2021)
>>>>>>>>>> ~[api-all-jar-1.0.0-M23.jar:1.0.0-M23]
>>>>>>>>>> at
>>>>>>>>>> org.apache.directory.ldap.client.api.AbstractLdapConnection.bind(AbstractLdapConnection.java:129)
>>>>>>>>>> ~[api-all-jar-1.0.0-M23.jar:1.0.0-M23]
>>>>>>>>>> at
>>>>>>>>>> org.apache.openmeetings.ldap.LdapLoginManagement.login(LdapLoginManagement.java:275)
>>>>>>>>>> ~[openmeetings-core-3.0.3-RELEASE.jar:na]
>>>>>>>>>> at
>>>>>>>>>> org.apache.openmeetings.web.app.WebSession.signIn(WebSession.java:257)
>>>>>>>>>> [openmeetings-web-3.0.3-RELEASE.jar:na]
>>>>>>>>>> at
>>>>>>>>>> org.apache.openmeetings.web.pages.auth.SignInDialog.onSubmit(SignInDialog.java:190)
>>>>>>>>>> [openmeetings-web-3.0.3-RELEASE.jar:na]
>>>>>>>>>> at
>>>>>>>>>> com.googlecode.wicket.jquery.ui.widget.dialog.AbstractFormDialog$DialogFormSubmitter.onSubmit(AbstractFormDialog.java:279)
>>>>>>>>>> [wicket-jquery-ui-jar-6.16.0.jar:na]
>>>>>>>>>> at
>>>>>>>>>> org.apache.wicket.markup.html.form.Form.delegateSubmit(Form.java:1266)
>>>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>>>> at
>>>>>>>>>> org.apache.wicket.markup.html.form.Form.process(Form.java:938)
>>>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>>>> at
>>>>>>>>>> org.apache.wicket.markup.html.form.StatelessForm.process(StatelessForm.java:96)
>>>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>>>> at
>>>>>>>>>> org.apache.wicket.markup.html.form.Form.onFormSubmitted(Form.java:770)
>>>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>>>> at
>>>>>>>>>> com.googlecode.wicket.jquery.ui.widget.dialog.AbstractFormDialog.internalOnClick(AbstractFormDialog.java:200)
>>>>>>>>>> [wicket-jquery-ui-jar-6.16.0.jar:na]
>>>>>>>>>> at
>>>>>>>>>> com.googlecode.wicket.jquery.ui.widget.dialog.AbstractDialog$1.onClick(AbstractDialog.java:439)
>>>>>>>>>> [wicket-jquery-ui-jar-6.16.0.jar:na]
>>>>>>>>>> at
>>>>>>>>>> com.googlecode.wicket.jquery.ui.widget.dialog.DialogBehavior.onAjax(DialogBehavior.java:175)
>>>>>>>>>> [wicket-jquery-ui-jar-6.16.0.jar:na]
>>>>>>>>>> at
>>>>>>>>>> com.googlecode.wicket.jquery.core.ajax.JQueryAjaxBehavior.respond(JQueryAjaxBehavior.java:171)
>>>>>>>>>> [wicket-jquery-ui-core-jar-6.16.0.jar:na]
>>>>>>>>>> at
>>>>>>>>>> org.apache.wicket.ajax.AbstractDefaultAjaxBehavior.onRequest(AbstractDefaultAjaxBehavior.java:633)
>>>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>>>> at sun.reflect.GeneratedMethodAccessor91.invoke(Unknown Source)
>>>>>>>>>> ~[na:na]
>>>>>>>>>> at
>>>>>>>>>> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
>>>>>>>>>> ~[na:1.7.0_65]
>>>>>>>>>> at java.lang.reflect.Method.invoke(Method.java:606)
>>>>>>>>>> ~[na:1.7.0_65]
>>>>>>>>>> at
>>>>>>>>>> org.apache.wicket.RequestListenerInterface.internalInvoke(RequestListenerInterface.java:258)
>>>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>>>> at
>>>>>>>>>> org.apache.wicket.RequestListenerInterface.invoke(RequestListenerInterface.java:241)
>>>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>>>> at
>>>>>>>>>> org.apache.wicket.core.request.handler.ListenerInterfaceRequestHandler.invokeListener(ListenerInterfaceRequestHandler.java:250)
>>>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>>>> at
>>>>>>>>>> org.apache.wicket.core.request.handler.ListenerInterfaceRequestHandler.respond(ListenerInterfaceRequestHandler.java:236)
>>>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>>>> at
>>>>>>>>>> org.apache.wicket.request.cycle.RequestCycle$HandlerExecutor.respond(RequestCycle.java:862)
>>>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>>>> at
>>>>>>>>>> org.apache.wicket.request.RequestHandlerStack.execute(RequestHandlerStack.java:64)
>>>>>>>>>> [wicket-request-jar-6.16.0.jar:6.16.0]
>>>>>>>>>> at
>>>>>>>>>> org.apache.wicket.request.cycle.RequestCycle.execute(RequestCycle.java:261)
>>>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>>>> at
>>>>>>>>>> org.apache.wicket.request.cycle.RequestCycle.processRequest(RequestCycle.java:218)
>>>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>>>> at
>>>>>>>>>> org.apache.wicket.request.cycle.RequestCycle.processRequestAndDetach(RequestCycle.java:289)
>>>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>>>> at
>>>>>>>>>> org.apache.wicket.protocol.ws.AbstractUpgradeFilter.processRequestCycle(AbstractUpgradeFilter.java:59)
>>>>>>>>>> [wicket-native-websocket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>>>> at
>>>>>>>>>> org.apache.wicket.protocol.http.WicketFilter.processRequest(WicketFilter.java:201)
>>>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>>>> at
>>>>>>>>>> org.apache.wicket.protocol.http.WicketFilter.doFilter(WicketFilter.java:282)
>>>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>>>> at
>>>>>>>>>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:241)
>>>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>>>> at
>>>>>>>>>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:208)
>>>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>>>> at
>>>>>>>>>> org.red5.logging.LoggerContextFilter.doFilter(LoggerContextFilter.java:77)
>>>>>>>>>> [red5-server.jar:na]
>>>>>>>>>> at
>>>>>>>>>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:241)
>>>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>>>> at
>>>>>>>>>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:208)
>>>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>>>> at
>>>>>>>>>> org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:220)
>>>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>>>> at
>>>>>>>>>> org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:122)
>>>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>>>> at
>>>>>>>>>> org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:501)
>>>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>>>> at
>>>>>>>>>> org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:171)
>>>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>>>> at
>>>>>>>>>> org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:103)
>>>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>>>> at
>>>>>>>>>> org.apache.catalina.valves.AccessLogValve.invoke(AccessLogValve.java:950)
>>>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>>>> at
>>>>>>>>>> org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:116)
>>>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>>>> at
>>>>>>>>>> org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:408)
>>>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>>>> at
>>>>>>>>>> org.apache.coyote.http11.AbstractHttp11Processor.process(AbstractHttp11Processor.java:1070)
>>>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>>>> at
>>>>>>>>>> org.apache.coyote.AbstractProtocol$AbstractConnectionHandler.process(AbstractProtocol.java:611)
>>>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>>>> at
>>>>>>>>>> org.apache.tomcat.util.net.NioEndpoint$SocketProcessor.doRun(NioEndpoint.java:1736)
>>>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>>>> at
>>>>>>>>>> org.apache.tomcat.util.net.NioEndpoint$SocketProcessor.run(NioEndpoint.java:1695)
>>>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>>>> at
>>>>>>>>>> java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1145)
>>>>>>>>>> [na:1.7.0_65]
>>>>>>>>>> at
>>>>>>>>>> java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:615)
>>>>>>>>>> [na:1.7.0_65]
>>>>>>>>>> at
>>>>>>>>>> org.apache.tomcat.util.threads.TaskThread$WrappingRunnable.run(TaskThread.java:61)
>>>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>>>> at java.lang.Thread.run(Thread.java:745) [na:1.7.0_65]
>>>>>>>>>> DEBUG 09-19 11:47:25.927 o.a.w.u.c.CookieUtils:266
>>>>>>>>>> [http-nio-0.0.0.0-5080-exec-10] - Unable to find Cookie with name=LoggedIn
>>>>>>>>>> and request URI=signin?1-1.IBehaviorListener.1-signin
>>>>>>>>>> DEBUG 09-19 11:47:25.929 o.a.w.f.FeedbackMessages:69
>>>>>>>>>> [http-nio-0.0.0.0-5080-exec-10] - Adding feedback message '[FeedbackMessage
>>>>>>>>>> message = "Invalid password", reporter = signin, level = ERROR]'
>>>>>>>>>> DEBUG 09-19 11:47:25.929 o.a.w.u.c.CookieUtils:266
>>>>>>>>>> [http-nio-0.0.0.0-5080-exec-10] - Unable to find Cookie with name=LoggedIn
>>>>>>>>>> and request URI=signin?1-1.IBehaviorListener.1-signin
>>>>>>>>>> DEBUG 09-19 11:47:25.930 o.a.wicket.Page:871
>>>>>>>>>> [http-nio-0.0.0.0-5080-exec-10] - ending request for page [Page class =
>>>>>>>>>> org.apache.openmeetings.web.pages.auth.SignInPage, id = 1, render count =
>>>>>>>>>> 1], request
>>>>>>>>>> org.apache.wicket.protocol.http.servlet.ServletWebRequest@a6e74b
>>>>>>>>>> DEBUG 09-19 11:47:25.930 o.a.wicket.Page:871
>>>>>>>>>> [http-nio-0.0.0.0-5080-exec-10] - ending request for page [Page class =
>>>>>>>>>> org.apache.openmeetings.web.pages.auth.SignInPage, id = 1, render count =
>>>>>>>>>> 1], request
>>>>>>>>>> org.apache.wicket.protocol.http.servlet.ServletWebRequest@a6e74b
>>>>>>>>>> DEBUG 09-19 11:47:25.930 o.a.wicket.Page:871
>>>>>>>>>> [http-nio-0.0.0.0-5080-exec-10] - ending request for page [Page class =
>>>>>>>>>> org.apache.openmeetings.web.pages.auth.SignInPage, id = 1, render count =
>>>>>>>>>> 1], request
>>>>>>>>>> org.apache.wicket.protocol.http.servlet.ServletWebRequest@a6e74b
>>>>>>>>>> DEBUG 09-19 11:47:25.988
>>>>>>>>>> o.a.w.p.AsynchronousDataStore$PageSavingRunnable:354
>>>>>>>>>> [Wicket-PageSavingThread] - Saving asynchronously: Entry
>>>>>>>>>> [sessionId=2A10AA69C3E771FF51FABD4D26A20559, pageId=1]...
>>>>>>>>>> DEBUG 09-19 11:47:25.988 o.a.w.p.DiskDataStore:186
>>>>>>>>>> [Wicket-PageSavingThread] - Storing data for page with id '1' in session
>>>>>>>>>> with id '2A10AA69C3E771FF51FABD4D26A20559'
>>>>>>>>>> DEBUG 09-19 11:47:25.988 o.a.w.p.PageAccessSynchronizer:195
>>>>>>>>>> [http-nio-0.0.0.0-5080-exec-10] - 'http-nio-0.0.0.0-5080-exec-10' released
>>>>>>>>>> lock to page with id '1'
>>>>>>>>>> DEBUG 09-19 11:47:25.988 o.a.w.p.PageAccessSynchronizer:346
>>>>>>>>>> [http-nio-0.0.0.0-5080-exec-10] - 'http-nio-0.0.0.0-5080-exec-10' notifying
>>>>>>>>>> blocked threads
>>>>>>>>>>
>>>>>>>>>>
>>>>>>>>>>
>>>>>>>>>>
>>>>>>>>>>
>>>>>>>>>>
>>>>>>>>>>
>>>>>>>>>>
>>>>>>>>>>
>>>>>>>>>> And here is my conf file :
>>>>>>>>>>
>>>>>>>>>> #
>>>>>>>>>> # Licensed to the Apache Software Foundation (ASF) under one
>>>>>>>>>> # or more contributor license agreements. See the NOTICE file
>>>>>>>>>> # distributed with this work for additional information
>>>>>>>>>> # regarding copyright ownership. The ASF licenses this file
>>>>>>>>>> # to you under the Apache License, Version 2.0 (the
>>>>>>>>>> # "License"); you may not use this file except in compliance
>>>>>>>>>> # with the License. You may obtain a copy of the License at
>>>>>>>>>> #
>>>>>>>>>> # http://www.apache.org/licenses/LICENSE-2.0
>>>>>>>>>> #
>>>>>>>>>> # Unless required by applicable law or agreed to in writing,
>>>>>>>>>> # software distributed under the License is distributed on an
>>>>>>>>>> # "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
>>>>>>>>>> # KIND, either express or implied. See the License for the
>>>>>>>>>> # specific language governing permissions and limitations
>>>>>>>>>> # under the License.
>>>>>>>>>> #
>>>>>>>>>> #ConfigurationFile for LDAP Auth
>>>>>>>>>> #ConfigKey 'ldap_config_path' must be set in DataBase
>>>>>>>>>> Configration of OM and point to this file
>>>>>>>>>> #o.becherer,14.01.2009
>>>>>>>>>> #LDAP URL
>>>>>>>>>> # This is the URL used to access your LDAP server.
>>>>>>>>>> # if you want to use "ldaps://" links, please be aware that you
>>>>>>>>>> need to import your CA certificate
>>>>>>>>>> # to a java keystore and add the -Djavax.net.ssl.keyStore,
>>>>>>>>>> -Djavax.net.ssl.keyStorePassword,
>>>>>>>>>> # -Djavax.net.ssl.trustStore and
>>>>>>>>>> -Djavax.net.ssl.trustStorePassword parameters to your
>>>>>>>>>> # JAVA_OPT environment
>>>>>>>>>> ldap_conn_host=@IP_of_my_AD
>>>>>>>>>> ldap_conn_port=389
>>>>>>>>>> ldap_conn_secure=false
>>>>>>>>>> # Login distinguished name (DN) for Authentication on LDAP Server
>>>>>>>>>> - keep empty if not required
>>>>>>>>>> # Use full qualified LDAP DN
>>>>>>>>>>
>>>>>>>>>> ldap_admin_dn=CN=adconnect,OU=Comptes,OU=SI,OU=Services,OU=COMPANY,DC=mycompany,DC=priv
>>>>>>>>>> # Loginpass for Authentication on LDAP Server - keep empty if not
>>>>>>>>>> required
>>>>>>>>>> ldap_passwd=pass_for_user_adconnect
>>>>>>>>>> # base to search for userdata(of user, that wants to login)
>>>>>>>>>> ldap_search_base=DC=mycompany,DC=priv
>>>>>>>>>> # Fieldnames (can differ between Ldap servers)
>>>>>>>>>> ldap_search_query=(uid=%s)
>>>>>>>>>> # the scope of the search might be: OBJECT, ONELEVEL, SUBTREE
>>>>>>>>>> ldap_search_scope=ONELEVEL
>>>>>>>>>> # Ldap auth type(NONE, SEARCHANDBIND, SIMPLEBIND)
>>>>>>>>>> # When using SIMPLEBIND a simple bind is performed on the LDAP
>>>>>>>>>> server to check user authentication
>>>>>>>>>> # When using NONE, the Ldap server is not used for authentication
>>>>>>>>>> ldap_auth_type=SIMPLEBIND
>>>>>>>>>> # userDN format, will be used to bind if ldap_auth_type=SIMPLEBIND
>>>>>>>>>> # might be used to get provisionningDn in case ldap_auth_type=NONE
>>>>>>>>>> ldap_userdn_format=uid=%s,OU=COMPANY,DC=mycompany,DC=priv
>>>>>>>>>> # Ldap provisioning type(NONE, AUTOCREATE, AUTOUPDATE)
>>>>>>>>>> ldap_provisionning=AUTOCREATE
>>>>>>>>>> # Set this to 'true' if you want to use admin_dn to get user
>>>>>>>>>> attributes
>>>>>>>>>> # If any other value is set, user_dn will be used
>>>>>>>>>> ldap_use_admin_to_get_attrs=true
>>>>>>>>>> # Ldap-password synchronization to OM DB
>>>>>>>>>> # Set this to 'true' if you want OM to synchronize the user
>>>>>>>>>> Ldap-password to OM's internal DB
>>>>>>>>>> # If you want to disable the feature, set this to any other
>>>>>>>>>> string.
>>>>>>>>>> # Defautl value is 'true'
>>>>>>>>>> ldap_sync_password_to_om=true
>>>>>>>>>> # Ldap user attributes mapping
>>>>>>>>>> # Set the following internal OM user attributes to their
>>>>>>>>>> corresponding Ldap-attribute
>>>>>>>>>> ldap_user_attr_lastname=sn
>>>>>>>>>> ldap_user_attr_firstname=givenName
>>>>>>>>>> ldap_user_attr_mail=mail
>>>>>>>>>> ldap_user_attr_street=streetAddress
>>>>>>>>>> ldap_user_attr_additionalname=description
>>>>>>>>>> ldap_user_attr_fax=facsimileTelephoneNumber
>>>>>>>>>> ldap_user_attr_zip=postalCode
>>>>>>>>>> ldap_user_attr_country=co
>>>>>>>>>> ldap_user_attr_town=l
>>>>>>>>>> ldap_user_attr_phone=telephoneNumber
>>>>>>>>>> # optional, only absolute URLs make sense
>>>>>>>>>> #ldap_user_picture_uri=picture_uri
>>>>>>>>>> # optional
>>>>>>>>>> # the timezone has to match any timezone available in Java,
>>>>>>>>>> otherwise the timezone defined in the value of
>>>>>>>>>> # the conf_key "default.timezone" in OpenMeetings
>>>>>>>>>> "configurations" table
>>>>>>>>>> #ldap_user_timezone=timezone
>>>>>>>>>> # Ldap ignore upper/lower case, convert all input to lower case
>>>>>>>>>> ldap_use_lower_case=false
>>>>>>>>>>
>>>>>>>>>>
>>>>>>>>>>
>>>>>>>>>> Thanks a lot for your help.
>>>>>>>>>>
>>>>>>>>>> Greg.
>>>>>>>>>>
>>>>>>>>>>
>>>>>>>>>>
>>>>>>>>>>
>>>>>>>>>> 2014-09-18 17:52 GMT+02:00 Maxim Solodovnik <solomax666@gmail.com
>>>>>>>>>> >:
>>>>>>>>>>
>>>>>>>>>>> please check this URL:
>>>>>>>>>>> http://kb.juniper.net/InfoCenter/index?page=content&id=KB17098
>>>>>>>>>>> According to it you have "User not found"
>>>>>>>>>>>
>>>>>>>>>>> could you provide more ldap related logs?
>>>>>>>>>>> it might be Admin not found or user entered in login form not
>>>>>>>>>>> found depending on your settings
>>>>>>>>>>>
>>>>>>>>>>> On 18 September 2014 21:43, Grégory Mangeney <mangeney@gmail.com
>>>>>>>>>>> > wrote:
>>>>>>>>>>>
>>>>>>>>>>>> Hello, It's me again...
>>>>>>>>>>>> I'm back.
>>>>>>>>>>>> Now I have a new problem to connect to my AD...
>>>>>>>>>>>> In log file it is write : *ERROR ......... Not authenticated*
>>>>>>>>>>>> witch is a quite better message than before but after that it
>>>>>>>>>>>> is write : *LdapErr: DSID-0C090334, comment:
>>>>>>>>>>>> AcceptSecurityContext error, data 525, vece\00 at........*
>>>>>>>>>>>>
>>>>>>>>>>>> I try to understand my problem but "AcceptSecurityContext
>>>>>>>>>>>> error" seems to speack about a security problem.
>>>>>>>>>>>> I have set my ldap_conn_secure=false in om_ldap.conf.
>>>>>>>>>>>> I don't understand what could be my problem.
>>>>>>>>>>>>
>>>>>>>>>>>> thanks a lot for your ideas.
>>>>>>>>>>>>
>>>>>>>>>>>> Greg.
>>>>>>>>>>>> 2014-09-18 15:37 GMT+02:00 Grégory Mangeney <mangeney@gmail.com
>>>>>>>>>>>> >:
>>>>>>>>>>>>
>>>>>>>>>>>>> Ok, I finally understand that I have to put the filename and
>>>>>>>>>>>>> only the filename without
>>>>>>>>>>>>> */usr/lib/red5/webapps/openmeetings/conf/*
>>>>>>>>>>>>>
>>>>>>>>>>>>> Now I have a new message whitch said me invalid password...
>>>>>>>>>>>>> It's quite better...
>>>>>>>>>>>>> Thank you...
>>>>>>>>>>>>> I could continue to try to set it now.
>>>>>>>>>>>>> bye
>>>>>>>>>>>>>
>>>>>>>>>>>>> Greg.
>>>>>>>>>>>>>
>>>>>>>>>>>>>
>>>>>>>>>>>>>
>>>>>>>>>>>>> 2014-09-18 15:06 GMT+02:00 Maxim Solodovnik <
>>>>>>>>>>>>> solomax666@gmail.com>:
>>>>>>>>>>>>>
>>>>>>>>>>>>>> you need to write file name relative to
>>>>>>>>>>>>>> webapps/openmeetings/conf folder
>>>>>>>>>>>>>> in your case *om_ldap.cfg *should be specified
>>>>>>>>>>>>>>
>>>>>>>>>>>>>> On 18 September 2014 20:04, Grégory Mangeney <
>>>>>>>>>>>>>> mangeney@gmail.com> wrote:
>>>>>>>>>>>>>>
>>>>>>>>>>>>>>> Thank you very much but I don't understand very well.
>>>>>>>>>>>>>>> I think I put the right information...
>>>>>>>>>>>>>>> Do you want to say that I have to write :
>>>>>>>>>>>>>>> */usr/lib/red5/webapps/openmeetings/conf/* without the
>>>>>>>>>>>>>>> filename *om_ldap.cfg* at the end?
>>>>>>>>>>>>>>> Thanks for your help
>>>>>>>>>>>>>>> Greg
>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>> 2014-09-18 14:52 GMT+02:00 Maxim Solodovnik <
>>>>>>>>>>>>>>> solomax666@gmail.com>:
>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>> AFAIK the path should be relative to
>>>>>>>>>>>>>>>> /usr/lib/red5/webapps/openmeetings/conf
>>>>>>>>>>>>>>>> Please change this path
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>> Additionally you can file JIRA issue to add check to the
>>>>>>>>>>>>>>>> Admin screen (so path will be validated on enter)
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>> On 18 September 2014 19:44, Grégory Mangeney <
>>>>>>>>>>>>>>>> mangeney@gmail.com> wrote:
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>> Hello,
>>>>>>>>>>>>>>>>> I have the same problem: I could not connect with AD.
>>>>>>>>>>>>>>>>> I have the domain at the login screen,
>>>>>>>>>>>>>>>>> I am using the 3.0.3.
>>>>>>>>>>>>>>>>> I found this line in my log file :* ERROR 09-18
>>>>>>>>>>>>>>>>> 14:28:33.994 o.a.o.l.LdapLoginManagement:147 [http-nio-0.0.0.0-5080-exec-4]
>>>>>>>>>>>>>>>>> - Error on LdapLogin : Configurationdata couldnt be retrieved!*
>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>> This seem strange because in my LDAP config (in
>>>>>>>>>>>>>>>>> openmeetings Administration/LDAP menu), I put the correct path in the
>>>>>>>>>>>>>>>>> "Config file name" : /usr/lib/red5/webapps/openmeetings/conf/om_ldap.cfg
>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>> Why is this error appeared : *Configurationdata couldnt
>>>>>>>>>>>>>>>>> be retrieved! *???
>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>> Thanks a lot
>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>> Greg
>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>> 2014-09-17 12:52 GMT+02:00 Maxim Solodovnik <
>>>>>>>>>>>>>>>>> solomax666@gmail.com>:
>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>> great :)
>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>> On 17 September 2014 17:46, Teddy Jayasaputra <
>>>>>>>>>>>>>>>>>> teddy.jayasaputra@ocbcnisp.com> wrote:
>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>> Dear Maxim,
>>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>> After close look to console log.
>>>>>>>>>>>>>>>>>>> We found this error :
>>>>>>>>>>>>>>>>>>> ERROR 09-17 17:28:33.278 LdapLoginManagement.java 135070
>>>>>>>>>>>>>>>>>>> 285 org.apache.openmeetings.ldap.LdapLoginManagement
>>>>>>>>>>>>>>>>>>> [http-nio-0.0.0.0-5080-exec-6] - User not found in OM DB and
>>>>>>>>>>>>>>>>>>> Provisionning.AUTOCREATE was not set
>>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>> After we change ldapconfiguration file from
>>>>>>>>>>>>>>>>>>> ldap_provisionning=NONE to AUTOCREATE we can login using AD.
>>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>> thanks.
>>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>> Best Regards,
>>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>> -Teddy Jayasaputra-
>>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>> On 9/17/2014 4:25 PM, Maxim Solodovnik wrote:
>>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>> do you have your AD domain on the login screen?
>>>>>>>>>>>>>>>>>>> are there errors in the log?
>>>>>>>>>>>>>>>>>>> what OM version are you using?
>>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>> On 17 September 2014 16:02, ARI HENDIAWAN <
>>>>>>>>>>>>>>>>>>> ari.hendiawan@ocbcnisp.com> wrote:
>>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>>> Dear all,
>>>>>>>>>>>>>>>>>>>> please we need extra information how to integrate
>>>>>>>>>>>>>>>>>>>> openmeetings 3.0.3 with AD?
>>>>>>>>>>>>>>>>>>>> we already setting on ldap.conf and still problem.. if
>>>>>>>>>>>>>>>>>>>> we saw on AD , user that want sign-in openmeetings success, but on login
>>>>>>>>>>>>>>>>>>>> menu openmeetings shown error "invalid password"
>>>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>>> Tks
>>>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>>> --
>>>>>>>>>>>>>>>>>>>> Disclaimer :
>>>>>>>>>>>>>>>>>>>> Confidential information may be contained in this
>>>>>>>>>>>>>>>>>>>> message. If you are not the intended recipient, you are strictly prohibited
>>>>>>>>>>>>>>>>>>>> and may be unlawful to use, copy, store, distribute, disclose or
>>>>>>>>>>>>>>>>>>>> communicate any part of it to others and you are obliged to return it
>>>>>>>>>>>>>>>>>>>> immediately to sender or notify us and delete the e-mail and any
>>>>>>>>>>>>>>>>>>>> attachments from your system. Opinions, conclusions and other information
>>>>>>>>>>>>>>>>>>>> in this e-mail that do not relate to the official business of any PT Bank
>>>>>>>>>>>>>>>>>>>> OCBC NISP Tbk shall be understood as neither given nor endorsed by it. No
>>>>>>>>>>>>>>>>>>>> assumption of responsibility or liability whatsoever is undertaken by PT
>>>>>>>>>>>>>>>>>>>> Bank OCBC NISP Tbk in respect of prohibited and unauthorised use by any
>>>>>>>>>>>>>>>>>>>> other person.
>>>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>> --
>>>>>>>>>>>>>>>>>>> WBR
>>>>>>>>>>>>>>>>>>> Maxim aka solomax
>>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>> --
>>>>>>>>>>>>>>>>>>> Disclaimer :
>>>>>>>>>>>>>>>>>>> Confidential information may be contained in this
>>>>>>>>>>>>>>>>>>> message. If you are not the intended recipient, you are strictly prohibited
>>>>>>>>>>>>>>>>>>> and may be unlawful to use, copy, store, distribute, disclose or
>>>>>>>>>>>>>>>>>>> communicate any part of it to others and you are obliged to return it
>>>>>>>>>>>>>>>>>>> immediately to sender or notify us and delete the e-mail and any
>>>>>>>>>>>>>>>>>>> attachments from your system. Opinions, conclusions and other information
>>>>>>>>>>>>>>>>>>> in this e-mail that do not relate to the official business of any PT Bank
>>>>>>>>>>>>>>>>>>> OCBC NISP Tbk shall be understood as neither given nor endorsed by it. No
>>>>>>>>>>>>>>>>>>> assumption of responsibility or liability whatsoever is undertaken by PT
>>>>>>>>>>>>>>>>>>> Bank OCBC NISP Tbk in respect of prohibited and unauthorised use by any
>>>>>>>>>>>>>>>>>>> other person.
>>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>> --
>>>>>>>>>>>>>>>>>> WBR
>>>>>>>>>>>>>>>>>> Maxim aka solomax
>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>> --
>>>>>>>>>>>>>>>> WBR
>>>>>>>>>>>>>>>> Maxim aka solomax
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>
>>>>>>>>>>>>>>
>>>>>>>>>>>>>> --
>>>>>>>>>>>>>> WBR
>>>>>>>>>>>>>> Maxim aka solomax
>>>>>>>>>>>>>>
>>>>>>>>>>>>>
>>>>>>>>>>>>>
>>>>>>>>>>>>
>>>>>>>>>>>
>>>>>>>>>>>
>>>>>>>>>>> --
>>>>>>>>>>> WBR
>>>>>>>>>>> Maxim aka solomax
>>>>>>>>>>>
>>>>>>>>>>
>>>>>>>>>>
>>>>>>>>>
>>>>>>>>>
>>>>>>>>> --
>>>>>>>>> WBR
>>>>>>>>> Maxim aka solomax
>>>>>>>>>
>>>>>>>>
>>>>>>>>
>>>>>>>
>>>>>>>
>>>>>>> --
>>>>>>> WBR
>>>>>>> Maxim aka solomax
>>>>>>>
>>>>>>
>>>>>>
>>>>
>>>
>>
>>
>> --
>> WBR
>> Maxim aka solomax
>>
>
>
--
WBR
Maxim aka solomax
Re: need info about problem when integration AD
Posted by Maxim Solodovnik <so...@gmail.com>.
Maybe others can help
I'm out of ideas :(
On 23 September 2014 22:34, Grégory Mangeney <ma...@gmail.com> wrote:
> Ok, I tryed with an other account in an easyest object
> (ldap_admin_dn=CN=testad,
> OU=COMPANY,DC=mycompany,DC=pri), but it still the same...
> "NONE users in LDAP"
>
> I do not understand.
> I think the link is now good with AD according to this message but I don't
> know why no users are found!
>
> Any ideas?
>
> Best regards.
> Greg
>
> 2014-09-23 15:56 GMT+02:00 Grégory Mangeney <ma...@gmail.com>:
>
>> Ok, Maxim
>> I found in logs the 52e between "data" and "vece\00"
>>
>> According to your ling given previousely, it seems to be an "invalid
>> credentials" (
>> http://kb.juniper.net/InfoCenter/index?page=content&id=KB17098)
>>
>> Is it a problem with my user or do you see an other issue?
>> I could mabe test with a new account, an easyer account that I could
>> creat for testing.
>>
>> Thanks.
>>
>> Greg.
>>
>>
>>
>> 2014-09-23 15:47 GMT+02:00 Grégory Mangeney <ma...@gmail.com>:
>>
>>> Hello Maxim.
>>> I had try with the 3.0.4 Version according to your link.
>>>
>>> Now I have an other error in log file.
>>> It said NONE USER FOUND IN LDAP...
>>> I hope so the connection with my AD is good and it still a config
>>> problem but maybe you could help me with my logs and my conf file...
>>>
>>> My logs:
>>>
>>> ERROR 09-23 15:34:55.797 o.a.o.l.LdapLoginManagement:266
>>> [http-nio-0.0.0.0-5080-exec-8] - NONE users found in LDAP
>>> DEBUG 09-23 15:34:55.799 o.a.w.u.c.CookieUtils:273
>>> [http-nio-0.0.0.0-5080-exec-8] - Unable to find Cookie with name=LoggedIn
>>> and request URI=signin?0-5.IBehaviorListener.0-signin-signin-submit
>>> DEBUG 09-23 15:34:55.802 o.a.w.f.FeedbackMessages:69
>>> [http-nio-0.0.0.0-5080-exec-8] - Adding feedback message '[FeedbackMessage
>>> message = "Invalid password", reporter = signin, level = ERROR]'
>>> DEBUG 09-23 15:34:55.808 o.a.wicket.Page:871
>>> [http-nio-0.0.0.0-5080-exec-8] - ending request for page [Page class =
>>> org.apache.openmeetings.web.pages.auth.SignInPage, id = 0, render count =
>>> 5], request org.apache.wicket.protocol.http.servlet.ServletWebRequest@69fbe
>>> DEBUG 09-23 15:34:55.809 o.a.wicket.Page:871
>>> [http-nio-0.0.0.0-5080-exec-8] - ending request for page [Page class =
>>> org.apache.openmeetings.web.pages.auth.SignInPage, id = 0, render count =
>>> 5], request org.apache.wicket.protocol.http.servlet.ServletWebRequest@69fbe
>>> DEBUG 09-23 15:34:55.809 o.a.wicket.Page:871
>>> [http-nio-0.0.0.0-5080-exec-8] - ending request for page [Page class =
>>> org.apache.openmeetings.web.pages.auth.SignInPage, id = 0, render count =
>>> 5], request org.apache.wicket.protocol.http.servlet.ServletWebRequest@69fbe
>>> DEBUG 09-23 15:34:55.811
>>> o.a.w.p.AsynchronousDataStore$PageSavingRunnable:354
>>> [Wicket-PageSavingThread] - Saving asynchronously: Entry
>>> [sessionId=E576CCA08DEE992DF7CCBD22F2FD64F8, pageId=0]...
>>> DEBUG 09-23 15:34:55.811 o.a.w.p.DiskDataStore:186
>>> [Wicket-PageSavingThread] - Storing data for page with id '0' in session
>>> with id 'E576CCA08DEE992DF7CCBD22F2FD64F8'
>>> DEBUG 09-23 15:34:55.812 o.a.w.p.PageAccessSynchronizer:195
>>> [http-nio-0.0.0.0-5080-exec-8] - 'http-nio-0.0.0.0-5080-exec-8' released
>>> lock to page with id '0'
>>> DEBUG 09-23 15:34:55.812 o.a.w.p.PageAccessSynchronizer:346
>>> [http-nio-0.0.0.0-5080-exec-8] - 'http-nio-0.0.0.0-5080-exec-8' notifying
>>> blocked threads
>>> DEBUG 09-23 15:35:30.522 o.a.o.m.MailHandler:258
>>> [org.springframework.scheduling.quartz.SchedulerFactoryBean#0_Worker-2] -
>>> sendMails enter ...
>>> DEBUG 09-23 15:35:30.523 o.a.o.m.MailHandler:260
>>> [org.springframework.scheduling.quartz.SchedulerFactoryBean#0_Worker-2] -
>>> Number of emails in init queue 0
>>> DEBUG 09-23 15:35:30.524 o.a.o.m.MailHandler:265
>>> [org.springframework.scheduling.quartz.SchedulerFactoryBean#0_Worker-2] -
>>> ... sendMails done.
>>> DEBUG 09-23 15:35:35.503 o.a.o.d.d.s.SessiondataDao:404
>>> [org.springframework.scheduling.quartz.SchedulerFactoryBean#0_Worker-3] -
>>> ****** clearSessionTable:
>>> DEBUG 09-23 15:35:35.505 o.a.o.d.d.s.SessiondataDao:408
>>> [org.springframework.scheduling.quartz.SchedulerFactoryBean#0_Worker-3] -
>>> clearSessionTable: 0
>>> DEBUG 09-23 15:35:35.512 o.a.o.q.s.MeetingReminderJob:34
>>> [org.springframework.scheduling.quartz.SchedulerFactoryBean#0_Worker-4] -
>>> MeetingReminderJob.execute
>>>
>>>
>>>
>>> My conf :
>>>
>>> #
>>> # Licensed to the Apache Software Foundation (ASF) under one
>>> # or more contributor license agreements. See the NOTICE file
>>> # distributed with this work for additional information
>>> # regarding copyright ownership. The ASF licenses this file
>>> # to you under the Apache License, Version 2.0 (the
>>> # "License"); you may not use this file except in compliance
>>> # with the License. You may obtain a copy of the License at
>>> #
>>> # http://www.apache.org/licenses/LICENSE-2.0
>>> #
>>> # Unless required by applicable law or agreed to in writing,
>>> # software distributed under the License is distributed on an
>>> # "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
>>> # KIND, either express or implied. See the License for the
>>> # specific language governing permissions and limitations
>>> # under the License.
>>> #
>>> #ConfigurationFile for LDAP Auth
>>> #ConfigKey 'ldap_config_path' must be set in DataBase Configration of OM
>>> and point to this file
>>> #o.becherer,14.01.2009
>>>
>>> #LDAP URL
>>> # This is the URL used to access your LDAP server.
>>> # if you want to use "ldaps://" links, please be aware that you need to
>>> import your CA certificate
>>> # to a java keystore and add the -Djavax.net.ssl.keyStore,
>>> -Djavax.net.ssl.keyStorePassword,
>>> # -Djavax.net.ssl.trustStore and -Djavax.net.ssl.trustStorePassword
>>> parameters to your
>>> # JAVA_OPT environment
>>> ldap_conn_host=@IP_of_my_AD
>>> ldap_conn_port=389
>>> ldap_conn_secure=false
>>>
>>> # Login distinguished name (DN) for Authentication on LDAP Server - keep
>>> empty if not required
>>> # Use full qualified LDAP DN
>>> ldap_admin_dn=CN=adconnect,OU=Comptes
>>> Cles,OU=SI,OU=Services,OU=COMPANY,DC=mycompany,DC=priv
>>>
>>> # Loginpass for Authentication on LDAP Server - keep empty if not
>>> required
>>> ldap_passwd=pass_for_user_adconnect
>>>
>>> # base to search for userdata(of user, that wants to login)
>>> ldap_search_base=OU=COMPANY,DC=mycompany,DC=priv
>>>
>>> # Fieldnames (can differ between Ldap servers)
>>> ldap_search_query=(uid=%s)
>>>
>>> # the scope of the search might be: OBJECT, ONELEVEL, SUBTREE
>>> ldap_search_scope=SUBTREE
>>>
>>> # Ldap auth type(NONE, SEARCHANDBIND, SIMPLEBIND)
>>> # When using SIMPLEBIND a simple bind is performed on the LDAP server
>>> to check user authentication
>>> # When using NONE, the Ldap server is not used for authentication
>>> ldap_auth_type=SEARCHANDBIND
>>>
>>> # userDN format, will be used to bind if ldap_auth_type=SIMPLEBIND
>>> # might be used to get provisionningDn in case ldap_auth_type=NONE
>>> ldap_userdn_format=uid=%s,OU=COMPANY,DC=mycompany,DC=priv
>>>
>>> # Ldap provisioning type(NONE, AUTOCREATE, AUTOUPDATE)
>>> ldap_provisionning=AUTOCREATE
>>>
>>> # Set this to 'true' if you want to use admin_dn to get user attributes
>>> # If any other value is set, user_dn will be used
>>> ldap_use_admin_to_get_attrs=true
>>>
>>> # Ldap-password synchronization to OM DB
>>> # Set this to 'true' if you want OM to synchronize the user
>>> Ldap-password to OM's internal DB
>>> # If you want to disable the feature, set this to any other string.
>>> # Defautl value is 'true'
>>> ldap_sync_password_to_om=true
>>>
>>> # Ldap user attributes mapping
>>> # Set the following internal OM user attributes to their corresponding
>>> Ldap-attribute
>>> ldap_user_attr_lastname=sn
>>> ldap_user_attr_firstname=givenName
>>> ldap_user_attr_mail=mail
>>> ldap_user_attr_street=streetAddress
>>> ldap_user_attr_additionalname=description
>>> ldap_user_attr_fax=facsimileTelephoneNumber
>>> ldap_user_attr_zip=postalCode
>>> ldap_user_attr_country=co
>>> ldap_user_attr_town=l
>>> ldap_user_attr_phone=telephoneNumber
>>>
>>> # optional, only absolute URLs make sense
>>> #ldap_user_picture_uri=picture_uri
>>>
>>> # optional
>>> # the timezone has to match any timezone available in Java, otherwise
>>> the timezone defined in the value of
>>> # the conf_key "default.timezone" in OpenMeetings "configurations" table
>>> #ldap_user_timezone=timezone
>>>
>>> # Ldap ignore upper/lower case, convert all input to lower case
>>> ldap_use_lower_case=false
>>>
>>>
>>> Do you see how to fix my problem with this new branch of openmeetings
>>> 3.0.4?
>>>
>>> Thanks a lot.
>>>
>>> Greg.
>>>
>>>
>>>
>>>
>>> 2014-09-22 17:50 GMT+02:00 Maxim Solodovnik <so...@gmail.com>:
>>>
>>>> Please get build #67 here:
>>>> https://builds.apache.org/view/M-R/view/OpenMeetings/job/Openmeetings%203.0.x/
>>>> I have no LDAP infrastructure to test :( I 100% rely on community in
>>>> this
>>>> So thanks for the testing :)
>>>>
>>>> On 23 September 2014 01:17, Grégory Mangeney <ma...@gmail.com>
>>>> wrote:
>>>>
>>>>> Windows Server 2003 R2
>>>>>
>>>>> 2014-09-22 17:13 GMT+02:00 Grégory Mangeney <ma...@gmail.com>:
>>>>>
>>>>>> Ok,thank you for that.
>>>>>> For information I am using a Microsoft Active Directory in object
>>>>>> version 31
>>>>>>
>>>>>> I get this information by tapping dsquery *
>>>>>> cn=schema,cn=configuration,dc=mycompany,dc=priv -scope base -attr
>>>>>> objectVersion
>>>>>>
>>>>>> Good evening.
>>>>>>
>>>>>> Best regards.
>>>>>>
>>>>>> Greg.
>>>>>>
>>>>>> 2014-09-22 16:40 GMT+02:00 Maxim Solodovnik <so...@gmail.com>:
>>>>>>
>>>>>>> You have these Paramaribo in your configuration:
>>>>>>> ldap_search_base=DC=mycompany,DC=priv
>>>>>>> # Fieldnames (can differ between Ldap servers)
>>>>>>> ldap_search_query=(uid=%s)
>>>>>>>
>>>>>>> I guess nothing is found. Not sure I never saw error like yours.
>>>>>>>
>>>>>>> Will create 3.0.4 nightly fly you later today (with updated ldap
>>>>>>> library) if error will be the same I'll ask ldap library developers for the
>>>>>>> help
>>>>>>> On Sep 22, 2014 9:05 PM, "Grégory Mangeney" <ma...@gmail.com>
>>>>>>> wrote:
>>>>>>>
>>>>>>>> a bad search query?
>>>>>>>>
>>>>>>>> In this case, the loging error message shouldn't be somthing like :
>>>>>>>> "Login/password do not exist" ?
>>>>>>>>
>>>>>>>> How could I check this point...
>>>>>>>> I do not modified the source code!
>>>>>>>>
>>>>>>>> 2014-09-22 11:25 GMT+02:00 Maxim Solodovnik <so...@gmail.com>:
>>>>>>>>
>>>>>>>>> it seems like nothing was found
>>>>>>>>> Maybe bad search query?
>>>>>>>>>
>>>>>>>>> On 22 September 2014 15:55, Grégory Mangeney <ma...@gmail.com>
>>>>>>>>> wrote:
>>>>>>>>>
>>>>>>>>>> Hello Maxim.
>>>>>>>>>> Thanks a lot for your answer.
>>>>>>>>>> You're helpfull...
>>>>>>>>>>
>>>>>>>>>> I had ever try with SEARCHANDBIND but it still not working...
>>>>>>>>>> So I set it again to give you my logs...
>>>>>>>>>> The error is quite different but I could not understand what is
>>>>>>>>>> the problem...
>>>>>>>>>>
>>>>>>>>>> In the login screen I have the following message in red : "Unknown
>>>>>>>>>> error. Please report this to the administrator."
>>>>>>>>>>
>>>>>>>>>>
>>>>>>>>>>
>>>>>>>>>>
>>>>>>>>>> Here is my logs :
>>>>>>>>>>
>>>>>>>>>> ERROR 09-22 10:34:34.814 o.a.o.l.LdapLoginManagement:356
>>>>>>>>>> [http-nio-0.0.0.0-5080-exec-4] - Unexpected exception.
>>>>>>>>>> org.apache.directory.api.ldap.model.cursor.CursorLdapReferralException:
>>>>>>>>>> null
>>>>>>>>>> at
>>>>>>>>>> org.apache.directory.ldap.client.api.EntryCursorImpl.get(EntryCursorImpl.java:164)
>>>>>>>>>> ~[api-all-jar-1.0.0-M23.jar:1.0.0-M23]
>>>>>>>>>> at
>>>>>>>>>> org.apache.directory.ldap.client.api.EntryCursorImpl.get(EntryCursorImpl.java:50)
>>>>>>>>>> ~[api-all-jar-1.0.0-M23.jar:1.0.0-M23]
>>>>>>>>>> at
>>>>>>>>>> org.apache.openmeetings.ldap.LdapLoginManagement.login(LdapLoginManagement.java:258)
>>>>>>>>>> ~[openmeetings-core-3.0.3-RELEASE.jar:na]
>>>>>>>>>> at
>>>>>>>>>> org.apache.openmeetings.web.app.WebSession.signIn(WebSession.java:257)
>>>>>>>>>> [openmeetings-web-3.0.3-RELEASE.jar:na]
>>>>>>>>>> at
>>>>>>>>>> org.apache.openmeetings.web.pages.auth.SignInDialog.onSubmit(SignInDialog.java:190)
>>>>>>>>>> [openmeetings-web-3.0.3-RELEASE.jar:na]
>>>>>>>>>> at
>>>>>>>>>> com.googlecode.wicket.jquery.ui.widget.dialog.AbstractFormDialog$DialogFormSubmitter.onSubmit(AbstractFormDialog.java:279)
>>>>>>>>>> [wicket-jquery-ui-jar-6.16.0.jar:na]
>>>>>>>>>> at
>>>>>>>>>> org.apache.wicket.markup.html.form.Form.delegateSubmit(Form.java:1266)
>>>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>>>> at
>>>>>>>>>> org.apache.wicket.markup.html.form.Form.process(Form.java:938)
>>>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>>>> at
>>>>>>>>>> org.apache.wicket.markup.html.form.StatelessForm.process(StatelessForm.java:96)
>>>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>>>> at
>>>>>>>>>> org.apache.wicket.markup.html.form.Form.onFormSubmitted(Form.java:770)
>>>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>>>> at
>>>>>>>>>> com.googlecode.wicket.jquery.ui.widget.dialog.AbstractFormDialog.internalOnClick(AbstractFormDialog.java:200)
>>>>>>>>>> [wicket-jquery-ui-jar-6.16.0.jar:na]
>>>>>>>>>> at
>>>>>>>>>> com.googlecode.wicket.jquery.ui.widget.dialog.AbstractDialog$1.onClick(AbstractDialog.java:439)
>>>>>>>>>> [wicket-jquery-ui-jar-6.16.0.jar:na]
>>>>>>>>>> at
>>>>>>>>>> com.googlecode.wicket.jquery.ui.widget.dialog.DialogBehavior.onAjax(DialogBehavior.java:175)
>>>>>>>>>> [wicket-jquery-ui-jar-6.16.0.jar:na]
>>>>>>>>>> at
>>>>>>>>>> com.googlecode.wicket.jquery.core.ajax.JQueryAjaxBehavior.respond(JQueryAjaxBehavior.java:171)
>>>>>>>>>> [wicket-jquery-ui-core-jar-6.16.0.jar:na]
>>>>>>>>>> at
>>>>>>>>>> org.apache.wicket.ajax.AbstractDefaultAjaxBehavior.onRequest(AbstractDefaultAjaxBehavior.java:633)
>>>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>>>> at sun.reflect.GeneratedMethodAccessor91.invoke(Unknown
>>>>>>>>>> Source) ~[na:na]
>>>>>>>>>> at
>>>>>>>>>> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
>>>>>>>>>> ~[na:1.7.0_65]
>>>>>>>>>> at java.lang.reflect.Method.invoke(Method.java:606)
>>>>>>>>>> ~[na:1.7.0_65]
>>>>>>>>>> at
>>>>>>>>>> org.apache.wicket.RequestListenerInterface.internalInvoke(RequestListenerInterface.java:258)
>>>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>>>> at
>>>>>>>>>> org.apache.wicket.RequestListenerInterface.invoke(RequestListenerInterface.java:241)
>>>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>>>> at
>>>>>>>>>> org.apache.wicket.core.request.handler.ListenerInterfaceRequestHandler.invokeListener(ListenerInterfaceRequestHandler.java:250)
>>>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>>>> at
>>>>>>>>>> org.apache.wicket.core.request.handler.ListenerInterfaceRequestHandler.respond(ListenerInterfaceRequestHandler.java:236)
>>>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>>>> at
>>>>>>>>>> org.apache.wicket.request.cycle.RequestCycle$HandlerExecutor.respond(RequestCycle.java:862)
>>>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>>>> at
>>>>>>>>>> org.apache.wicket.request.RequestHandlerStack.execute(RequestHandlerStack.java:64)
>>>>>>>>>> [wicket-request-jar-6.16.0.jar:6.16.0]
>>>>>>>>>> at
>>>>>>>>>> org.apache.wicket.request.cycle.RequestCycle.execute(RequestCycle.java:261)
>>>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>>>> at
>>>>>>>>>> org.apache.wicket.request.cycle.RequestCycle.processRequest(RequestCycle.java:218)
>>>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>>>> at
>>>>>>>>>> org.apache.wicket.request.cycle.RequestCycle.processRequestAndDetach(RequestCycle.java:289)
>>>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>>>> at
>>>>>>>>>> org.apache.wicket.protocol.ws.AbstractUpgradeFilter.processRequestCycle(AbstractUpgradeFilter.java:59)
>>>>>>>>>> [wicket-native-websocket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>>>> at
>>>>>>>>>> org.apache.wicket.protocol.http.WicketFilter.processRequest(WicketFilter.java:201)
>>>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>>>> at
>>>>>>>>>> org.apache.wicket.protocol.http.WicketFilter.doFilter(WicketFilter.java:282)
>>>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>>>> at
>>>>>>>>>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:241)
>>>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>>>> at
>>>>>>>>>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:208)
>>>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>>>> at
>>>>>>>>>> org.red5.logging.LoggerContextFilter.doFilter(LoggerContextFilter.java:77)
>>>>>>>>>> [red5-server.jar:na]
>>>>>>>>>> at
>>>>>>>>>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:241)
>>>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>>>> at
>>>>>>>>>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:208)
>>>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>>>> at
>>>>>>>>>> org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:220)
>>>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>>>> at
>>>>>>>>>> org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:122)
>>>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>>>> at
>>>>>>>>>> org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:501)
>>>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>>>> at
>>>>>>>>>> org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:171)
>>>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>>>> at
>>>>>>>>>> org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:103)
>>>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>>>> at
>>>>>>>>>> org.apache.catalina.valves.AccessLogValve.invoke(AccessLogValve.java:950)
>>>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>>>> at
>>>>>>>>>> org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:116)
>>>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>>>> at
>>>>>>>>>> org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:408)
>>>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>>>> at
>>>>>>>>>> org.apache.coyote.http11.AbstractHttp11Processor.process(AbstractHttp11Processor.java:1070)
>>>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>>>> at
>>>>>>>>>> org.apache.coyote.AbstractProtocol$AbstractConnectionHandler.process(AbstractProtocol.java:611)
>>>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>>>> at
>>>>>>>>>> org.apache.tomcat.util.net.NioEndpoint$SocketProcessor.doRun(NioEndpoint.java:1736)
>>>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>>>> at
>>>>>>>>>> org.apache.tomcat.util.net.NioEndpoint$SocketProcessor.run(NioEndpoint.java:1695)
>>>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>>>> at
>>>>>>>>>> java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1145)
>>>>>>>>>> [na:1.7.0_65]
>>>>>>>>>> at
>>>>>>>>>> java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:615)
>>>>>>>>>> [na:1.7.0_65]
>>>>>>>>>> at
>>>>>>>>>> org.apache.tomcat.util.threads.TaskThread$WrappingRunnable.run(TaskThread.java:61)
>>>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>>>> at java.lang.Thread.run(Thread.java:745) [na:1.7.0_65]
>>>>>>>>>> DEBUG 09-22 10:34:34.817 o.a.w.u.c.CookieUtils:266
>>>>>>>>>> [http-nio-0.0.0.0-5080-exec-4] - Unable to find Cookie with name=LoggedIn
>>>>>>>>>> and request URI=signin?1-1.IBehaviorListener.1-signin
>>>>>>>>>> DEBUG 09-22 10:34:34.820 o.a.w.f.FeedbackMessages:69
>>>>>>>>>> [http-nio-0.0.0.0-5080-exec-4] - Adding feedback message '[FeedbackMessage
>>>>>>>>>> message = "Unknown error. Please report this to the administrator.",
>>>>>>>>>> reporter = signin, level = ERROR]'
>>>>>>>>>> DEBUG 09-22 10:34:34.821 o.a.w.u.c.CookieUtils:266
>>>>>>>>>> [http-nio-0.0.0.0-5080-exec-4] - Unable to find Cookie with name=LoggedIn
>>>>>>>>>> and request URI=signin?1-1.IBehaviorListener.1-signin
>>>>>>>>>> DEBUG 09-22 10:34:34.822 o.a.wicket.Page:871
>>>>>>>>>> [http-nio-0.0.0.0-5080-exec-4] - ending request for page [Page class =
>>>>>>>>>> org.apache.openmeetings.web.pages.auth.SignInPage, id = 1, render count =
>>>>>>>>>> 1], request
>>>>>>>>>> org.apache.wicket.protocol.http.servlet.ServletWebRequest@16618f3
>>>>>>>>>> DEBUG 09-22 10:34:34.822 o.a.wicket.Page:871
>>>>>>>>>> [http-nio-0.0.0.0-5080-exec-4] - ending request for page [Page class =
>>>>>>>>>> org.apache.openmeetings.web.pages.auth.SignInPage, id = 1, render count =
>>>>>>>>>> 1], request
>>>>>>>>>> org.apache.wicket.protocol.http.servlet.ServletWebRequest@16618f3
>>>>>>>>>> DEBUG 09-22 10:34:34.823 o.a.wicket.Page:871
>>>>>>>>>> [http-nio-0.0.0.0-5080-exec-4] - ending request for page [Page class =
>>>>>>>>>> org.apache.openmeetings.web.pages.auth.SignInPage, id = 1, render count =
>>>>>>>>>> 1], request
>>>>>>>>>> org.apache.wicket.protocol.http.servlet.ServletWebRequest@16618f3
>>>>>>>>>> DEBUG 09-22 10:34:34.828
>>>>>>>>>> o.a.w.p.AsynchronousDataStore$PageSavingRunnable:354
>>>>>>>>>> [Wicket-PageSavingThread] - Saving asynchronously: Entry
>>>>>>>>>> [sessionId=907ABBB232B18743F2A67024DA18F185, pageId=1]...
>>>>>>>>>> DEBUG 09-22 10:34:34.828 o.a.w.p.DiskDataStore:186
>>>>>>>>>> [Wicket-PageSavingThread] - Storing data for page with id '1' in session
>>>>>>>>>> with id '907ABBB232B18743F2A67024DA18F185'
>>>>>>>>>> DEBUG 09-22 10:34:34.828 o.a.w.p.PageAccessSynchronizer:195
>>>>>>>>>> [http-nio-0.0.0.0-5080-exec-4] - 'http-nio-0.0.0.0-5080-exec-4' released
>>>>>>>>>> lock to page with id '1'
>>>>>>>>>> DEBUG 09-22 10:34:34.828 o.a.w.p.PageAccessSynchronizer:346
>>>>>>>>>> [http-nio-0.0.0.0-5080-exec-4] - 'http-nio-0.0.0.0-5080-exec-4' notifying
>>>>>>>>>> blocked threads
>>>>>>>>>> DEBUG 09-22 10:34:36.341 o.a.o.m.MailHandler:249
>>>>>>>>>> [org.springframework.scheduling.quartz.SchedulerFactoryBean#0_Worker-1] -
>>>>>>>>>> resetSendingStatus enter ...
>>>>>>>>>>
>>>>>>>>>>
>>>>>>>>>>
>>>>>>>>>> Thank you for your time.
>>>>>>>>>>
>>>>>>>>>> Greg.
>>>>>>>>>>
>>>>>>>>>> 2014-09-20 8:59 GMT+02:00 Maxim Solodovnik <so...@gmail.com>
>>>>>>>>>> :
>>>>>>>>>>
>>>>>>>>>>> According to the logs and config SIMPLEBIND failed for the user
>>>>>>>>>>> specified
>>>>>>>>>>> please try SEARCHANDBIND
>>>>>>>>>>>
>>>>>>>>>>> On 19 September 2014 17:09, Grégory Mangeney <mangeney@gmail.com
>>>>>>>>>>> > wrote:
>>>>>>>>>>>
>>>>>>>>>>>> Hello.
>>>>>>>>>>>> Thank you for your link.
>>>>>>>>>>>> It appeare that I have a 525 error (user not found).
>>>>>>>>>>>>
>>>>>>>>>>>> I think the problem must be in my config file because I'm sure
>>>>>>>>>>>> that my user is good because I use it for an other app witch use it to
>>>>>>>>>>>> connect with AD.
>>>>>>>>>>>>
>>>>>>>>>>>> As you ask me i give you more line of my log file, after that I
>>>>>>>>>>>> would like to show you my conf file...
>>>>>>>>>>>> Maybe you will find a setting withch is not good!
>>>>>>>>>>>>
>>>>>>>>>>>>
>>>>>>>>>>>> So here is my log file whene I try to connect :
>>>>>>>>>>>> DEBUG 09-19 11:47:01.337 o.a.o.q.s.MeetingReminderJob:34
>>>>>>>>>>>> [org.springframework.scheduling.quartz.SchedulerFactoryBean#0_Worker-2] -
>>>>>>>>>>>> MeetingReminderJob.execute
>>>>>>>>>>>> DEBUG 09-19 11:47:25.760 o.a.w.p.h.s.ServletWebRequest:189
>>>>>>>>>>>> [http-nio-0.0.0.0-5080-exec-10] - Calculating context relative path from:
>>>>>>>>>>>> context path '/openmeetings', filterPrefix '', uri '/openmeetings/signin'
>>>>>>>>>>>> DEBUG 09-19 11:47:25.761 o.a.w.p.PageAccessSynchronizer:100
>>>>>>>>>>>> [http-nio-0.0.0.0-5080-exec-10] - 'http-nio-0.0.0.0-5080-exec-10'
>>>>>>>>>>>> attempting to acquire lock to page with id '1'
>>>>>>>>>>>> DEBUG 09-19 11:47:25.761 o.a.w.p.PageAccessSynchronizer:125
>>>>>>>>>>>> [http-nio-0.0.0.0-5080-exec-10] - http-nio-0.0.0.0-5080-exec-10 acquired
>>>>>>>>>>>> lock to page 1
>>>>>>>>>>>> DEBUG 09-19 11:47:25.762 o.a.o.d.d.s.SessiondataDao:68
>>>>>>>>>>>> [http-nio-0.0.0.0-5080-exec-10] - startsession :: startsession
>>>>>>>>>>>> DEBUG 09-19 11:47:25.763 o.a.o.u.c.ManageCryptStyle:32
>>>>>>>>>>>> [http-nio-0.0.0.0-5080-exec-10] - getInstanceOfCrypt::
>>>>>>>>>>>> configKeyCryptClassName:
>>>>>>>>>>>> org.apache.openmeetings.util.crypt.MD5Implementation
>>>>>>>>>>>> DEBUG 09-19 11:47:25.788 o.a.o.l.LdapLoginManagement:165
>>>>>>>>>>>> [http-nio-0.0.0.0-5080-exec-10] - LdapLoginmanagement.doLdapLogin
>>>>>>>>>>>> ERROR 09-19 11:47:25.924 o.a.o.l.LdapLoginManagement:351
>>>>>>>>>>>> [http-nio-0.0.0.0-5080-exec-10] - Not authenticated.
>>>>>>>>>>>> org.apache.directory.api.ldap.model.exception.LdapAuthenticationException:
>>>>>>>>>>>> 80090308: LdapErr: DSID-0C090334, comment: AcceptSecurityContext error,
>>>>>>>>>>>> data 525, vece\00
>>>>>>>>>>>> at
>>>>>>>>>>>> org.apache.directory.api.ldap.model.message.ResultCodeEnum.processResponse(ResultCodeEnum.java:2021)
>>>>>>>>>>>> ~[api-all-jar-1.0.0-M23.jar:1.0.0-M23]
>>>>>>>>>>>> at
>>>>>>>>>>>> org.apache.directory.ldap.client.api.AbstractLdapConnection.bind(AbstractLdapConnection.java:129)
>>>>>>>>>>>> ~[api-all-jar-1.0.0-M23.jar:1.0.0-M23]
>>>>>>>>>>>> at
>>>>>>>>>>>> org.apache.openmeetings.ldap.LdapLoginManagement.login(LdapLoginManagement.java:275)
>>>>>>>>>>>> ~[openmeetings-core-3.0.3-RELEASE.jar:na]
>>>>>>>>>>>> at
>>>>>>>>>>>> org.apache.openmeetings.web.app.WebSession.signIn(WebSession.java:257)
>>>>>>>>>>>> [openmeetings-web-3.0.3-RELEASE.jar:na]
>>>>>>>>>>>> at
>>>>>>>>>>>> org.apache.openmeetings.web.pages.auth.SignInDialog.onSubmit(SignInDialog.java:190)
>>>>>>>>>>>> [openmeetings-web-3.0.3-RELEASE.jar:na]
>>>>>>>>>>>> at
>>>>>>>>>>>> com.googlecode.wicket.jquery.ui.widget.dialog.AbstractFormDialog$DialogFormSubmitter.onSubmit(AbstractFormDialog.java:279)
>>>>>>>>>>>> [wicket-jquery-ui-jar-6.16.0.jar:na]
>>>>>>>>>>>> at
>>>>>>>>>>>> org.apache.wicket.markup.html.form.Form.delegateSubmit(Form.java:1266)
>>>>>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>>>>>> at
>>>>>>>>>>>> org.apache.wicket.markup.html.form.Form.process(Form.java:938)
>>>>>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>>>>>> at
>>>>>>>>>>>> org.apache.wicket.markup.html.form.StatelessForm.process(StatelessForm.java:96)
>>>>>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>>>>>> at
>>>>>>>>>>>> org.apache.wicket.markup.html.form.Form.onFormSubmitted(Form.java:770)
>>>>>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>>>>>> at
>>>>>>>>>>>> com.googlecode.wicket.jquery.ui.widget.dialog.AbstractFormDialog.internalOnClick(AbstractFormDialog.java:200)
>>>>>>>>>>>> [wicket-jquery-ui-jar-6.16.0.jar:na]
>>>>>>>>>>>> at
>>>>>>>>>>>> com.googlecode.wicket.jquery.ui.widget.dialog.AbstractDialog$1.onClick(AbstractDialog.java:439)
>>>>>>>>>>>> [wicket-jquery-ui-jar-6.16.0.jar:na]
>>>>>>>>>>>> at
>>>>>>>>>>>> com.googlecode.wicket.jquery.ui.widget.dialog.DialogBehavior.onAjax(DialogBehavior.java:175)
>>>>>>>>>>>> [wicket-jquery-ui-jar-6.16.0.jar:na]
>>>>>>>>>>>> at
>>>>>>>>>>>> com.googlecode.wicket.jquery.core.ajax.JQueryAjaxBehavior.respond(JQueryAjaxBehavior.java:171)
>>>>>>>>>>>> [wicket-jquery-ui-core-jar-6.16.0.jar:na]
>>>>>>>>>>>> at
>>>>>>>>>>>> org.apache.wicket.ajax.AbstractDefaultAjaxBehavior.onRequest(AbstractDefaultAjaxBehavior.java:633)
>>>>>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>>>>>> at sun.reflect.GeneratedMethodAccessor91.invoke(Unknown
>>>>>>>>>>>> Source) ~[na:na]
>>>>>>>>>>>> at
>>>>>>>>>>>> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
>>>>>>>>>>>> ~[na:1.7.0_65]
>>>>>>>>>>>> at java.lang.reflect.Method.invoke(Method.java:606)
>>>>>>>>>>>> ~[na:1.7.0_65]
>>>>>>>>>>>> at
>>>>>>>>>>>> org.apache.wicket.RequestListenerInterface.internalInvoke(RequestListenerInterface.java:258)
>>>>>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>>>>>> at
>>>>>>>>>>>> org.apache.wicket.RequestListenerInterface.invoke(RequestListenerInterface.java:241)
>>>>>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>>>>>> at
>>>>>>>>>>>> org.apache.wicket.core.request.handler.ListenerInterfaceRequestHandler.invokeListener(ListenerInterfaceRequestHandler.java:250)
>>>>>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>>>>>> at
>>>>>>>>>>>> org.apache.wicket.core.request.handler.ListenerInterfaceRequestHandler.respond(ListenerInterfaceRequestHandler.java:236)
>>>>>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>>>>>> at
>>>>>>>>>>>> org.apache.wicket.request.cycle.RequestCycle$HandlerExecutor.respond(RequestCycle.java:862)
>>>>>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>>>>>> at
>>>>>>>>>>>> org.apache.wicket.request.RequestHandlerStack.execute(RequestHandlerStack.java:64)
>>>>>>>>>>>> [wicket-request-jar-6.16.0.jar:6.16.0]
>>>>>>>>>>>> at
>>>>>>>>>>>> org.apache.wicket.request.cycle.RequestCycle.execute(RequestCycle.java:261)
>>>>>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>>>>>> at
>>>>>>>>>>>> org.apache.wicket.request.cycle.RequestCycle.processRequest(RequestCycle.java:218)
>>>>>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>>>>>> at
>>>>>>>>>>>> org.apache.wicket.request.cycle.RequestCycle.processRequestAndDetach(RequestCycle.java:289)
>>>>>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>>>>>> at
>>>>>>>>>>>> org.apache.wicket.protocol.ws.AbstractUpgradeFilter.processRequestCycle(AbstractUpgradeFilter.java:59)
>>>>>>>>>>>> [wicket-native-websocket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>>>>>> at
>>>>>>>>>>>> org.apache.wicket.protocol.http.WicketFilter.processRequest(WicketFilter.java:201)
>>>>>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>>>>>> at
>>>>>>>>>>>> org.apache.wicket.protocol.http.WicketFilter.doFilter(WicketFilter.java:282)
>>>>>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>>>>>> at
>>>>>>>>>>>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:241)
>>>>>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>>>>>> at
>>>>>>>>>>>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:208)
>>>>>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>>>>>> at
>>>>>>>>>>>> org.red5.logging.LoggerContextFilter.doFilter(LoggerContextFilter.java:77)
>>>>>>>>>>>> [red5-server.jar:na]
>>>>>>>>>>>> at
>>>>>>>>>>>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:241)
>>>>>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>>>>>> at
>>>>>>>>>>>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:208)
>>>>>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>>>>>> at
>>>>>>>>>>>> org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:220)
>>>>>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>>>>>> at
>>>>>>>>>>>> org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:122)
>>>>>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>>>>>> at
>>>>>>>>>>>> org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:501)
>>>>>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>>>>>> at
>>>>>>>>>>>> org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:171)
>>>>>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>>>>>> at
>>>>>>>>>>>> org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:103)
>>>>>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>>>>>> at
>>>>>>>>>>>> org.apache.catalina.valves.AccessLogValve.invoke(AccessLogValve.java:950)
>>>>>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>>>>>> at
>>>>>>>>>>>> org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:116)
>>>>>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>>>>>> at
>>>>>>>>>>>> org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:408)
>>>>>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>>>>>> at
>>>>>>>>>>>> org.apache.coyote.http11.AbstractHttp11Processor.process(AbstractHttp11Processor.java:1070)
>>>>>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>>>>>> at
>>>>>>>>>>>> org.apache.coyote.AbstractProtocol$AbstractConnectionHandler.process(AbstractProtocol.java:611)
>>>>>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>>>>>> at
>>>>>>>>>>>> org.apache.tomcat.util.net.NioEndpoint$SocketProcessor.doRun(NioEndpoint.java:1736)
>>>>>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>>>>>> at
>>>>>>>>>>>> org.apache.tomcat.util.net.NioEndpoint$SocketProcessor.run(NioEndpoint.java:1695)
>>>>>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>>>>>> at
>>>>>>>>>>>> java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1145)
>>>>>>>>>>>> [na:1.7.0_65]
>>>>>>>>>>>> at
>>>>>>>>>>>> java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:615)
>>>>>>>>>>>> [na:1.7.0_65]
>>>>>>>>>>>> at
>>>>>>>>>>>> org.apache.tomcat.util.threads.TaskThread$WrappingRunnable.run(TaskThread.java:61)
>>>>>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>>>>>> at java.lang.Thread.run(Thread.java:745) [na:1.7.0_65]
>>>>>>>>>>>> DEBUG 09-19 11:47:25.927 o.a.w.u.c.CookieUtils:266
>>>>>>>>>>>> [http-nio-0.0.0.0-5080-exec-10] - Unable to find Cookie with name=LoggedIn
>>>>>>>>>>>> and request URI=signin?1-1.IBehaviorListener.1-signin
>>>>>>>>>>>> DEBUG 09-19 11:47:25.929 o.a.w.f.FeedbackMessages:69
>>>>>>>>>>>> [http-nio-0.0.0.0-5080-exec-10] - Adding feedback message '[FeedbackMessage
>>>>>>>>>>>> message = "Invalid password", reporter = signin, level = ERROR]'
>>>>>>>>>>>> DEBUG 09-19 11:47:25.929 o.a.w.u.c.CookieUtils:266
>>>>>>>>>>>> [http-nio-0.0.0.0-5080-exec-10] - Unable to find Cookie with name=LoggedIn
>>>>>>>>>>>> and request URI=signin?1-1.IBehaviorListener.1-signin
>>>>>>>>>>>> DEBUG 09-19 11:47:25.930 o.a.wicket.Page:871
>>>>>>>>>>>> [http-nio-0.0.0.0-5080-exec-10] - ending request for page [Page class =
>>>>>>>>>>>> org.apache.openmeetings.web.pages.auth.SignInPage, id = 1, render count =
>>>>>>>>>>>> 1], request
>>>>>>>>>>>> org.apache.wicket.protocol.http.servlet.ServletWebRequest@a6e74b
>>>>>>>>>>>> DEBUG 09-19 11:47:25.930 o.a.wicket.Page:871
>>>>>>>>>>>> [http-nio-0.0.0.0-5080-exec-10] - ending request for page [Page class =
>>>>>>>>>>>> org.apache.openmeetings.web.pages.auth.SignInPage, id = 1, render count =
>>>>>>>>>>>> 1], request
>>>>>>>>>>>> org.apache.wicket.protocol.http.servlet.ServletWebRequest@a6e74b
>>>>>>>>>>>> DEBUG 09-19 11:47:25.930 o.a.wicket.Page:871
>>>>>>>>>>>> [http-nio-0.0.0.0-5080-exec-10] - ending request for page [Page class =
>>>>>>>>>>>> org.apache.openmeetings.web.pages.auth.SignInPage, id = 1, render count =
>>>>>>>>>>>> 1], request
>>>>>>>>>>>> org.apache.wicket.protocol.http.servlet.ServletWebRequest@a6e74b
>>>>>>>>>>>> DEBUG 09-19 11:47:25.988
>>>>>>>>>>>> o.a.w.p.AsynchronousDataStore$PageSavingRunnable:354
>>>>>>>>>>>> [Wicket-PageSavingThread] - Saving asynchronously: Entry
>>>>>>>>>>>> [sessionId=2A10AA69C3E771FF51FABD4D26A20559, pageId=1]...
>>>>>>>>>>>> DEBUG 09-19 11:47:25.988 o.a.w.p.DiskDataStore:186
>>>>>>>>>>>> [Wicket-PageSavingThread] - Storing data for page with id '1' in session
>>>>>>>>>>>> with id '2A10AA69C3E771FF51FABD4D26A20559'
>>>>>>>>>>>> DEBUG 09-19 11:47:25.988 o.a.w.p.PageAccessSynchronizer:195
>>>>>>>>>>>> [http-nio-0.0.0.0-5080-exec-10] - 'http-nio-0.0.0.0-5080-exec-10' released
>>>>>>>>>>>> lock to page with id '1'
>>>>>>>>>>>> DEBUG 09-19 11:47:25.988 o.a.w.p.PageAccessSynchronizer:346
>>>>>>>>>>>> [http-nio-0.0.0.0-5080-exec-10] - 'http-nio-0.0.0.0-5080-exec-10' notifying
>>>>>>>>>>>> blocked threads
>>>>>>>>>>>>
>>>>>>>>>>>>
>>>>>>>>>>>>
>>>>>>>>>>>>
>>>>>>>>>>>>
>>>>>>>>>>>>
>>>>>>>>>>>>
>>>>>>>>>>>>
>>>>>>>>>>>>
>>>>>>>>>>>> And here is my conf file :
>>>>>>>>>>>>
>>>>>>>>>>>> #
>>>>>>>>>>>> # Licensed to the Apache Software Foundation (ASF) under one
>>>>>>>>>>>> # or more contributor license agreements. See the NOTICE file
>>>>>>>>>>>> # distributed with this work for additional information
>>>>>>>>>>>> # regarding copyright ownership. The ASF licenses this file
>>>>>>>>>>>> # to you under the Apache License, Version 2.0 (the
>>>>>>>>>>>> # "License"); you may not use this file except in compliance
>>>>>>>>>>>> # with the License. You may obtain a copy of the License at
>>>>>>>>>>>> #
>>>>>>>>>>>> # http://www.apache.org/licenses/LICENSE-2.0
>>>>>>>>>>>> #
>>>>>>>>>>>> # Unless required by applicable law or agreed to in writing,
>>>>>>>>>>>> # software distributed under the License is distributed on an
>>>>>>>>>>>> # "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
>>>>>>>>>>>> # KIND, either express or implied. See the License for the
>>>>>>>>>>>> # specific language governing permissions and limitations
>>>>>>>>>>>> # under the License.
>>>>>>>>>>>> #
>>>>>>>>>>>> #ConfigurationFile for LDAP Auth
>>>>>>>>>>>> #ConfigKey 'ldap_config_path' must be set in DataBase
>>>>>>>>>>>> Configration of OM and point to this file
>>>>>>>>>>>> #o.becherer,14.01.2009
>>>>>>>>>>>> #LDAP URL
>>>>>>>>>>>> # This is the URL used to access your LDAP server.
>>>>>>>>>>>> # if you want to use "ldaps://" links, please be aware that you
>>>>>>>>>>>> need to import your CA certificate
>>>>>>>>>>>> # to a java keystore and add the -Djavax.net.ssl.keyStore,
>>>>>>>>>>>> -Djavax.net.ssl.keyStorePassword,
>>>>>>>>>>>> # -Djavax.net.ssl.trustStore and
>>>>>>>>>>>> -Djavax.net.ssl.trustStorePassword parameters to your
>>>>>>>>>>>> # JAVA_OPT environment
>>>>>>>>>>>> ldap_conn_host=@IP_of_my_AD
>>>>>>>>>>>> ldap_conn_port=389
>>>>>>>>>>>> ldap_conn_secure=false
>>>>>>>>>>>> # Login distinguished name (DN) for Authentication on LDAP
>>>>>>>>>>>> Server - keep empty if not required
>>>>>>>>>>>> # Use full qualified LDAP DN
>>>>>>>>>>>>
>>>>>>>>>>>> ldap_admin_dn=CN=adconnect,OU=Comptes,OU=SI,OU=Services,OU=COMPANY,DC=mycompany,DC=priv
>>>>>>>>>>>> # Loginpass for Authentication on LDAP Server - keep empty if
>>>>>>>>>>>> not required
>>>>>>>>>>>> ldap_passwd=pass_for_user_adconnect
>>>>>>>>>>>> # base to search for userdata(of user, that wants to login)
>>>>>>>>>>>> ldap_search_base=DC=mycompany,DC=priv
>>>>>>>>>>>> # Fieldnames (can differ between Ldap servers)
>>>>>>>>>>>> ldap_search_query=(uid=%s)
>>>>>>>>>>>> # the scope of the search might be: OBJECT, ONELEVEL, SUBTREE
>>>>>>>>>>>> ldap_search_scope=ONELEVEL
>>>>>>>>>>>> # Ldap auth type(NONE, SEARCHANDBIND, SIMPLEBIND)
>>>>>>>>>>>> # When using SIMPLEBIND a simple bind is performed on the LDAP
>>>>>>>>>>>> server to check user authentication
>>>>>>>>>>>> # When using NONE, the Ldap server is not used for
>>>>>>>>>>>> authentication
>>>>>>>>>>>> ldap_auth_type=SIMPLEBIND
>>>>>>>>>>>> # userDN format, will be used to bind if
>>>>>>>>>>>> ldap_auth_type=SIMPLEBIND
>>>>>>>>>>>> # might be used to get provisionningDn in case
>>>>>>>>>>>> ldap_auth_type=NONE
>>>>>>>>>>>> ldap_userdn_format=uid=%s,OU=COMPANY,DC=mycompany,DC=priv
>>>>>>>>>>>> # Ldap provisioning type(NONE, AUTOCREATE, AUTOUPDATE)
>>>>>>>>>>>> ldap_provisionning=AUTOCREATE
>>>>>>>>>>>> # Set this to 'true' if you want to use admin_dn to get user
>>>>>>>>>>>> attributes
>>>>>>>>>>>> # If any other value is set, user_dn will be used
>>>>>>>>>>>> ldap_use_admin_to_get_attrs=true
>>>>>>>>>>>> # Ldap-password synchronization to OM DB
>>>>>>>>>>>> # Set this to 'true' if you want OM to synchronize the user
>>>>>>>>>>>> Ldap-password to OM's internal DB
>>>>>>>>>>>> # If you want to disable the feature, set this to any other
>>>>>>>>>>>> string.
>>>>>>>>>>>> # Defautl value is 'true'
>>>>>>>>>>>> ldap_sync_password_to_om=true
>>>>>>>>>>>> # Ldap user attributes mapping
>>>>>>>>>>>> # Set the following internal OM user attributes to their
>>>>>>>>>>>> corresponding Ldap-attribute
>>>>>>>>>>>> ldap_user_attr_lastname=sn
>>>>>>>>>>>> ldap_user_attr_firstname=givenName
>>>>>>>>>>>> ldap_user_attr_mail=mail
>>>>>>>>>>>> ldap_user_attr_street=streetAddress
>>>>>>>>>>>> ldap_user_attr_additionalname=description
>>>>>>>>>>>> ldap_user_attr_fax=facsimileTelephoneNumber
>>>>>>>>>>>> ldap_user_attr_zip=postalCode
>>>>>>>>>>>> ldap_user_attr_country=co
>>>>>>>>>>>> ldap_user_attr_town=l
>>>>>>>>>>>> ldap_user_attr_phone=telephoneNumber
>>>>>>>>>>>> # optional, only absolute URLs make sense
>>>>>>>>>>>> #ldap_user_picture_uri=picture_uri
>>>>>>>>>>>> # optional
>>>>>>>>>>>> # the timezone has to match any timezone available in Java,
>>>>>>>>>>>> otherwise the timezone defined in the value of
>>>>>>>>>>>> # the conf_key "default.timezone" in OpenMeetings
>>>>>>>>>>>> "configurations" table
>>>>>>>>>>>> #ldap_user_timezone=timezone
>>>>>>>>>>>> # Ldap ignore upper/lower case, convert all input to lower case
>>>>>>>>>>>> ldap_use_lower_case=false
>>>>>>>>>>>>
>>>>>>>>>>>>
>>>>>>>>>>>>
>>>>>>>>>>>> Thanks a lot for your help.
>>>>>>>>>>>>
>>>>>>>>>>>> Greg.
>>>>>>>>>>>>
>>>>>>>>>>>>
>>>>>>>>>>>>
>>>>>>>>>>>>
>>>>>>>>>>>> 2014-09-18 17:52 GMT+02:00 Maxim Solodovnik <
>>>>>>>>>>>> solomax666@gmail.com>:
>>>>>>>>>>>>
>>>>>>>>>>>>> please check this URL:
>>>>>>>>>>>>> http://kb.juniper.net/InfoCenter/index?page=content&id=KB17098
>>>>>>>>>>>>> According to it you have "User not found"
>>>>>>>>>>>>>
>>>>>>>>>>>>> could you provide more ldap related logs?
>>>>>>>>>>>>> it might be Admin not found or user entered in login form not
>>>>>>>>>>>>> found depending on your settings
>>>>>>>>>>>>>
>>>>>>>>>>>>> On 18 September 2014 21:43, Grégory Mangeney <
>>>>>>>>>>>>> mangeney@gmail.com> wrote:
>>>>>>>>>>>>>
>>>>>>>>>>>>>> Hello, It's me again...
>>>>>>>>>>>>>> I'm back.
>>>>>>>>>>>>>> Now I have a new problem to connect to my AD...
>>>>>>>>>>>>>> In log file it is write : *ERROR ......... Not authenticated*
>>>>>>>>>>>>>>
>>>>>>>>>>>>>> witch is a quite better message than before but after that it
>>>>>>>>>>>>>> is write : *LdapErr: DSID-0C090334, comment:
>>>>>>>>>>>>>> AcceptSecurityContext error, data 525, vece\00 at........*
>>>>>>>>>>>>>>
>>>>>>>>>>>>>> I try to understand my problem but "AcceptSecurityContext
>>>>>>>>>>>>>> error" seems to speack about a security problem.
>>>>>>>>>>>>>> I have set my ldap_conn_secure=false in om_ldap.conf.
>>>>>>>>>>>>>> I don't understand what could be my problem.
>>>>>>>>>>>>>>
>>>>>>>>>>>>>> thanks a lot for your ideas.
>>>>>>>>>>>>>>
>>>>>>>>>>>>>> Greg.
>>>>>>>>>>>>>> 2014-09-18 15:37 GMT+02:00 Grégory Mangeney <
>>>>>>>>>>>>>> mangeney@gmail.com>:
>>>>>>>>>>>>>>
>>>>>>>>>>>>>>> Ok, I finally understand that I have to put the filename and
>>>>>>>>>>>>>>> only the filename without
>>>>>>>>>>>>>>> */usr/lib/red5/webapps/openmeetings/conf/*
>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>> Now I have a new message whitch said me invalid password...
>>>>>>>>>>>>>>> It's quite better...
>>>>>>>>>>>>>>> Thank you...
>>>>>>>>>>>>>>> I could continue to try to set it now.
>>>>>>>>>>>>>>> bye
>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>> Greg.
>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>> 2014-09-18 15:06 GMT+02:00 Maxim Solodovnik <
>>>>>>>>>>>>>>> solomax666@gmail.com>:
>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>> you need to write file name relative to
>>>>>>>>>>>>>>>> webapps/openmeetings/conf folder
>>>>>>>>>>>>>>>> in your case *om_ldap.cfg *should be specified
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>> On 18 September 2014 20:04, Grégory Mangeney <
>>>>>>>>>>>>>>>> mangeney@gmail.com> wrote:
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>> Thank you very much but I don't understand very well.
>>>>>>>>>>>>>>>>> I think I put the right information...
>>>>>>>>>>>>>>>>> Do you want to say that I have to write :
>>>>>>>>>>>>>>>>> */usr/lib/red5/webapps/openmeetings/conf/* without the
>>>>>>>>>>>>>>>>> filename *om_ldap.cfg* at the end?
>>>>>>>>>>>>>>>>> Thanks for your help
>>>>>>>>>>>>>>>>> Greg
>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>> 2014-09-18 14:52 GMT+02:00 Maxim Solodovnik <
>>>>>>>>>>>>>>>>> solomax666@gmail.com>:
>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>> AFAIK the path should be relative to
>>>>>>>>>>>>>>>>>> /usr/lib/red5/webapps/openmeetings/conf
>>>>>>>>>>>>>>>>>> Please change this path
>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>> Additionally you can file JIRA issue to add check to the
>>>>>>>>>>>>>>>>>> Admin screen (so path will be validated on enter)
>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>> On 18 September 2014 19:44, Grégory Mangeney <
>>>>>>>>>>>>>>>>>> mangeney@gmail.com> wrote:
>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>> Hello,
>>>>>>>>>>>>>>>>>>> I have the same problem: I could not connect with AD.
>>>>>>>>>>>>>>>>>>> I have the domain at the login screen,
>>>>>>>>>>>>>>>>>>> I am using the 3.0.3.
>>>>>>>>>>>>>>>>>>> I found this line in my log file :* ERROR 09-18
>>>>>>>>>>>>>>>>>>> 14:28:33.994 o.a.o.l.LdapLoginManagement:147 [http-nio-0.0.0.0-5080-exec-4]
>>>>>>>>>>>>>>>>>>> - Error on LdapLogin : Configurationdata couldnt be retrieved!*
>>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>> This seem strange because in my LDAP config (in
>>>>>>>>>>>>>>>>>>> openmeetings Administration/LDAP menu), I put the correct path in the
>>>>>>>>>>>>>>>>>>> "Config file name" : /usr/lib/red5/webapps/openmeetings/conf/om_ldap.cfg
>>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>> Why is this error appeared : *Configurationdata couldnt
>>>>>>>>>>>>>>>>>>> be retrieved! *???
>>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>> Thanks a lot
>>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>> Greg
>>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>> 2014-09-17 12:52 GMT+02:00 Maxim Solodovnik <
>>>>>>>>>>>>>>>>>>> solomax666@gmail.com>:
>>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>>> great :)
>>>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>>> On 17 September 2014 17:46, Teddy Jayasaputra <
>>>>>>>>>>>>>>>>>>>> teddy.jayasaputra@ocbcnisp.com> wrote:
>>>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>>>> Dear Maxim,
>>>>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>>>> After close look to console log.
>>>>>>>>>>>>>>>>>>>>> We found this error :
>>>>>>>>>>>>>>>>>>>>> ERROR 09-17 17:28:33.278 LdapLoginManagement.java
>>>>>>>>>>>>>>>>>>>>> 135070 285 org.apache.openmeetings.ldap.LdapLoginManagement
>>>>>>>>>>>>>>>>>>>>> [http-nio-0.0.0.0-5080-exec-6] - User not found in OM DB and
>>>>>>>>>>>>>>>>>>>>> Provisionning.AUTOCREATE was not set
>>>>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>>>> After we change ldapconfiguration file from
>>>>>>>>>>>>>>>>>>>>> ldap_provisionning=NONE to AUTOCREATE we can login using AD.
>>>>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>>>> thanks.
>>>>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>>>> Best Regards,
>>>>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>>>> -Teddy Jayasaputra-
>>>>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>>>> On 9/17/2014 4:25 PM, Maxim Solodovnik wrote:
>>>>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>>>> do you have your AD domain on the login screen?
>>>>>>>>>>>>>>>>>>>>> are there errors in the log?
>>>>>>>>>>>>>>>>>>>>> what OM version are you using?
>>>>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>>>> On 17 September 2014 16:02, ARI HENDIAWAN <
>>>>>>>>>>>>>>>>>>>>> ari.hendiawan@ocbcnisp.com> wrote:
>>>>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>>>>> Dear all,
>>>>>>>>>>>>>>>>>>>>>> please we need extra information how to integrate
>>>>>>>>>>>>>>>>>>>>>> openmeetings 3.0.3 with AD?
>>>>>>>>>>>>>>>>>>>>>> we already setting on ldap.conf and still problem..
>>>>>>>>>>>>>>>>>>>>>> if we saw on AD , user that want sign-in openmeetings success, but on login
>>>>>>>>>>>>>>>>>>>>>> menu openmeetings shown error "invalid password"
>>>>>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>>>>> Tks
>>>>>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>>>>> --
>>>>>>>>>>>>>>>>>>>>>> Disclaimer :
>>>>>>>>>>>>>>>>>>>>>> Confidential information may be contained in this
>>>>>>>>>>>>>>>>>>>>>> message. If you are not the intended recipient, you are strictly prohibited
>>>>>>>>>>>>>>>>>>>>>> and may be unlawful to use, copy, store, distribute, disclose or
>>>>>>>>>>>>>>>>>>>>>> communicate any part of it to others and you are obliged to return it
>>>>>>>>>>>>>>>>>>>>>> immediately to sender or notify us and delete the e-mail and any
>>>>>>>>>>>>>>>>>>>>>> attachments from your system. Opinions, conclusions and other information
>>>>>>>>>>>>>>>>>>>>>> in this e-mail that do not relate to the official business of any PT Bank
>>>>>>>>>>>>>>>>>>>>>> OCBC NISP Tbk shall be understood as neither given nor endorsed by it. No
>>>>>>>>>>>>>>>>>>>>>> assumption of responsibility or liability whatsoever is undertaken by PT
>>>>>>>>>>>>>>>>>>>>>> Bank OCBC NISP Tbk in respect of prohibited and unauthorised use by any
>>>>>>>>>>>>>>>>>>>>>> other person.
>>>>>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>>>> --
>>>>>>>>>>>>>>>>>>>>> WBR
>>>>>>>>>>>>>>>>>>>>> Maxim aka solomax
>>>>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>>>> --
>>>>>>>>>>>>>>>>>>>>> Disclaimer :
>>>>>>>>>>>>>>>>>>>>> Confidential information may be contained in this
>>>>>>>>>>>>>>>>>>>>> message. If you are not the intended recipient, you are strictly prohibited
>>>>>>>>>>>>>>>>>>>>> and may be unlawful to use, copy, store, distribute, disclose or
>>>>>>>>>>>>>>>>>>>>> communicate any part of it to others and you are obliged to return it
>>>>>>>>>>>>>>>>>>>>> immediately to sender or notify us and delete the e-mail and any
>>>>>>>>>>>>>>>>>>>>> attachments from your system. Opinions, conclusions and other information
>>>>>>>>>>>>>>>>>>>>> in this e-mail that do not relate to the official business of any PT Bank
>>>>>>>>>>>>>>>>>>>>> OCBC NISP Tbk shall be understood as neither given nor endorsed by it. No
>>>>>>>>>>>>>>>>>>>>> assumption of responsibility or liability whatsoever is undertaken by PT
>>>>>>>>>>>>>>>>>>>>> Bank OCBC NISP Tbk in respect of prohibited and unauthorised use by any
>>>>>>>>>>>>>>>>>>>>> other person.
>>>>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>>> --
>>>>>>>>>>>>>>>>>>>> WBR
>>>>>>>>>>>>>>>>>>>> Maxim aka solomax
>>>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>> --
>>>>>>>>>>>>>>>>>> WBR
>>>>>>>>>>>>>>>>>> Maxim aka solomax
>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>> --
>>>>>>>>>>>>>>>> WBR
>>>>>>>>>>>>>>>> Maxim aka solomax
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>
>>>>>>>>>>>>>
>>>>>>>>>>>>>
>>>>>>>>>>>>> --
>>>>>>>>>>>>> WBR
>>>>>>>>>>>>> Maxim aka solomax
>>>>>>>>>>>>>
>>>>>>>>>>>>
>>>>>>>>>>>>
>>>>>>>>>>>
>>>>>>>>>>>
>>>>>>>>>>> --
>>>>>>>>>>> WBR
>>>>>>>>>>> Maxim aka solomax
>>>>>>>>>>>
>>>>>>>>>>
>>>>>>>>>>
>>>>>>>>>
>>>>>>>>>
>>>>>>>>> --
>>>>>>>>> WBR
>>>>>>>>> Maxim aka solomax
>>>>>>>>>
>>>>>>>>
>>>>>>>>
>>>>>>
>>>>>
>>>>
>>>>
>>>> --
>>>> WBR
>>>> Maxim aka solomax
>>>>
>>>
>>>
>>
>
--
WBR
Maxim aka solomax
Re: need info about problem when integration AD
Posted by Grégory Mangeney <ma...@gmail.com>.
Ok, I tryed with an other account in an easyest object
(ldap_admin_dn=CN=testad,
OU=COMPANY,DC=mycompany,DC=pri), but it still the same...
"NONE users in LDAP"
I do not understand.
I think the link is now good with AD according to this message but I don't
know why no users are found!
Any ideas?
Best regards.
Greg
2014-09-23 15:56 GMT+02:00 Grégory Mangeney <ma...@gmail.com>:
> Ok, Maxim
> I found in logs the 52e between "data" and "vece\00"
>
> According to your ling given previousely, it seems to be an "invalid
> credentials" (
> http://kb.juniper.net/InfoCenter/index?page=content&id=KB17098)
>
> Is it a problem with my user or do you see an other issue?
> I could mabe test with a new account, an easyer account that I could creat
> for testing.
>
> Thanks.
>
> Greg.
>
>
>
> 2014-09-23 15:47 GMT+02:00 Grégory Mangeney <ma...@gmail.com>:
>
>> Hello Maxim.
>> I had try with the 3.0.4 Version according to your link.
>>
>> Now I have an other error in log file.
>> It said NONE USER FOUND IN LDAP...
>> I hope so the connection with my AD is good and it still a config problem
>> but maybe you could help me with my logs and my conf file...
>>
>> My logs:
>>
>> ERROR 09-23 15:34:55.797 o.a.o.l.LdapLoginManagement:266
>> [http-nio-0.0.0.0-5080-exec-8] - NONE users found in LDAP
>> DEBUG 09-23 15:34:55.799 o.a.w.u.c.CookieUtils:273
>> [http-nio-0.0.0.0-5080-exec-8] - Unable to find Cookie with name=LoggedIn
>> and request URI=signin?0-5.IBehaviorListener.0-signin-signin-submit
>> DEBUG 09-23 15:34:55.802 o.a.w.f.FeedbackMessages:69
>> [http-nio-0.0.0.0-5080-exec-8] - Adding feedback message '[FeedbackMessage
>> message = "Invalid password", reporter = signin, level = ERROR]'
>> DEBUG 09-23 15:34:55.808 o.a.wicket.Page:871
>> [http-nio-0.0.0.0-5080-exec-8] - ending request for page [Page class =
>> org.apache.openmeetings.web.pages.auth.SignInPage, id = 0, render count =
>> 5], request org.apache.wicket.protocol.http.servlet.ServletWebRequest@69fbe
>> DEBUG 09-23 15:34:55.809 o.a.wicket.Page:871
>> [http-nio-0.0.0.0-5080-exec-8] - ending request for page [Page class =
>> org.apache.openmeetings.web.pages.auth.SignInPage, id = 0, render count =
>> 5], request org.apache.wicket.protocol.http.servlet.ServletWebRequest@69fbe
>> DEBUG 09-23 15:34:55.809 o.a.wicket.Page:871
>> [http-nio-0.0.0.0-5080-exec-8] - ending request for page [Page class =
>> org.apache.openmeetings.web.pages.auth.SignInPage, id = 0, render count =
>> 5], request org.apache.wicket.protocol.http.servlet.ServletWebRequest@69fbe
>> DEBUG 09-23 15:34:55.811
>> o.a.w.p.AsynchronousDataStore$PageSavingRunnable:354
>> [Wicket-PageSavingThread] - Saving asynchronously: Entry
>> [sessionId=E576CCA08DEE992DF7CCBD22F2FD64F8, pageId=0]...
>> DEBUG 09-23 15:34:55.811 o.a.w.p.DiskDataStore:186
>> [Wicket-PageSavingThread] - Storing data for page with id '0' in session
>> with id 'E576CCA08DEE992DF7CCBD22F2FD64F8'
>> DEBUG 09-23 15:34:55.812 o.a.w.p.PageAccessSynchronizer:195
>> [http-nio-0.0.0.0-5080-exec-8] - 'http-nio-0.0.0.0-5080-exec-8' released
>> lock to page with id '0'
>> DEBUG 09-23 15:34:55.812 o.a.w.p.PageAccessSynchronizer:346
>> [http-nio-0.0.0.0-5080-exec-8] - 'http-nio-0.0.0.0-5080-exec-8' notifying
>> blocked threads
>> DEBUG 09-23 15:35:30.522 o.a.o.m.MailHandler:258
>> [org.springframework.scheduling.quartz.SchedulerFactoryBean#0_Worker-2] -
>> sendMails enter ...
>> DEBUG 09-23 15:35:30.523 o.a.o.m.MailHandler:260
>> [org.springframework.scheduling.quartz.SchedulerFactoryBean#0_Worker-2] -
>> Number of emails in init queue 0
>> DEBUG 09-23 15:35:30.524 o.a.o.m.MailHandler:265
>> [org.springframework.scheduling.quartz.SchedulerFactoryBean#0_Worker-2] -
>> ... sendMails done.
>> DEBUG 09-23 15:35:35.503 o.a.o.d.d.s.SessiondataDao:404
>> [org.springframework.scheduling.quartz.SchedulerFactoryBean#0_Worker-3] -
>> ****** clearSessionTable:
>> DEBUG 09-23 15:35:35.505 o.a.o.d.d.s.SessiondataDao:408
>> [org.springframework.scheduling.quartz.SchedulerFactoryBean#0_Worker-3] -
>> clearSessionTable: 0
>> DEBUG 09-23 15:35:35.512 o.a.o.q.s.MeetingReminderJob:34
>> [org.springframework.scheduling.quartz.SchedulerFactoryBean#0_Worker-4] -
>> MeetingReminderJob.execute
>>
>>
>>
>> My conf :
>>
>> #
>> # Licensed to the Apache Software Foundation (ASF) under one
>> # or more contributor license agreements. See the NOTICE file
>> # distributed with this work for additional information
>> # regarding copyright ownership. The ASF licenses this file
>> # to you under the Apache License, Version 2.0 (the
>> # "License"); you may not use this file except in compliance
>> # with the License. You may obtain a copy of the License at
>> #
>> # http://www.apache.org/licenses/LICENSE-2.0
>> #
>> # Unless required by applicable law or agreed to in writing,
>> # software distributed under the License is distributed on an
>> # "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
>> # KIND, either express or implied. See the License for the
>> # specific language governing permissions and limitations
>> # under the License.
>> #
>> #ConfigurationFile for LDAP Auth
>> #ConfigKey 'ldap_config_path' must be set in DataBase Configration of OM
>> and point to this file
>> #o.becherer,14.01.2009
>>
>> #LDAP URL
>> # This is the URL used to access your LDAP server.
>> # if you want to use "ldaps://" links, please be aware that you need to
>> import your CA certificate
>> # to a java keystore and add the -Djavax.net.ssl.keyStore,
>> -Djavax.net.ssl.keyStorePassword,
>> # -Djavax.net.ssl.trustStore and -Djavax.net.ssl.trustStorePassword
>> parameters to your
>> # JAVA_OPT environment
>> ldap_conn_host=@IP_of_my_AD
>> ldap_conn_port=389
>> ldap_conn_secure=false
>>
>> # Login distinguished name (DN) for Authentication on LDAP Server - keep
>> empty if not required
>> # Use full qualified LDAP DN
>> ldap_admin_dn=CN=adconnect,OU=Comptes
>> Cles,OU=SI,OU=Services,OU=COMPANY,DC=mycompany,DC=priv
>>
>> # Loginpass for Authentication on LDAP Server - keep empty if not
>> required
>> ldap_passwd=pass_for_user_adconnect
>>
>> # base to search for userdata(of user, that wants to login)
>> ldap_search_base=OU=COMPANY,DC=mycompany,DC=priv
>>
>> # Fieldnames (can differ between Ldap servers)
>> ldap_search_query=(uid=%s)
>>
>> # the scope of the search might be: OBJECT, ONELEVEL, SUBTREE
>> ldap_search_scope=SUBTREE
>>
>> # Ldap auth type(NONE, SEARCHANDBIND, SIMPLEBIND)
>> # When using SIMPLEBIND a simple bind is performed on the LDAP server to
>> check user authentication
>> # When using NONE, the Ldap server is not used for authentication
>> ldap_auth_type=SEARCHANDBIND
>>
>> # userDN format, will be used to bind if ldap_auth_type=SIMPLEBIND
>> # might be used to get provisionningDn in case ldap_auth_type=NONE
>> ldap_userdn_format=uid=%s,OU=COMPANY,DC=mycompany,DC=priv
>>
>> # Ldap provisioning type(NONE, AUTOCREATE, AUTOUPDATE)
>> ldap_provisionning=AUTOCREATE
>>
>> # Set this to 'true' if you want to use admin_dn to get user attributes
>> # If any other value is set, user_dn will be used
>> ldap_use_admin_to_get_attrs=true
>>
>> # Ldap-password synchronization to OM DB
>> # Set this to 'true' if you want OM to synchronize the user
>> Ldap-password to OM's internal DB
>> # If you want to disable the feature, set this to any other string.
>> # Defautl value is 'true'
>> ldap_sync_password_to_om=true
>>
>> # Ldap user attributes mapping
>> # Set the following internal OM user attributes to their corresponding
>> Ldap-attribute
>> ldap_user_attr_lastname=sn
>> ldap_user_attr_firstname=givenName
>> ldap_user_attr_mail=mail
>> ldap_user_attr_street=streetAddress
>> ldap_user_attr_additionalname=description
>> ldap_user_attr_fax=facsimileTelephoneNumber
>> ldap_user_attr_zip=postalCode
>> ldap_user_attr_country=co
>> ldap_user_attr_town=l
>> ldap_user_attr_phone=telephoneNumber
>>
>> # optional, only absolute URLs make sense
>> #ldap_user_picture_uri=picture_uri
>>
>> # optional
>> # the timezone has to match any timezone available in Java, otherwise the
>> timezone defined in the value of
>> # the conf_key "default.timezone" in OpenMeetings "configurations" table
>> #ldap_user_timezone=timezone
>>
>> # Ldap ignore upper/lower case, convert all input to lower case
>> ldap_use_lower_case=false
>>
>>
>> Do you see how to fix my problem with this new branch of openmeetings
>> 3.0.4?
>>
>> Thanks a lot.
>>
>> Greg.
>>
>>
>>
>>
>> 2014-09-22 17:50 GMT+02:00 Maxim Solodovnik <so...@gmail.com>:
>>
>>> Please get build #67 here:
>>> https://builds.apache.org/view/M-R/view/OpenMeetings/job/Openmeetings%203.0.x/
>>> I have no LDAP infrastructure to test :( I 100% rely on community in this
>>> So thanks for the testing :)
>>>
>>> On 23 September 2014 01:17, Grégory Mangeney <ma...@gmail.com> wrote:
>>>
>>>> Windows Server 2003 R2
>>>>
>>>> 2014-09-22 17:13 GMT+02:00 Grégory Mangeney <ma...@gmail.com>:
>>>>
>>>>> Ok,thank you for that.
>>>>> For information I am using a Microsoft Active Directory in object
>>>>> version 31
>>>>>
>>>>> I get this information by tapping dsquery *
>>>>> cn=schema,cn=configuration,dc=mycompany,dc=priv -scope base -attr
>>>>> objectVersion
>>>>>
>>>>> Good evening.
>>>>>
>>>>> Best regards.
>>>>>
>>>>> Greg.
>>>>>
>>>>> 2014-09-22 16:40 GMT+02:00 Maxim Solodovnik <so...@gmail.com>:
>>>>>
>>>>>> You have these Paramaribo in your configuration:
>>>>>> ldap_search_base=DC=mycompany,DC=priv
>>>>>> # Fieldnames (can differ between Ldap servers)
>>>>>> ldap_search_query=(uid=%s)
>>>>>>
>>>>>> I guess nothing is found. Not sure I never saw error like yours.
>>>>>>
>>>>>> Will create 3.0.4 nightly fly you later today (with updated ldap
>>>>>> library) if error will be the same I'll ask ldap library developers for the
>>>>>> help
>>>>>> On Sep 22, 2014 9:05 PM, "Grégory Mangeney" <ma...@gmail.com>
>>>>>> wrote:
>>>>>>
>>>>>>> a bad search query?
>>>>>>>
>>>>>>> In this case, the loging error message shouldn't be somthing like :
>>>>>>> "Login/password do not exist" ?
>>>>>>>
>>>>>>> How could I check this point...
>>>>>>> I do not modified the source code!
>>>>>>>
>>>>>>> 2014-09-22 11:25 GMT+02:00 Maxim Solodovnik <so...@gmail.com>:
>>>>>>>
>>>>>>>> it seems like nothing was found
>>>>>>>> Maybe bad search query?
>>>>>>>>
>>>>>>>> On 22 September 2014 15:55, Grégory Mangeney <ma...@gmail.com>
>>>>>>>> wrote:
>>>>>>>>
>>>>>>>>> Hello Maxim.
>>>>>>>>> Thanks a lot for your answer.
>>>>>>>>> You're helpfull...
>>>>>>>>>
>>>>>>>>> I had ever try with SEARCHANDBIND but it still not working...
>>>>>>>>> So I set it again to give you my logs...
>>>>>>>>> The error is quite different but I could not understand what is
>>>>>>>>> the problem...
>>>>>>>>>
>>>>>>>>> In the login screen I have the following message in red : "Unknown
>>>>>>>>> error. Please report this to the administrator."
>>>>>>>>>
>>>>>>>>>
>>>>>>>>>
>>>>>>>>>
>>>>>>>>> Here is my logs :
>>>>>>>>>
>>>>>>>>> ERROR 09-22 10:34:34.814 o.a.o.l.LdapLoginManagement:356
>>>>>>>>> [http-nio-0.0.0.0-5080-exec-4] - Unexpected exception.
>>>>>>>>> org.apache.directory.api.ldap.model.cursor.CursorLdapReferralException:
>>>>>>>>> null
>>>>>>>>> at
>>>>>>>>> org.apache.directory.ldap.client.api.EntryCursorImpl.get(EntryCursorImpl.java:164)
>>>>>>>>> ~[api-all-jar-1.0.0-M23.jar:1.0.0-M23]
>>>>>>>>> at
>>>>>>>>> org.apache.directory.ldap.client.api.EntryCursorImpl.get(EntryCursorImpl.java:50)
>>>>>>>>> ~[api-all-jar-1.0.0-M23.jar:1.0.0-M23]
>>>>>>>>> at
>>>>>>>>> org.apache.openmeetings.ldap.LdapLoginManagement.login(LdapLoginManagement.java:258)
>>>>>>>>> ~[openmeetings-core-3.0.3-RELEASE.jar:na]
>>>>>>>>> at
>>>>>>>>> org.apache.openmeetings.web.app.WebSession.signIn(WebSession.java:257)
>>>>>>>>> [openmeetings-web-3.0.3-RELEASE.jar:na]
>>>>>>>>> at
>>>>>>>>> org.apache.openmeetings.web.pages.auth.SignInDialog.onSubmit(SignInDialog.java:190)
>>>>>>>>> [openmeetings-web-3.0.3-RELEASE.jar:na]
>>>>>>>>> at
>>>>>>>>> com.googlecode.wicket.jquery.ui.widget.dialog.AbstractFormDialog$DialogFormSubmitter.onSubmit(AbstractFormDialog.java:279)
>>>>>>>>> [wicket-jquery-ui-jar-6.16.0.jar:na]
>>>>>>>>> at
>>>>>>>>> org.apache.wicket.markup.html.form.Form.delegateSubmit(Form.java:1266)
>>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>>> at
>>>>>>>>> org.apache.wicket.markup.html.form.Form.process(Form.java:938)
>>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>>> at
>>>>>>>>> org.apache.wicket.markup.html.form.StatelessForm.process(StatelessForm.java:96)
>>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>>> at
>>>>>>>>> org.apache.wicket.markup.html.form.Form.onFormSubmitted(Form.java:770)
>>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>>> at
>>>>>>>>> com.googlecode.wicket.jquery.ui.widget.dialog.AbstractFormDialog.internalOnClick(AbstractFormDialog.java:200)
>>>>>>>>> [wicket-jquery-ui-jar-6.16.0.jar:na]
>>>>>>>>> at
>>>>>>>>> com.googlecode.wicket.jquery.ui.widget.dialog.AbstractDialog$1.onClick(AbstractDialog.java:439)
>>>>>>>>> [wicket-jquery-ui-jar-6.16.0.jar:na]
>>>>>>>>> at
>>>>>>>>> com.googlecode.wicket.jquery.ui.widget.dialog.DialogBehavior.onAjax(DialogBehavior.java:175)
>>>>>>>>> [wicket-jquery-ui-jar-6.16.0.jar:na]
>>>>>>>>> at
>>>>>>>>> com.googlecode.wicket.jquery.core.ajax.JQueryAjaxBehavior.respond(JQueryAjaxBehavior.java:171)
>>>>>>>>> [wicket-jquery-ui-core-jar-6.16.0.jar:na]
>>>>>>>>> at
>>>>>>>>> org.apache.wicket.ajax.AbstractDefaultAjaxBehavior.onRequest(AbstractDefaultAjaxBehavior.java:633)
>>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>>> at sun.reflect.GeneratedMethodAccessor91.invoke(Unknown
>>>>>>>>> Source) ~[na:na]
>>>>>>>>> at
>>>>>>>>> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
>>>>>>>>> ~[na:1.7.0_65]
>>>>>>>>> at java.lang.reflect.Method.invoke(Method.java:606)
>>>>>>>>> ~[na:1.7.0_65]
>>>>>>>>> at
>>>>>>>>> org.apache.wicket.RequestListenerInterface.internalInvoke(RequestListenerInterface.java:258)
>>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>>> at
>>>>>>>>> org.apache.wicket.RequestListenerInterface.invoke(RequestListenerInterface.java:241)
>>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>>> at
>>>>>>>>> org.apache.wicket.core.request.handler.ListenerInterfaceRequestHandler.invokeListener(ListenerInterfaceRequestHandler.java:250)
>>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>>> at
>>>>>>>>> org.apache.wicket.core.request.handler.ListenerInterfaceRequestHandler.respond(ListenerInterfaceRequestHandler.java:236)
>>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>>> at
>>>>>>>>> org.apache.wicket.request.cycle.RequestCycle$HandlerExecutor.respond(RequestCycle.java:862)
>>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>>> at
>>>>>>>>> org.apache.wicket.request.RequestHandlerStack.execute(RequestHandlerStack.java:64)
>>>>>>>>> [wicket-request-jar-6.16.0.jar:6.16.0]
>>>>>>>>> at
>>>>>>>>> org.apache.wicket.request.cycle.RequestCycle.execute(RequestCycle.java:261)
>>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>>> at
>>>>>>>>> org.apache.wicket.request.cycle.RequestCycle.processRequest(RequestCycle.java:218)
>>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>>> at
>>>>>>>>> org.apache.wicket.request.cycle.RequestCycle.processRequestAndDetach(RequestCycle.java:289)
>>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>>> at
>>>>>>>>> org.apache.wicket.protocol.ws.AbstractUpgradeFilter.processRequestCycle(AbstractUpgradeFilter.java:59)
>>>>>>>>> [wicket-native-websocket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>>> at
>>>>>>>>> org.apache.wicket.protocol.http.WicketFilter.processRequest(WicketFilter.java:201)
>>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>>> at
>>>>>>>>> org.apache.wicket.protocol.http.WicketFilter.doFilter(WicketFilter.java:282)
>>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>>> at
>>>>>>>>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:241)
>>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>>> at
>>>>>>>>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:208)
>>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>>> at
>>>>>>>>> org.red5.logging.LoggerContextFilter.doFilter(LoggerContextFilter.java:77)
>>>>>>>>> [red5-server.jar:na]
>>>>>>>>> at
>>>>>>>>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:241)
>>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>>> at
>>>>>>>>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:208)
>>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>>> at
>>>>>>>>> org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:220)
>>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>>> at
>>>>>>>>> org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:122)
>>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>>> at
>>>>>>>>> org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:501)
>>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>>> at
>>>>>>>>> org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:171)
>>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>>> at
>>>>>>>>> org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:103)
>>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>>> at
>>>>>>>>> org.apache.catalina.valves.AccessLogValve.invoke(AccessLogValve.java:950)
>>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>>> at
>>>>>>>>> org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:116)
>>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>>> at
>>>>>>>>> org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:408)
>>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>>> at
>>>>>>>>> org.apache.coyote.http11.AbstractHttp11Processor.process(AbstractHttp11Processor.java:1070)
>>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>>> at
>>>>>>>>> org.apache.coyote.AbstractProtocol$AbstractConnectionHandler.process(AbstractProtocol.java:611)
>>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>>> at
>>>>>>>>> org.apache.tomcat.util.net.NioEndpoint$SocketProcessor.doRun(NioEndpoint.java:1736)
>>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>>> at
>>>>>>>>> org.apache.tomcat.util.net.NioEndpoint$SocketProcessor.run(NioEndpoint.java:1695)
>>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>>> at
>>>>>>>>> java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1145)
>>>>>>>>> [na:1.7.0_65]
>>>>>>>>> at
>>>>>>>>> java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:615)
>>>>>>>>> [na:1.7.0_65]
>>>>>>>>> at
>>>>>>>>> org.apache.tomcat.util.threads.TaskThread$WrappingRunnable.run(TaskThread.java:61)
>>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>>> at java.lang.Thread.run(Thread.java:745) [na:1.7.0_65]
>>>>>>>>> DEBUG 09-22 10:34:34.817 o.a.w.u.c.CookieUtils:266
>>>>>>>>> [http-nio-0.0.0.0-5080-exec-4] - Unable to find Cookie with name=LoggedIn
>>>>>>>>> and request URI=signin?1-1.IBehaviorListener.1-signin
>>>>>>>>> DEBUG 09-22 10:34:34.820 o.a.w.f.FeedbackMessages:69
>>>>>>>>> [http-nio-0.0.0.0-5080-exec-4] - Adding feedback message '[FeedbackMessage
>>>>>>>>> message = "Unknown error. Please report this to the administrator.",
>>>>>>>>> reporter = signin, level = ERROR]'
>>>>>>>>> DEBUG 09-22 10:34:34.821 o.a.w.u.c.CookieUtils:266
>>>>>>>>> [http-nio-0.0.0.0-5080-exec-4] - Unable to find Cookie with name=LoggedIn
>>>>>>>>> and request URI=signin?1-1.IBehaviorListener.1-signin
>>>>>>>>> DEBUG 09-22 10:34:34.822 o.a.wicket.Page:871
>>>>>>>>> [http-nio-0.0.0.0-5080-exec-4] - ending request for page [Page class =
>>>>>>>>> org.apache.openmeetings.web.pages.auth.SignInPage, id = 1, render count =
>>>>>>>>> 1], request
>>>>>>>>> org.apache.wicket.protocol.http.servlet.ServletWebRequest@16618f3
>>>>>>>>> DEBUG 09-22 10:34:34.822 o.a.wicket.Page:871
>>>>>>>>> [http-nio-0.0.0.0-5080-exec-4] - ending request for page [Page class =
>>>>>>>>> org.apache.openmeetings.web.pages.auth.SignInPage, id = 1, render count =
>>>>>>>>> 1], request
>>>>>>>>> org.apache.wicket.protocol.http.servlet.ServletWebRequest@16618f3
>>>>>>>>> DEBUG 09-22 10:34:34.823 o.a.wicket.Page:871
>>>>>>>>> [http-nio-0.0.0.0-5080-exec-4] - ending request for page [Page class =
>>>>>>>>> org.apache.openmeetings.web.pages.auth.SignInPage, id = 1, render count =
>>>>>>>>> 1], request
>>>>>>>>> org.apache.wicket.protocol.http.servlet.ServletWebRequest@16618f3
>>>>>>>>> DEBUG 09-22 10:34:34.828
>>>>>>>>> o.a.w.p.AsynchronousDataStore$PageSavingRunnable:354
>>>>>>>>> [Wicket-PageSavingThread] - Saving asynchronously: Entry
>>>>>>>>> [sessionId=907ABBB232B18743F2A67024DA18F185, pageId=1]...
>>>>>>>>> DEBUG 09-22 10:34:34.828 o.a.w.p.DiskDataStore:186
>>>>>>>>> [Wicket-PageSavingThread] - Storing data for page with id '1' in session
>>>>>>>>> with id '907ABBB232B18743F2A67024DA18F185'
>>>>>>>>> DEBUG 09-22 10:34:34.828 o.a.w.p.PageAccessSynchronizer:195
>>>>>>>>> [http-nio-0.0.0.0-5080-exec-4] - 'http-nio-0.0.0.0-5080-exec-4' released
>>>>>>>>> lock to page with id '1'
>>>>>>>>> DEBUG 09-22 10:34:34.828 o.a.w.p.PageAccessSynchronizer:346
>>>>>>>>> [http-nio-0.0.0.0-5080-exec-4] - 'http-nio-0.0.0.0-5080-exec-4' notifying
>>>>>>>>> blocked threads
>>>>>>>>> DEBUG 09-22 10:34:36.341 o.a.o.m.MailHandler:249
>>>>>>>>> [org.springframework.scheduling.quartz.SchedulerFactoryBean#0_Worker-1] -
>>>>>>>>> resetSendingStatus enter ...
>>>>>>>>>
>>>>>>>>>
>>>>>>>>>
>>>>>>>>> Thank you for your time.
>>>>>>>>>
>>>>>>>>> Greg.
>>>>>>>>>
>>>>>>>>> 2014-09-20 8:59 GMT+02:00 Maxim Solodovnik <so...@gmail.com>:
>>>>>>>>>
>>>>>>>>>> According to the logs and config SIMPLEBIND failed for the user
>>>>>>>>>> specified
>>>>>>>>>> please try SEARCHANDBIND
>>>>>>>>>>
>>>>>>>>>> On 19 September 2014 17:09, Grégory Mangeney <ma...@gmail.com>
>>>>>>>>>> wrote:
>>>>>>>>>>
>>>>>>>>>>> Hello.
>>>>>>>>>>> Thank you for your link.
>>>>>>>>>>> It appeare that I have a 525 error (user not found).
>>>>>>>>>>>
>>>>>>>>>>> I think the problem must be in my config file because I'm sure
>>>>>>>>>>> that my user is good because I use it for an other app witch use it to
>>>>>>>>>>> connect with AD.
>>>>>>>>>>>
>>>>>>>>>>> As you ask me i give you more line of my log file, after that I
>>>>>>>>>>> would like to show you my conf file...
>>>>>>>>>>> Maybe you will find a setting withch is not good!
>>>>>>>>>>>
>>>>>>>>>>>
>>>>>>>>>>> So here is my log file whene I try to connect :
>>>>>>>>>>> DEBUG 09-19 11:47:01.337 o.a.o.q.s.MeetingReminderJob:34
>>>>>>>>>>> [org.springframework.scheduling.quartz.SchedulerFactoryBean#0_Worker-2] -
>>>>>>>>>>> MeetingReminderJob.execute
>>>>>>>>>>> DEBUG 09-19 11:47:25.760 o.a.w.p.h.s.ServletWebRequest:189
>>>>>>>>>>> [http-nio-0.0.0.0-5080-exec-10] - Calculating context relative path from:
>>>>>>>>>>> context path '/openmeetings', filterPrefix '', uri '/openmeetings/signin'
>>>>>>>>>>> DEBUG 09-19 11:47:25.761 o.a.w.p.PageAccessSynchronizer:100
>>>>>>>>>>> [http-nio-0.0.0.0-5080-exec-10] - 'http-nio-0.0.0.0-5080-exec-10'
>>>>>>>>>>> attempting to acquire lock to page with id '1'
>>>>>>>>>>> DEBUG 09-19 11:47:25.761 o.a.w.p.PageAccessSynchronizer:125
>>>>>>>>>>> [http-nio-0.0.0.0-5080-exec-10] - http-nio-0.0.0.0-5080-exec-10 acquired
>>>>>>>>>>> lock to page 1
>>>>>>>>>>> DEBUG 09-19 11:47:25.762 o.a.o.d.d.s.SessiondataDao:68
>>>>>>>>>>> [http-nio-0.0.0.0-5080-exec-10] - startsession :: startsession
>>>>>>>>>>> DEBUG 09-19 11:47:25.763 o.a.o.u.c.ManageCryptStyle:32
>>>>>>>>>>> [http-nio-0.0.0.0-5080-exec-10] - getInstanceOfCrypt::
>>>>>>>>>>> configKeyCryptClassName:
>>>>>>>>>>> org.apache.openmeetings.util.crypt.MD5Implementation
>>>>>>>>>>> DEBUG 09-19 11:47:25.788 o.a.o.l.LdapLoginManagement:165
>>>>>>>>>>> [http-nio-0.0.0.0-5080-exec-10] - LdapLoginmanagement.doLdapLogin
>>>>>>>>>>> ERROR 09-19 11:47:25.924 o.a.o.l.LdapLoginManagement:351
>>>>>>>>>>> [http-nio-0.0.0.0-5080-exec-10] - Not authenticated.
>>>>>>>>>>> org.apache.directory.api.ldap.model.exception.LdapAuthenticationException:
>>>>>>>>>>> 80090308: LdapErr: DSID-0C090334, comment: AcceptSecurityContext error,
>>>>>>>>>>> data 525, vece\00
>>>>>>>>>>> at
>>>>>>>>>>> org.apache.directory.api.ldap.model.message.ResultCodeEnum.processResponse(ResultCodeEnum.java:2021)
>>>>>>>>>>> ~[api-all-jar-1.0.0-M23.jar:1.0.0-M23]
>>>>>>>>>>> at
>>>>>>>>>>> org.apache.directory.ldap.client.api.AbstractLdapConnection.bind(AbstractLdapConnection.java:129)
>>>>>>>>>>> ~[api-all-jar-1.0.0-M23.jar:1.0.0-M23]
>>>>>>>>>>> at
>>>>>>>>>>> org.apache.openmeetings.ldap.LdapLoginManagement.login(LdapLoginManagement.java:275)
>>>>>>>>>>> ~[openmeetings-core-3.0.3-RELEASE.jar:na]
>>>>>>>>>>> at
>>>>>>>>>>> org.apache.openmeetings.web.app.WebSession.signIn(WebSession.java:257)
>>>>>>>>>>> [openmeetings-web-3.0.3-RELEASE.jar:na]
>>>>>>>>>>> at
>>>>>>>>>>> org.apache.openmeetings.web.pages.auth.SignInDialog.onSubmit(SignInDialog.java:190)
>>>>>>>>>>> [openmeetings-web-3.0.3-RELEASE.jar:na]
>>>>>>>>>>> at
>>>>>>>>>>> com.googlecode.wicket.jquery.ui.widget.dialog.AbstractFormDialog$DialogFormSubmitter.onSubmit(AbstractFormDialog.java:279)
>>>>>>>>>>> [wicket-jquery-ui-jar-6.16.0.jar:na]
>>>>>>>>>>> at
>>>>>>>>>>> org.apache.wicket.markup.html.form.Form.delegateSubmit(Form.java:1266)
>>>>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>>>>> at
>>>>>>>>>>> org.apache.wicket.markup.html.form.Form.process(Form.java:938)
>>>>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>>>>> at
>>>>>>>>>>> org.apache.wicket.markup.html.form.StatelessForm.process(StatelessForm.java:96)
>>>>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>>>>> at
>>>>>>>>>>> org.apache.wicket.markup.html.form.Form.onFormSubmitted(Form.java:770)
>>>>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>>>>> at
>>>>>>>>>>> com.googlecode.wicket.jquery.ui.widget.dialog.AbstractFormDialog.internalOnClick(AbstractFormDialog.java:200)
>>>>>>>>>>> [wicket-jquery-ui-jar-6.16.0.jar:na]
>>>>>>>>>>> at
>>>>>>>>>>> com.googlecode.wicket.jquery.ui.widget.dialog.AbstractDialog$1.onClick(AbstractDialog.java:439)
>>>>>>>>>>> [wicket-jquery-ui-jar-6.16.0.jar:na]
>>>>>>>>>>> at
>>>>>>>>>>> com.googlecode.wicket.jquery.ui.widget.dialog.DialogBehavior.onAjax(DialogBehavior.java:175)
>>>>>>>>>>> [wicket-jquery-ui-jar-6.16.0.jar:na]
>>>>>>>>>>> at
>>>>>>>>>>> com.googlecode.wicket.jquery.core.ajax.JQueryAjaxBehavior.respond(JQueryAjaxBehavior.java:171)
>>>>>>>>>>> [wicket-jquery-ui-core-jar-6.16.0.jar:na]
>>>>>>>>>>> at
>>>>>>>>>>> org.apache.wicket.ajax.AbstractDefaultAjaxBehavior.onRequest(AbstractDefaultAjaxBehavior.java:633)
>>>>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>>>>> at sun.reflect.GeneratedMethodAccessor91.invoke(Unknown Source)
>>>>>>>>>>> ~[na:na]
>>>>>>>>>>> at
>>>>>>>>>>> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
>>>>>>>>>>> ~[na:1.7.0_65]
>>>>>>>>>>> at java.lang.reflect.Method.invoke(Method.java:606)
>>>>>>>>>>> ~[na:1.7.0_65]
>>>>>>>>>>> at
>>>>>>>>>>> org.apache.wicket.RequestListenerInterface.internalInvoke(RequestListenerInterface.java:258)
>>>>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>>>>> at
>>>>>>>>>>> org.apache.wicket.RequestListenerInterface.invoke(RequestListenerInterface.java:241)
>>>>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>>>>> at
>>>>>>>>>>> org.apache.wicket.core.request.handler.ListenerInterfaceRequestHandler.invokeListener(ListenerInterfaceRequestHandler.java:250)
>>>>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>>>>> at
>>>>>>>>>>> org.apache.wicket.core.request.handler.ListenerInterfaceRequestHandler.respond(ListenerInterfaceRequestHandler.java:236)
>>>>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>>>>> at
>>>>>>>>>>> org.apache.wicket.request.cycle.RequestCycle$HandlerExecutor.respond(RequestCycle.java:862)
>>>>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>>>>> at
>>>>>>>>>>> org.apache.wicket.request.RequestHandlerStack.execute(RequestHandlerStack.java:64)
>>>>>>>>>>> [wicket-request-jar-6.16.0.jar:6.16.0]
>>>>>>>>>>> at
>>>>>>>>>>> org.apache.wicket.request.cycle.RequestCycle.execute(RequestCycle.java:261)
>>>>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>>>>> at
>>>>>>>>>>> org.apache.wicket.request.cycle.RequestCycle.processRequest(RequestCycle.java:218)
>>>>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>>>>> at
>>>>>>>>>>> org.apache.wicket.request.cycle.RequestCycle.processRequestAndDetach(RequestCycle.java:289)
>>>>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>>>>> at
>>>>>>>>>>> org.apache.wicket.protocol.ws.AbstractUpgradeFilter.processRequestCycle(AbstractUpgradeFilter.java:59)
>>>>>>>>>>> [wicket-native-websocket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>>>>> at
>>>>>>>>>>> org.apache.wicket.protocol.http.WicketFilter.processRequest(WicketFilter.java:201)
>>>>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>>>>> at
>>>>>>>>>>> org.apache.wicket.protocol.http.WicketFilter.doFilter(WicketFilter.java:282)
>>>>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>>>>> at
>>>>>>>>>>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:241)
>>>>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>>>>> at
>>>>>>>>>>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:208)
>>>>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>>>>> at
>>>>>>>>>>> org.red5.logging.LoggerContextFilter.doFilter(LoggerContextFilter.java:77)
>>>>>>>>>>> [red5-server.jar:na]
>>>>>>>>>>> at
>>>>>>>>>>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:241)
>>>>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>>>>> at
>>>>>>>>>>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:208)
>>>>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>>>>> at
>>>>>>>>>>> org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:220)
>>>>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>>>>> at
>>>>>>>>>>> org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:122)
>>>>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>>>>> at
>>>>>>>>>>> org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:501)
>>>>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>>>>> at
>>>>>>>>>>> org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:171)
>>>>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>>>>> at
>>>>>>>>>>> org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:103)
>>>>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>>>>> at
>>>>>>>>>>> org.apache.catalina.valves.AccessLogValve.invoke(AccessLogValve.java:950)
>>>>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>>>>> at
>>>>>>>>>>> org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:116)
>>>>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>>>>> at
>>>>>>>>>>> org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:408)
>>>>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>>>>> at
>>>>>>>>>>> org.apache.coyote.http11.AbstractHttp11Processor.process(AbstractHttp11Processor.java:1070)
>>>>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>>>>> at
>>>>>>>>>>> org.apache.coyote.AbstractProtocol$AbstractConnectionHandler.process(AbstractProtocol.java:611)
>>>>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>>>>> at
>>>>>>>>>>> org.apache.tomcat.util.net.NioEndpoint$SocketProcessor.doRun(NioEndpoint.java:1736)
>>>>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>>>>> at
>>>>>>>>>>> org.apache.tomcat.util.net.NioEndpoint$SocketProcessor.run(NioEndpoint.java:1695)
>>>>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>>>>> at
>>>>>>>>>>> java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1145)
>>>>>>>>>>> [na:1.7.0_65]
>>>>>>>>>>> at
>>>>>>>>>>> java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:615)
>>>>>>>>>>> [na:1.7.0_65]
>>>>>>>>>>> at
>>>>>>>>>>> org.apache.tomcat.util.threads.TaskThread$WrappingRunnable.run(TaskThread.java:61)
>>>>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>>>>> at java.lang.Thread.run(Thread.java:745) [na:1.7.0_65]
>>>>>>>>>>> DEBUG 09-19 11:47:25.927 o.a.w.u.c.CookieUtils:266
>>>>>>>>>>> [http-nio-0.0.0.0-5080-exec-10] - Unable to find Cookie with name=LoggedIn
>>>>>>>>>>> and request URI=signin?1-1.IBehaviorListener.1-signin
>>>>>>>>>>> DEBUG 09-19 11:47:25.929 o.a.w.f.FeedbackMessages:69
>>>>>>>>>>> [http-nio-0.0.0.0-5080-exec-10] - Adding feedback message '[FeedbackMessage
>>>>>>>>>>> message = "Invalid password", reporter = signin, level = ERROR]'
>>>>>>>>>>> DEBUG 09-19 11:47:25.929 o.a.w.u.c.CookieUtils:266
>>>>>>>>>>> [http-nio-0.0.0.0-5080-exec-10] - Unable to find Cookie with name=LoggedIn
>>>>>>>>>>> and request URI=signin?1-1.IBehaviorListener.1-signin
>>>>>>>>>>> DEBUG 09-19 11:47:25.930 o.a.wicket.Page:871
>>>>>>>>>>> [http-nio-0.0.0.0-5080-exec-10] - ending request for page [Page class =
>>>>>>>>>>> org.apache.openmeetings.web.pages.auth.SignInPage, id = 1, render count =
>>>>>>>>>>> 1], request
>>>>>>>>>>> org.apache.wicket.protocol.http.servlet.ServletWebRequest@a6e74b
>>>>>>>>>>> DEBUG 09-19 11:47:25.930 o.a.wicket.Page:871
>>>>>>>>>>> [http-nio-0.0.0.0-5080-exec-10] - ending request for page [Page class =
>>>>>>>>>>> org.apache.openmeetings.web.pages.auth.SignInPage, id = 1, render count =
>>>>>>>>>>> 1], request
>>>>>>>>>>> org.apache.wicket.protocol.http.servlet.ServletWebRequest@a6e74b
>>>>>>>>>>> DEBUG 09-19 11:47:25.930 o.a.wicket.Page:871
>>>>>>>>>>> [http-nio-0.0.0.0-5080-exec-10] - ending request for page [Page class =
>>>>>>>>>>> org.apache.openmeetings.web.pages.auth.SignInPage, id = 1, render count =
>>>>>>>>>>> 1], request
>>>>>>>>>>> org.apache.wicket.protocol.http.servlet.ServletWebRequest@a6e74b
>>>>>>>>>>> DEBUG 09-19 11:47:25.988
>>>>>>>>>>> o.a.w.p.AsynchronousDataStore$PageSavingRunnable:354
>>>>>>>>>>> [Wicket-PageSavingThread] - Saving asynchronously: Entry
>>>>>>>>>>> [sessionId=2A10AA69C3E771FF51FABD4D26A20559, pageId=1]...
>>>>>>>>>>> DEBUG 09-19 11:47:25.988 o.a.w.p.DiskDataStore:186
>>>>>>>>>>> [Wicket-PageSavingThread] - Storing data for page with id '1' in session
>>>>>>>>>>> with id '2A10AA69C3E771FF51FABD4D26A20559'
>>>>>>>>>>> DEBUG 09-19 11:47:25.988 o.a.w.p.PageAccessSynchronizer:195
>>>>>>>>>>> [http-nio-0.0.0.0-5080-exec-10] - 'http-nio-0.0.0.0-5080-exec-10' released
>>>>>>>>>>> lock to page with id '1'
>>>>>>>>>>> DEBUG 09-19 11:47:25.988 o.a.w.p.PageAccessSynchronizer:346
>>>>>>>>>>> [http-nio-0.0.0.0-5080-exec-10] - 'http-nio-0.0.0.0-5080-exec-10' notifying
>>>>>>>>>>> blocked threads
>>>>>>>>>>>
>>>>>>>>>>>
>>>>>>>>>>>
>>>>>>>>>>>
>>>>>>>>>>>
>>>>>>>>>>>
>>>>>>>>>>>
>>>>>>>>>>>
>>>>>>>>>>>
>>>>>>>>>>> And here is my conf file :
>>>>>>>>>>>
>>>>>>>>>>> #
>>>>>>>>>>> # Licensed to the Apache Software Foundation (ASF) under one
>>>>>>>>>>> # or more contributor license agreements. See the NOTICE file
>>>>>>>>>>> # distributed with this work for additional information
>>>>>>>>>>> # regarding copyright ownership. The ASF licenses this file
>>>>>>>>>>> # to you under the Apache License, Version 2.0 (the
>>>>>>>>>>> # "License"); you may not use this file except in compliance
>>>>>>>>>>> # with the License. You may obtain a copy of the License at
>>>>>>>>>>> #
>>>>>>>>>>> # http://www.apache.org/licenses/LICENSE-2.0
>>>>>>>>>>> #
>>>>>>>>>>> # Unless required by applicable law or agreed to in writing,
>>>>>>>>>>> # software distributed under the License is distributed on an
>>>>>>>>>>> # "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
>>>>>>>>>>> # KIND, either express or implied. See the License for the
>>>>>>>>>>> # specific language governing permissions and limitations
>>>>>>>>>>> # under the License.
>>>>>>>>>>> #
>>>>>>>>>>> #ConfigurationFile for LDAP Auth
>>>>>>>>>>> #ConfigKey 'ldap_config_path' must be set in DataBase
>>>>>>>>>>> Configration of OM and point to this file
>>>>>>>>>>> #o.becherer,14.01.2009
>>>>>>>>>>> #LDAP URL
>>>>>>>>>>> # This is the URL used to access your LDAP server.
>>>>>>>>>>> # if you want to use "ldaps://" links, please be aware that you
>>>>>>>>>>> need to import your CA certificate
>>>>>>>>>>> # to a java keystore and add the -Djavax.net.ssl.keyStore,
>>>>>>>>>>> -Djavax.net.ssl.keyStorePassword,
>>>>>>>>>>> # -Djavax.net.ssl.trustStore and
>>>>>>>>>>> -Djavax.net.ssl.trustStorePassword parameters to your
>>>>>>>>>>> # JAVA_OPT environment
>>>>>>>>>>> ldap_conn_host=@IP_of_my_AD
>>>>>>>>>>> ldap_conn_port=389
>>>>>>>>>>> ldap_conn_secure=false
>>>>>>>>>>> # Login distinguished name (DN) for Authentication on LDAP
>>>>>>>>>>> Server - keep empty if not required
>>>>>>>>>>> # Use full qualified LDAP DN
>>>>>>>>>>>
>>>>>>>>>>> ldap_admin_dn=CN=adconnect,OU=Comptes,OU=SI,OU=Services,OU=COMPANY,DC=mycompany,DC=priv
>>>>>>>>>>> # Loginpass for Authentication on LDAP Server - keep empty if
>>>>>>>>>>> not required
>>>>>>>>>>> ldap_passwd=pass_for_user_adconnect
>>>>>>>>>>> # base to search for userdata(of user, that wants to login)
>>>>>>>>>>> ldap_search_base=DC=mycompany,DC=priv
>>>>>>>>>>> # Fieldnames (can differ between Ldap servers)
>>>>>>>>>>> ldap_search_query=(uid=%s)
>>>>>>>>>>> # the scope of the search might be: OBJECT, ONELEVEL, SUBTREE
>>>>>>>>>>> ldap_search_scope=ONELEVEL
>>>>>>>>>>> # Ldap auth type(NONE, SEARCHANDBIND, SIMPLEBIND)
>>>>>>>>>>> # When using SIMPLEBIND a simple bind is performed on the LDAP
>>>>>>>>>>> server to check user authentication
>>>>>>>>>>> # When using NONE, the Ldap server is not used for
>>>>>>>>>>> authentication
>>>>>>>>>>> ldap_auth_type=SIMPLEBIND
>>>>>>>>>>> # userDN format, will be used to bind if
>>>>>>>>>>> ldap_auth_type=SIMPLEBIND
>>>>>>>>>>> # might be used to get provisionningDn in case
>>>>>>>>>>> ldap_auth_type=NONE
>>>>>>>>>>> ldap_userdn_format=uid=%s,OU=COMPANY,DC=mycompany,DC=priv
>>>>>>>>>>> # Ldap provisioning type(NONE, AUTOCREATE, AUTOUPDATE)
>>>>>>>>>>> ldap_provisionning=AUTOCREATE
>>>>>>>>>>> # Set this to 'true' if you want to use admin_dn to get user
>>>>>>>>>>> attributes
>>>>>>>>>>> # If any other value is set, user_dn will be used
>>>>>>>>>>> ldap_use_admin_to_get_attrs=true
>>>>>>>>>>> # Ldap-password synchronization to OM DB
>>>>>>>>>>> # Set this to 'true' if you want OM to synchronize the user
>>>>>>>>>>> Ldap-password to OM's internal DB
>>>>>>>>>>> # If you want to disable the feature, set this to any other
>>>>>>>>>>> string.
>>>>>>>>>>> # Defautl value is 'true'
>>>>>>>>>>> ldap_sync_password_to_om=true
>>>>>>>>>>> # Ldap user attributes mapping
>>>>>>>>>>> # Set the following internal OM user attributes to their
>>>>>>>>>>> corresponding Ldap-attribute
>>>>>>>>>>> ldap_user_attr_lastname=sn
>>>>>>>>>>> ldap_user_attr_firstname=givenName
>>>>>>>>>>> ldap_user_attr_mail=mail
>>>>>>>>>>> ldap_user_attr_street=streetAddress
>>>>>>>>>>> ldap_user_attr_additionalname=description
>>>>>>>>>>> ldap_user_attr_fax=facsimileTelephoneNumber
>>>>>>>>>>> ldap_user_attr_zip=postalCode
>>>>>>>>>>> ldap_user_attr_country=co
>>>>>>>>>>> ldap_user_attr_town=l
>>>>>>>>>>> ldap_user_attr_phone=telephoneNumber
>>>>>>>>>>> # optional, only absolute URLs make sense
>>>>>>>>>>> #ldap_user_picture_uri=picture_uri
>>>>>>>>>>> # optional
>>>>>>>>>>> # the timezone has to match any timezone available in Java,
>>>>>>>>>>> otherwise the timezone defined in the value of
>>>>>>>>>>> # the conf_key "default.timezone" in OpenMeetings
>>>>>>>>>>> "configurations" table
>>>>>>>>>>> #ldap_user_timezone=timezone
>>>>>>>>>>> # Ldap ignore upper/lower case, convert all input to lower case
>>>>>>>>>>> ldap_use_lower_case=false
>>>>>>>>>>>
>>>>>>>>>>>
>>>>>>>>>>>
>>>>>>>>>>> Thanks a lot for your help.
>>>>>>>>>>>
>>>>>>>>>>> Greg.
>>>>>>>>>>>
>>>>>>>>>>>
>>>>>>>>>>>
>>>>>>>>>>>
>>>>>>>>>>> 2014-09-18 17:52 GMT+02:00 Maxim Solodovnik <
>>>>>>>>>>> solomax666@gmail.com>:
>>>>>>>>>>>
>>>>>>>>>>>> please check this URL:
>>>>>>>>>>>> http://kb.juniper.net/InfoCenter/index?page=content&id=KB17098
>>>>>>>>>>>> According to it you have "User not found"
>>>>>>>>>>>>
>>>>>>>>>>>> could you provide more ldap related logs?
>>>>>>>>>>>> it might be Admin not found or user entered in login form not
>>>>>>>>>>>> found depending on your settings
>>>>>>>>>>>>
>>>>>>>>>>>> On 18 September 2014 21:43, Grégory Mangeney <
>>>>>>>>>>>> mangeney@gmail.com> wrote:
>>>>>>>>>>>>
>>>>>>>>>>>>> Hello, It's me again...
>>>>>>>>>>>>> I'm back.
>>>>>>>>>>>>> Now I have a new problem to connect to my AD...
>>>>>>>>>>>>> In log file it is write : *ERROR ......... Not authenticated*
>>>>>>>>>>>>> witch is a quite better message than before but after that it
>>>>>>>>>>>>> is write : *LdapErr: DSID-0C090334, comment:
>>>>>>>>>>>>> AcceptSecurityContext error, data 525, vece\00 at........*
>>>>>>>>>>>>>
>>>>>>>>>>>>> I try to understand my problem but "AcceptSecurityContext
>>>>>>>>>>>>> error" seems to speack about a security problem.
>>>>>>>>>>>>> I have set my ldap_conn_secure=false in om_ldap.conf.
>>>>>>>>>>>>> I don't understand what could be my problem.
>>>>>>>>>>>>>
>>>>>>>>>>>>> thanks a lot for your ideas.
>>>>>>>>>>>>>
>>>>>>>>>>>>> Greg.
>>>>>>>>>>>>> 2014-09-18 15:37 GMT+02:00 Grégory Mangeney <
>>>>>>>>>>>>> mangeney@gmail.com>:
>>>>>>>>>>>>>
>>>>>>>>>>>>>> Ok, I finally understand that I have to put the filename and
>>>>>>>>>>>>>> only the filename without
>>>>>>>>>>>>>> */usr/lib/red5/webapps/openmeetings/conf/*
>>>>>>>>>>>>>>
>>>>>>>>>>>>>> Now I have a new message whitch said me invalid password...
>>>>>>>>>>>>>> It's quite better...
>>>>>>>>>>>>>> Thank you...
>>>>>>>>>>>>>> I could continue to try to set it now.
>>>>>>>>>>>>>> bye
>>>>>>>>>>>>>>
>>>>>>>>>>>>>> Greg.
>>>>>>>>>>>>>>
>>>>>>>>>>>>>>
>>>>>>>>>>>>>>
>>>>>>>>>>>>>> 2014-09-18 15:06 GMT+02:00 Maxim Solodovnik <
>>>>>>>>>>>>>> solomax666@gmail.com>:
>>>>>>>>>>>>>>
>>>>>>>>>>>>>>> you need to write file name relative to
>>>>>>>>>>>>>>> webapps/openmeetings/conf folder
>>>>>>>>>>>>>>> in your case *om_ldap.cfg *should be specified
>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>> On 18 September 2014 20:04, Grégory Mangeney <
>>>>>>>>>>>>>>> mangeney@gmail.com> wrote:
>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>> Thank you very much but I don't understand very well.
>>>>>>>>>>>>>>>> I think I put the right information...
>>>>>>>>>>>>>>>> Do you want to say that I have to write :
>>>>>>>>>>>>>>>> */usr/lib/red5/webapps/openmeetings/conf/* without the
>>>>>>>>>>>>>>>> filename *om_ldap.cfg* at the end?
>>>>>>>>>>>>>>>> Thanks for your help
>>>>>>>>>>>>>>>> Greg
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>> 2014-09-18 14:52 GMT+02:00 Maxim Solodovnik <
>>>>>>>>>>>>>>>> solomax666@gmail.com>:
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>> AFAIK the path should be relative to
>>>>>>>>>>>>>>>>> /usr/lib/red5/webapps/openmeetings/conf
>>>>>>>>>>>>>>>>> Please change this path
>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>> Additionally you can file JIRA issue to add check to the
>>>>>>>>>>>>>>>>> Admin screen (so path will be validated on enter)
>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>> On 18 September 2014 19:44, Grégory Mangeney <
>>>>>>>>>>>>>>>>> mangeney@gmail.com> wrote:
>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>> Hello,
>>>>>>>>>>>>>>>>>> I have the same problem: I could not connect with AD.
>>>>>>>>>>>>>>>>>> I have the domain at the login screen,
>>>>>>>>>>>>>>>>>> I am using the 3.0.3.
>>>>>>>>>>>>>>>>>> I found this line in my log file :* ERROR 09-18
>>>>>>>>>>>>>>>>>> 14:28:33.994 o.a.o.l.LdapLoginManagement:147 [http-nio-0.0.0.0-5080-exec-4]
>>>>>>>>>>>>>>>>>> - Error on LdapLogin : Configurationdata couldnt be retrieved!*
>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>> This seem strange because in my LDAP config (in
>>>>>>>>>>>>>>>>>> openmeetings Administration/LDAP menu), I put the correct path in the
>>>>>>>>>>>>>>>>>> "Config file name" : /usr/lib/red5/webapps/openmeetings/conf/om_ldap.cfg
>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>> Why is this error appeared : *Configurationdata couldnt
>>>>>>>>>>>>>>>>>> be retrieved! *???
>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>> Thanks a lot
>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>> Greg
>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>> 2014-09-17 12:52 GMT+02:00 Maxim Solodovnik <
>>>>>>>>>>>>>>>>>> solomax666@gmail.com>:
>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>> great :)
>>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>> On 17 September 2014 17:46, Teddy Jayasaputra <
>>>>>>>>>>>>>>>>>>> teddy.jayasaputra@ocbcnisp.com> wrote:
>>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>>> Dear Maxim,
>>>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>>> After close look to console log.
>>>>>>>>>>>>>>>>>>>> We found this error :
>>>>>>>>>>>>>>>>>>>> ERROR 09-17 17:28:33.278 LdapLoginManagement.java
>>>>>>>>>>>>>>>>>>>> 135070 285 org.apache.openmeetings.ldap.LdapLoginManagement
>>>>>>>>>>>>>>>>>>>> [http-nio-0.0.0.0-5080-exec-6] - User not found in OM DB and
>>>>>>>>>>>>>>>>>>>> Provisionning.AUTOCREATE was not set
>>>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>>> After we change ldapconfiguration file from
>>>>>>>>>>>>>>>>>>>> ldap_provisionning=NONE to AUTOCREATE we can login using AD.
>>>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>>> thanks.
>>>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>>> Best Regards,
>>>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>>> -Teddy Jayasaputra-
>>>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>>> On 9/17/2014 4:25 PM, Maxim Solodovnik wrote:
>>>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>>> do you have your AD domain on the login screen?
>>>>>>>>>>>>>>>>>>>> are there errors in the log?
>>>>>>>>>>>>>>>>>>>> what OM version are you using?
>>>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>>> On 17 September 2014 16:02, ARI HENDIAWAN <
>>>>>>>>>>>>>>>>>>>> ari.hendiawan@ocbcnisp.com> wrote:
>>>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>>>> Dear all,
>>>>>>>>>>>>>>>>>>>>> please we need extra information how to integrate
>>>>>>>>>>>>>>>>>>>>> openmeetings 3.0.3 with AD?
>>>>>>>>>>>>>>>>>>>>> we already setting on ldap.conf and still problem.. if
>>>>>>>>>>>>>>>>>>>>> we saw on AD , user that want sign-in openmeetings success, but on login
>>>>>>>>>>>>>>>>>>>>> menu openmeetings shown error "invalid password"
>>>>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>>>> Tks
>>>>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>>>> --
>>>>>>>>>>>>>>>>>>>>> Disclaimer :
>>>>>>>>>>>>>>>>>>>>> Confidential information may be contained in this
>>>>>>>>>>>>>>>>>>>>> message. If you are not the intended recipient, you are strictly prohibited
>>>>>>>>>>>>>>>>>>>>> and may be unlawful to use, copy, store, distribute, disclose or
>>>>>>>>>>>>>>>>>>>>> communicate any part of it to others and you are obliged to return it
>>>>>>>>>>>>>>>>>>>>> immediately to sender or notify us and delete the e-mail and any
>>>>>>>>>>>>>>>>>>>>> attachments from your system. Opinions, conclusions and other information
>>>>>>>>>>>>>>>>>>>>> in this e-mail that do not relate to the official business of any PT Bank
>>>>>>>>>>>>>>>>>>>>> OCBC NISP Tbk shall be understood as neither given nor endorsed by it. No
>>>>>>>>>>>>>>>>>>>>> assumption of responsibility or liability whatsoever is undertaken by PT
>>>>>>>>>>>>>>>>>>>>> Bank OCBC NISP Tbk in respect of prohibited and unauthorised use by any
>>>>>>>>>>>>>>>>>>>>> other person.
>>>>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>>> --
>>>>>>>>>>>>>>>>>>>> WBR
>>>>>>>>>>>>>>>>>>>> Maxim aka solomax
>>>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>>> --
>>>>>>>>>>>>>>>>>>>> Disclaimer :
>>>>>>>>>>>>>>>>>>>> Confidential information may be contained in this
>>>>>>>>>>>>>>>>>>>> message. If you are not the intended recipient, you are strictly prohibited
>>>>>>>>>>>>>>>>>>>> and may be unlawful to use, copy, store, distribute, disclose or
>>>>>>>>>>>>>>>>>>>> communicate any part of it to others and you are obliged to return it
>>>>>>>>>>>>>>>>>>>> immediately to sender or notify us and delete the e-mail and any
>>>>>>>>>>>>>>>>>>>> attachments from your system. Opinions, conclusions and other information
>>>>>>>>>>>>>>>>>>>> in this e-mail that do not relate to the official business of any PT Bank
>>>>>>>>>>>>>>>>>>>> OCBC NISP Tbk shall be understood as neither given nor endorsed by it. No
>>>>>>>>>>>>>>>>>>>> assumption of responsibility or liability whatsoever is undertaken by PT
>>>>>>>>>>>>>>>>>>>> Bank OCBC NISP Tbk in respect of prohibited and unauthorised use by any
>>>>>>>>>>>>>>>>>>>> other person.
>>>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>> --
>>>>>>>>>>>>>>>>>>> WBR
>>>>>>>>>>>>>>>>>>> Maxim aka solomax
>>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>> --
>>>>>>>>>>>>>>>>> WBR
>>>>>>>>>>>>>>>>> Maxim aka solomax
>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>> --
>>>>>>>>>>>>>>> WBR
>>>>>>>>>>>>>>> Maxim aka solomax
>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>
>>>>>>>>>>>>>>
>>>>>>>>>>>>>
>>>>>>>>>>>>
>>>>>>>>>>>>
>>>>>>>>>>>> --
>>>>>>>>>>>> WBR
>>>>>>>>>>>> Maxim aka solomax
>>>>>>>>>>>>
>>>>>>>>>>>
>>>>>>>>>>>
>>>>>>>>>>
>>>>>>>>>>
>>>>>>>>>> --
>>>>>>>>>> WBR
>>>>>>>>>> Maxim aka solomax
>>>>>>>>>>
>>>>>>>>>
>>>>>>>>>
>>>>>>>>
>>>>>>>>
>>>>>>>> --
>>>>>>>> WBR
>>>>>>>> Maxim aka solomax
>>>>>>>>
>>>>>>>
>>>>>>>
>>>>>
>>>>
>>>
>>>
>>> --
>>> WBR
>>> Maxim aka solomax
>>>
>>
>>
>
Re: need info about problem when integration AD
Posted by Grégory Mangeney <ma...@gmail.com>.
Ok, Maxim
I found in logs the 52e between "data" and "vece\00"
According to your ling given previousely, it seems to be an "invalid
credentials" (http://kb.juniper.net/InfoCenter/index?page=content&id=KB17098
)
Is it a problem with my user or do you see an other issue?
I could mabe test with a new account, an easyer account that I could creat
for testing.
Thanks.
Greg.
2014-09-23 15:47 GMT+02:00 Grégory Mangeney <ma...@gmail.com>:
> Hello Maxim.
> I had try with the 3.0.4 Version according to your link.
>
> Now I have an other error in log file.
> It said NONE USER FOUND IN LDAP...
> I hope so the connection with my AD is good and it still a config problem
> but maybe you could help me with my logs and my conf file...
>
> My logs:
>
> ERROR 09-23 15:34:55.797 o.a.o.l.LdapLoginManagement:266
> [http-nio-0.0.0.0-5080-exec-8] - NONE users found in LDAP
> DEBUG 09-23 15:34:55.799 o.a.w.u.c.CookieUtils:273
> [http-nio-0.0.0.0-5080-exec-8] - Unable to find Cookie with name=LoggedIn
> and request URI=signin?0-5.IBehaviorListener.0-signin-signin-submit
> DEBUG 09-23 15:34:55.802 o.a.w.f.FeedbackMessages:69
> [http-nio-0.0.0.0-5080-exec-8] - Adding feedback message '[FeedbackMessage
> message = "Invalid password", reporter = signin, level = ERROR]'
> DEBUG 09-23 15:34:55.808 o.a.wicket.Page:871
> [http-nio-0.0.0.0-5080-exec-8] - ending request for page [Page class =
> org.apache.openmeetings.web.pages.auth.SignInPage, id = 0, render count =
> 5], request org.apache.wicket.protocol.http.servlet.ServletWebRequest@69fbe
> DEBUG 09-23 15:34:55.809 o.a.wicket.Page:871
> [http-nio-0.0.0.0-5080-exec-8] - ending request for page [Page class =
> org.apache.openmeetings.web.pages.auth.SignInPage, id = 0, render count =
> 5], request org.apache.wicket.protocol.http.servlet.ServletWebRequest@69fbe
> DEBUG 09-23 15:34:55.809 o.a.wicket.Page:871
> [http-nio-0.0.0.0-5080-exec-8] - ending request for page [Page class =
> org.apache.openmeetings.web.pages.auth.SignInPage, id = 0, render count =
> 5], request org.apache.wicket.protocol.http.servlet.ServletWebRequest@69fbe
> DEBUG 09-23 15:34:55.811
> o.a.w.p.AsynchronousDataStore$PageSavingRunnable:354
> [Wicket-PageSavingThread] - Saving asynchronously: Entry
> [sessionId=E576CCA08DEE992DF7CCBD22F2FD64F8, pageId=0]...
> DEBUG 09-23 15:34:55.811 o.a.w.p.DiskDataStore:186
> [Wicket-PageSavingThread] - Storing data for page with id '0' in session
> with id 'E576CCA08DEE992DF7CCBD22F2FD64F8'
> DEBUG 09-23 15:34:55.812 o.a.w.p.PageAccessSynchronizer:195
> [http-nio-0.0.0.0-5080-exec-8] - 'http-nio-0.0.0.0-5080-exec-8' released
> lock to page with id '0'
> DEBUG 09-23 15:34:55.812 o.a.w.p.PageAccessSynchronizer:346
> [http-nio-0.0.0.0-5080-exec-8] - 'http-nio-0.0.0.0-5080-exec-8' notifying
> blocked threads
> DEBUG 09-23 15:35:30.522 o.a.o.m.MailHandler:258
> [org.springframework.scheduling.quartz.SchedulerFactoryBean#0_Worker-2] -
> sendMails enter ...
> DEBUG 09-23 15:35:30.523 o.a.o.m.MailHandler:260
> [org.springframework.scheduling.quartz.SchedulerFactoryBean#0_Worker-2] -
> Number of emails in init queue 0
> DEBUG 09-23 15:35:30.524 o.a.o.m.MailHandler:265
> [org.springframework.scheduling.quartz.SchedulerFactoryBean#0_Worker-2] -
> ... sendMails done.
> DEBUG 09-23 15:35:35.503 o.a.o.d.d.s.SessiondataDao:404
> [org.springframework.scheduling.quartz.SchedulerFactoryBean#0_Worker-3] -
> ****** clearSessionTable:
> DEBUG 09-23 15:35:35.505 o.a.o.d.d.s.SessiondataDao:408
> [org.springframework.scheduling.quartz.SchedulerFactoryBean#0_Worker-3] -
> clearSessionTable: 0
> DEBUG 09-23 15:35:35.512 o.a.o.q.s.MeetingReminderJob:34
> [org.springframework.scheduling.quartz.SchedulerFactoryBean#0_Worker-4] -
> MeetingReminderJob.execute
>
>
>
> My conf :
>
> #
> # Licensed to the Apache Software Foundation (ASF) under one
> # or more contributor license agreements. See the NOTICE file
> # distributed with this work for additional information
> # regarding copyright ownership. The ASF licenses this file
> # to you under the Apache License, Version 2.0 (the
> # "License"); you may not use this file except in compliance
> # with the License. You may obtain a copy of the License at
> #
> # http://www.apache.org/licenses/LICENSE-2.0
> #
> # Unless required by applicable law or agreed to in writing,
> # software distributed under the License is distributed on an
> # "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
> # KIND, either express or implied. See the License for the
> # specific language governing permissions and limitations
> # under the License.
> #
> #ConfigurationFile for LDAP Auth
> #ConfigKey 'ldap_config_path' must be set in DataBase Configration of OM
> and point to this file
> #o.becherer,14.01.2009
>
> #LDAP URL
> # This is the URL used to access your LDAP server.
> # if you want to use "ldaps://" links, please be aware that you need to
> import your CA certificate
> # to a java keystore and add the -Djavax.net.ssl.keyStore,
> -Djavax.net.ssl.keyStorePassword,
> # -Djavax.net.ssl.trustStore and -Djavax.net.ssl.trustStorePassword
> parameters to your
> # JAVA_OPT environment
> ldap_conn_host=@IP_of_my_AD
> ldap_conn_port=389
> ldap_conn_secure=false
>
> # Login distinguished name (DN) for Authentication on LDAP Server - keep
> empty if not required
> # Use full qualified LDAP DN
> ldap_admin_dn=CN=adconnect,OU=Comptes
> Cles,OU=SI,OU=Services,OU=COMPANY,DC=mycompany,DC=priv
>
> # Loginpass for Authentication on LDAP Server - keep empty if not required
> ldap_passwd=pass_for_user_adconnect
>
> # base to search for userdata(of user, that wants to login)
> ldap_search_base=OU=COMPANY,DC=mycompany,DC=priv
>
> # Fieldnames (can differ between Ldap servers)
> ldap_search_query=(uid=%s)
>
> # the scope of the search might be: OBJECT, ONELEVEL, SUBTREE
> ldap_search_scope=SUBTREE
>
> # Ldap auth type(NONE, SEARCHANDBIND, SIMPLEBIND)
> # When using SIMPLEBIND a simple bind is performed on the LDAP server to
> check user authentication
> # When using NONE, the Ldap server is not used for authentication
> ldap_auth_type=SEARCHANDBIND
>
> # userDN format, will be used to bind if ldap_auth_type=SIMPLEBIND
> # might be used to get provisionningDn in case ldap_auth_type=NONE
> ldap_userdn_format=uid=%s,OU=COMPANY,DC=mycompany,DC=priv
>
> # Ldap provisioning type(NONE, AUTOCREATE, AUTOUPDATE)
> ldap_provisionning=AUTOCREATE
>
> # Set this to 'true' if you want to use admin_dn to get user attributes
> # If any other value is set, user_dn will be used
> ldap_use_admin_to_get_attrs=true
>
> # Ldap-password synchronization to OM DB
> # Set this to 'true' if you want OM to synchronize the user Ldap-password
> to OM's internal DB
> # If you want to disable the feature, set this to any other string.
> # Defautl value is 'true'
> ldap_sync_password_to_om=true
>
> # Ldap user attributes mapping
> # Set the following internal OM user attributes to their corresponding
> Ldap-attribute
> ldap_user_attr_lastname=sn
> ldap_user_attr_firstname=givenName
> ldap_user_attr_mail=mail
> ldap_user_attr_street=streetAddress
> ldap_user_attr_additionalname=description
> ldap_user_attr_fax=facsimileTelephoneNumber
> ldap_user_attr_zip=postalCode
> ldap_user_attr_country=co
> ldap_user_attr_town=l
> ldap_user_attr_phone=telephoneNumber
>
> # optional, only absolute URLs make sense
> #ldap_user_picture_uri=picture_uri
>
> # optional
> # the timezone has to match any timezone available in Java, otherwise the
> timezone defined in the value of
> # the conf_key "default.timezone" in OpenMeetings "configurations" table
> #ldap_user_timezone=timezone
>
> # Ldap ignore upper/lower case, convert all input to lower case
> ldap_use_lower_case=false
>
>
> Do you see how to fix my problem with this new branch of openmeetings
> 3.0.4?
>
> Thanks a lot.
>
> Greg.
>
>
>
>
> 2014-09-22 17:50 GMT+02:00 Maxim Solodovnik <so...@gmail.com>:
>
>> Please get build #67 here:
>> https://builds.apache.org/view/M-R/view/OpenMeetings/job/Openmeetings%203.0.x/
>> I have no LDAP infrastructure to test :( I 100% rely on community in this
>> So thanks for the testing :)
>>
>> On 23 September 2014 01:17, Grégory Mangeney <ma...@gmail.com> wrote:
>>
>>> Windows Server 2003 R2
>>>
>>> 2014-09-22 17:13 GMT+02:00 Grégory Mangeney <ma...@gmail.com>:
>>>
>>>> Ok,thank you for that.
>>>> For information I am using a Microsoft Active Directory in object
>>>> version 31
>>>>
>>>> I get this information by tapping dsquery *
>>>> cn=schema,cn=configuration,dc=mycompany,dc=priv -scope base -attr
>>>> objectVersion
>>>>
>>>> Good evening.
>>>>
>>>> Best regards.
>>>>
>>>> Greg.
>>>>
>>>> 2014-09-22 16:40 GMT+02:00 Maxim Solodovnik <so...@gmail.com>:
>>>>
>>>>> You have these Paramaribo in your configuration:
>>>>> ldap_search_base=DC=mycompany,DC=priv
>>>>> # Fieldnames (can differ between Ldap servers)
>>>>> ldap_search_query=(uid=%s)
>>>>>
>>>>> I guess nothing is found. Not sure I never saw error like yours.
>>>>>
>>>>> Will create 3.0.4 nightly fly you later today (with updated ldap
>>>>> library) if error will be the same I'll ask ldap library developers for the
>>>>> help
>>>>> On Sep 22, 2014 9:05 PM, "Grégory Mangeney" <ma...@gmail.com>
>>>>> wrote:
>>>>>
>>>>>> a bad search query?
>>>>>>
>>>>>> In this case, the loging error message shouldn't be somthing like :
>>>>>> "Login/password do not exist" ?
>>>>>>
>>>>>> How could I check this point...
>>>>>> I do not modified the source code!
>>>>>>
>>>>>> 2014-09-22 11:25 GMT+02:00 Maxim Solodovnik <so...@gmail.com>:
>>>>>>
>>>>>>> it seems like nothing was found
>>>>>>> Maybe bad search query?
>>>>>>>
>>>>>>> On 22 September 2014 15:55, Grégory Mangeney <ma...@gmail.com>
>>>>>>> wrote:
>>>>>>>
>>>>>>>> Hello Maxim.
>>>>>>>> Thanks a lot for your answer.
>>>>>>>> You're helpfull...
>>>>>>>>
>>>>>>>> I had ever try with SEARCHANDBIND but it still not working...
>>>>>>>> So I set it again to give you my logs...
>>>>>>>> The error is quite different but I could not understand what is the
>>>>>>>> problem...
>>>>>>>>
>>>>>>>> In the login screen I have the following message in red : "Unknown
>>>>>>>> error. Please report this to the administrator."
>>>>>>>>
>>>>>>>>
>>>>>>>>
>>>>>>>>
>>>>>>>> Here is my logs :
>>>>>>>>
>>>>>>>> ERROR 09-22 10:34:34.814 o.a.o.l.LdapLoginManagement:356
>>>>>>>> [http-nio-0.0.0.0-5080-exec-4] - Unexpected exception.
>>>>>>>> org.apache.directory.api.ldap.model.cursor.CursorLdapReferralException:
>>>>>>>> null
>>>>>>>> at
>>>>>>>> org.apache.directory.ldap.client.api.EntryCursorImpl.get(EntryCursorImpl.java:164)
>>>>>>>> ~[api-all-jar-1.0.0-M23.jar:1.0.0-M23]
>>>>>>>> at
>>>>>>>> org.apache.directory.ldap.client.api.EntryCursorImpl.get(EntryCursorImpl.java:50)
>>>>>>>> ~[api-all-jar-1.0.0-M23.jar:1.0.0-M23]
>>>>>>>> at
>>>>>>>> org.apache.openmeetings.ldap.LdapLoginManagement.login(LdapLoginManagement.java:258)
>>>>>>>> ~[openmeetings-core-3.0.3-RELEASE.jar:na]
>>>>>>>> at
>>>>>>>> org.apache.openmeetings.web.app.WebSession.signIn(WebSession.java:257)
>>>>>>>> [openmeetings-web-3.0.3-RELEASE.jar:na]
>>>>>>>> at
>>>>>>>> org.apache.openmeetings.web.pages.auth.SignInDialog.onSubmit(SignInDialog.java:190)
>>>>>>>> [openmeetings-web-3.0.3-RELEASE.jar:na]
>>>>>>>> at
>>>>>>>> com.googlecode.wicket.jquery.ui.widget.dialog.AbstractFormDialog$DialogFormSubmitter.onSubmit(AbstractFormDialog.java:279)
>>>>>>>> [wicket-jquery-ui-jar-6.16.0.jar:na]
>>>>>>>> at
>>>>>>>> org.apache.wicket.markup.html.form.Form.delegateSubmit(Form.java:1266)
>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>> at
>>>>>>>> org.apache.wicket.markup.html.form.Form.process(Form.java:938)
>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>> at
>>>>>>>> org.apache.wicket.markup.html.form.StatelessForm.process(StatelessForm.java:96)
>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>> at
>>>>>>>> org.apache.wicket.markup.html.form.Form.onFormSubmitted(Form.java:770)
>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>> at
>>>>>>>> com.googlecode.wicket.jquery.ui.widget.dialog.AbstractFormDialog.internalOnClick(AbstractFormDialog.java:200)
>>>>>>>> [wicket-jquery-ui-jar-6.16.0.jar:na]
>>>>>>>> at
>>>>>>>> com.googlecode.wicket.jquery.ui.widget.dialog.AbstractDialog$1.onClick(AbstractDialog.java:439)
>>>>>>>> [wicket-jquery-ui-jar-6.16.0.jar:na]
>>>>>>>> at
>>>>>>>> com.googlecode.wicket.jquery.ui.widget.dialog.DialogBehavior.onAjax(DialogBehavior.java:175)
>>>>>>>> [wicket-jquery-ui-jar-6.16.0.jar:na]
>>>>>>>> at
>>>>>>>> com.googlecode.wicket.jquery.core.ajax.JQueryAjaxBehavior.respond(JQueryAjaxBehavior.java:171)
>>>>>>>> [wicket-jquery-ui-core-jar-6.16.0.jar:na]
>>>>>>>> at
>>>>>>>> org.apache.wicket.ajax.AbstractDefaultAjaxBehavior.onRequest(AbstractDefaultAjaxBehavior.java:633)
>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>> at sun.reflect.GeneratedMethodAccessor91.invoke(Unknown Source)
>>>>>>>> ~[na:na]
>>>>>>>> at
>>>>>>>> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
>>>>>>>> ~[na:1.7.0_65]
>>>>>>>> at java.lang.reflect.Method.invoke(Method.java:606)
>>>>>>>> ~[na:1.7.0_65]
>>>>>>>> at
>>>>>>>> org.apache.wicket.RequestListenerInterface.internalInvoke(RequestListenerInterface.java:258)
>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>> at
>>>>>>>> org.apache.wicket.RequestListenerInterface.invoke(RequestListenerInterface.java:241)
>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>> at
>>>>>>>> org.apache.wicket.core.request.handler.ListenerInterfaceRequestHandler.invokeListener(ListenerInterfaceRequestHandler.java:250)
>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>> at
>>>>>>>> org.apache.wicket.core.request.handler.ListenerInterfaceRequestHandler.respond(ListenerInterfaceRequestHandler.java:236)
>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>> at
>>>>>>>> org.apache.wicket.request.cycle.RequestCycle$HandlerExecutor.respond(RequestCycle.java:862)
>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>> at
>>>>>>>> org.apache.wicket.request.RequestHandlerStack.execute(RequestHandlerStack.java:64)
>>>>>>>> [wicket-request-jar-6.16.0.jar:6.16.0]
>>>>>>>> at
>>>>>>>> org.apache.wicket.request.cycle.RequestCycle.execute(RequestCycle.java:261)
>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>> at
>>>>>>>> org.apache.wicket.request.cycle.RequestCycle.processRequest(RequestCycle.java:218)
>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>> at
>>>>>>>> org.apache.wicket.request.cycle.RequestCycle.processRequestAndDetach(RequestCycle.java:289)
>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>> at
>>>>>>>> org.apache.wicket.protocol.ws.AbstractUpgradeFilter.processRequestCycle(AbstractUpgradeFilter.java:59)
>>>>>>>> [wicket-native-websocket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>> at
>>>>>>>> org.apache.wicket.protocol.http.WicketFilter.processRequest(WicketFilter.java:201)
>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>> at
>>>>>>>> org.apache.wicket.protocol.http.WicketFilter.doFilter(WicketFilter.java:282)
>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>> at
>>>>>>>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:241)
>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>> at
>>>>>>>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:208)
>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>> at
>>>>>>>> org.red5.logging.LoggerContextFilter.doFilter(LoggerContextFilter.java:77)
>>>>>>>> [red5-server.jar:na]
>>>>>>>> at
>>>>>>>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:241)
>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>> at
>>>>>>>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:208)
>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>> at
>>>>>>>> org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:220)
>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>> at
>>>>>>>> org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:122)
>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>> at
>>>>>>>> org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:501)
>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>> at
>>>>>>>> org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:171)
>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>> at
>>>>>>>> org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:103)
>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>> at
>>>>>>>> org.apache.catalina.valves.AccessLogValve.invoke(AccessLogValve.java:950)
>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>> at
>>>>>>>> org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:116)
>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>> at
>>>>>>>> org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:408)
>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>> at
>>>>>>>> org.apache.coyote.http11.AbstractHttp11Processor.process(AbstractHttp11Processor.java:1070)
>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>> at
>>>>>>>> org.apache.coyote.AbstractProtocol$AbstractConnectionHandler.process(AbstractProtocol.java:611)
>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>> at
>>>>>>>> org.apache.tomcat.util.net.NioEndpoint$SocketProcessor.doRun(NioEndpoint.java:1736)
>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>> at
>>>>>>>> org.apache.tomcat.util.net.NioEndpoint$SocketProcessor.run(NioEndpoint.java:1695)
>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>> at
>>>>>>>> java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1145)
>>>>>>>> [na:1.7.0_65]
>>>>>>>> at
>>>>>>>> java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:615)
>>>>>>>> [na:1.7.0_65]
>>>>>>>> at
>>>>>>>> org.apache.tomcat.util.threads.TaskThread$WrappingRunnable.run(TaskThread.java:61)
>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>> at java.lang.Thread.run(Thread.java:745) [na:1.7.0_65]
>>>>>>>> DEBUG 09-22 10:34:34.817 o.a.w.u.c.CookieUtils:266
>>>>>>>> [http-nio-0.0.0.0-5080-exec-4] - Unable to find Cookie with name=LoggedIn
>>>>>>>> and request URI=signin?1-1.IBehaviorListener.1-signin
>>>>>>>> DEBUG 09-22 10:34:34.820 o.a.w.f.FeedbackMessages:69
>>>>>>>> [http-nio-0.0.0.0-5080-exec-4] - Adding feedback message '[FeedbackMessage
>>>>>>>> message = "Unknown error. Please report this to the administrator.",
>>>>>>>> reporter = signin, level = ERROR]'
>>>>>>>> DEBUG 09-22 10:34:34.821 o.a.w.u.c.CookieUtils:266
>>>>>>>> [http-nio-0.0.0.0-5080-exec-4] - Unable to find Cookie with name=LoggedIn
>>>>>>>> and request URI=signin?1-1.IBehaviorListener.1-signin
>>>>>>>> DEBUG 09-22 10:34:34.822 o.a.wicket.Page:871
>>>>>>>> [http-nio-0.0.0.0-5080-exec-4] - ending request for page [Page class =
>>>>>>>> org.apache.openmeetings.web.pages.auth.SignInPage, id = 1, render count =
>>>>>>>> 1], request
>>>>>>>> org.apache.wicket.protocol.http.servlet.ServletWebRequest@16618f3
>>>>>>>> DEBUG 09-22 10:34:34.822 o.a.wicket.Page:871
>>>>>>>> [http-nio-0.0.0.0-5080-exec-4] - ending request for page [Page class =
>>>>>>>> org.apache.openmeetings.web.pages.auth.SignInPage, id = 1, render count =
>>>>>>>> 1], request
>>>>>>>> org.apache.wicket.protocol.http.servlet.ServletWebRequest@16618f3
>>>>>>>> DEBUG 09-22 10:34:34.823 o.a.wicket.Page:871
>>>>>>>> [http-nio-0.0.0.0-5080-exec-4] - ending request for page [Page class =
>>>>>>>> org.apache.openmeetings.web.pages.auth.SignInPage, id = 1, render count =
>>>>>>>> 1], request
>>>>>>>> org.apache.wicket.protocol.http.servlet.ServletWebRequest@16618f3
>>>>>>>> DEBUG 09-22 10:34:34.828
>>>>>>>> o.a.w.p.AsynchronousDataStore$PageSavingRunnable:354
>>>>>>>> [Wicket-PageSavingThread] - Saving asynchronously: Entry
>>>>>>>> [sessionId=907ABBB232B18743F2A67024DA18F185, pageId=1]...
>>>>>>>> DEBUG 09-22 10:34:34.828 o.a.w.p.DiskDataStore:186
>>>>>>>> [Wicket-PageSavingThread] - Storing data for page with id '1' in session
>>>>>>>> with id '907ABBB232B18743F2A67024DA18F185'
>>>>>>>> DEBUG 09-22 10:34:34.828 o.a.w.p.PageAccessSynchronizer:195
>>>>>>>> [http-nio-0.0.0.0-5080-exec-4] - 'http-nio-0.0.0.0-5080-exec-4' released
>>>>>>>> lock to page with id '1'
>>>>>>>> DEBUG 09-22 10:34:34.828 o.a.w.p.PageAccessSynchronizer:346
>>>>>>>> [http-nio-0.0.0.0-5080-exec-4] - 'http-nio-0.0.0.0-5080-exec-4' notifying
>>>>>>>> blocked threads
>>>>>>>> DEBUG 09-22 10:34:36.341 o.a.o.m.MailHandler:249
>>>>>>>> [org.springframework.scheduling.quartz.SchedulerFactoryBean#0_Worker-1] -
>>>>>>>> resetSendingStatus enter ...
>>>>>>>>
>>>>>>>>
>>>>>>>>
>>>>>>>> Thank you for your time.
>>>>>>>>
>>>>>>>> Greg.
>>>>>>>>
>>>>>>>> 2014-09-20 8:59 GMT+02:00 Maxim Solodovnik <so...@gmail.com>:
>>>>>>>>
>>>>>>>>> According to the logs and config SIMPLEBIND failed for the user
>>>>>>>>> specified
>>>>>>>>> please try SEARCHANDBIND
>>>>>>>>>
>>>>>>>>> On 19 September 2014 17:09, Grégory Mangeney <ma...@gmail.com>
>>>>>>>>> wrote:
>>>>>>>>>
>>>>>>>>>> Hello.
>>>>>>>>>> Thank you for your link.
>>>>>>>>>> It appeare that I have a 525 error (user not found).
>>>>>>>>>>
>>>>>>>>>> I think the problem must be in my config file because I'm sure
>>>>>>>>>> that my user is good because I use it for an other app witch use it to
>>>>>>>>>> connect with AD.
>>>>>>>>>>
>>>>>>>>>> As you ask me i give you more line of my log file, after that I
>>>>>>>>>> would like to show you my conf file...
>>>>>>>>>> Maybe you will find a setting withch is not good!
>>>>>>>>>>
>>>>>>>>>>
>>>>>>>>>> So here is my log file whene I try to connect :
>>>>>>>>>> DEBUG 09-19 11:47:01.337 o.a.o.q.s.MeetingReminderJob:34
>>>>>>>>>> [org.springframework.scheduling.quartz.SchedulerFactoryBean#0_Worker-2] -
>>>>>>>>>> MeetingReminderJob.execute
>>>>>>>>>> DEBUG 09-19 11:47:25.760 o.a.w.p.h.s.ServletWebRequest:189
>>>>>>>>>> [http-nio-0.0.0.0-5080-exec-10] - Calculating context relative path from:
>>>>>>>>>> context path '/openmeetings', filterPrefix '', uri '/openmeetings/signin'
>>>>>>>>>> DEBUG 09-19 11:47:25.761 o.a.w.p.PageAccessSynchronizer:100
>>>>>>>>>> [http-nio-0.0.0.0-5080-exec-10] - 'http-nio-0.0.0.0-5080-exec-10'
>>>>>>>>>> attempting to acquire lock to page with id '1'
>>>>>>>>>> DEBUG 09-19 11:47:25.761 o.a.w.p.PageAccessSynchronizer:125
>>>>>>>>>> [http-nio-0.0.0.0-5080-exec-10] - http-nio-0.0.0.0-5080-exec-10 acquired
>>>>>>>>>> lock to page 1
>>>>>>>>>> DEBUG 09-19 11:47:25.762 o.a.o.d.d.s.SessiondataDao:68
>>>>>>>>>> [http-nio-0.0.0.0-5080-exec-10] - startsession :: startsession
>>>>>>>>>> DEBUG 09-19 11:47:25.763 o.a.o.u.c.ManageCryptStyle:32
>>>>>>>>>> [http-nio-0.0.0.0-5080-exec-10] - getInstanceOfCrypt::
>>>>>>>>>> configKeyCryptClassName:
>>>>>>>>>> org.apache.openmeetings.util.crypt.MD5Implementation
>>>>>>>>>> DEBUG 09-19 11:47:25.788 o.a.o.l.LdapLoginManagement:165
>>>>>>>>>> [http-nio-0.0.0.0-5080-exec-10] - LdapLoginmanagement.doLdapLogin
>>>>>>>>>> ERROR 09-19 11:47:25.924 o.a.o.l.LdapLoginManagement:351
>>>>>>>>>> [http-nio-0.0.0.0-5080-exec-10] - Not authenticated.
>>>>>>>>>> org.apache.directory.api.ldap.model.exception.LdapAuthenticationException:
>>>>>>>>>> 80090308: LdapErr: DSID-0C090334, comment: AcceptSecurityContext error,
>>>>>>>>>> data 525, vece\00
>>>>>>>>>> at
>>>>>>>>>> org.apache.directory.api.ldap.model.message.ResultCodeEnum.processResponse(ResultCodeEnum.java:2021)
>>>>>>>>>> ~[api-all-jar-1.0.0-M23.jar:1.0.0-M23]
>>>>>>>>>> at
>>>>>>>>>> org.apache.directory.ldap.client.api.AbstractLdapConnection.bind(AbstractLdapConnection.java:129)
>>>>>>>>>> ~[api-all-jar-1.0.0-M23.jar:1.0.0-M23]
>>>>>>>>>> at
>>>>>>>>>> org.apache.openmeetings.ldap.LdapLoginManagement.login(LdapLoginManagement.java:275)
>>>>>>>>>> ~[openmeetings-core-3.0.3-RELEASE.jar:na]
>>>>>>>>>> at
>>>>>>>>>> org.apache.openmeetings.web.app.WebSession.signIn(WebSession.java:257)
>>>>>>>>>> [openmeetings-web-3.0.3-RELEASE.jar:na]
>>>>>>>>>> at
>>>>>>>>>> org.apache.openmeetings.web.pages.auth.SignInDialog.onSubmit(SignInDialog.java:190)
>>>>>>>>>> [openmeetings-web-3.0.3-RELEASE.jar:na]
>>>>>>>>>> at
>>>>>>>>>> com.googlecode.wicket.jquery.ui.widget.dialog.AbstractFormDialog$DialogFormSubmitter.onSubmit(AbstractFormDialog.java:279)
>>>>>>>>>> [wicket-jquery-ui-jar-6.16.0.jar:na]
>>>>>>>>>> at
>>>>>>>>>> org.apache.wicket.markup.html.form.Form.delegateSubmit(Form.java:1266)
>>>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>>>> at
>>>>>>>>>> org.apache.wicket.markup.html.form.Form.process(Form.java:938)
>>>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>>>> at
>>>>>>>>>> org.apache.wicket.markup.html.form.StatelessForm.process(StatelessForm.java:96)
>>>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>>>> at
>>>>>>>>>> org.apache.wicket.markup.html.form.Form.onFormSubmitted(Form.java:770)
>>>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>>>> at
>>>>>>>>>> com.googlecode.wicket.jquery.ui.widget.dialog.AbstractFormDialog.internalOnClick(AbstractFormDialog.java:200)
>>>>>>>>>> [wicket-jquery-ui-jar-6.16.0.jar:na]
>>>>>>>>>> at
>>>>>>>>>> com.googlecode.wicket.jquery.ui.widget.dialog.AbstractDialog$1.onClick(AbstractDialog.java:439)
>>>>>>>>>> [wicket-jquery-ui-jar-6.16.0.jar:na]
>>>>>>>>>> at
>>>>>>>>>> com.googlecode.wicket.jquery.ui.widget.dialog.DialogBehavior.onAjax(DialogBehavior.java:175)
>>>>>>>>>> [wicket-jquery-ui-jar-6.16.0.jar:na]
>>>>>>>>>> at
>>>>>>>>>> com.googlecode.wicket.jquery.core.ajax.JQueryAjaxBehavior.respond(JQueryAjaxBehavior.java:171)
>>>>>>>>>> [wicket-jquery-ui-core-jar-6.16.0.jar:na]
>>>>>>>>>> at
>>>>>>>>>> org.apache.wicket.ajax.AbstractDefaultAjaxBehavior.onRequest(AbstractDefaultAjaxBehavior.java:633)
>>>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>>>> at sun.reflect.GeneratedMethodAccessor91.invoke(Unknown Source)
>>>>>>>>>> ~[na:na]
>>>>>>>>>> at
>>>>>>>>>> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
>>>>>>>>>> ~[na:1.7.0_65]
>>>>>>>>>> at java.lang.reflect.Method.invoke(Method.java:606)
>>>>>>>>>> ~[na:1.7.0_65]
>>>>>>>>>> at
>>>>>>>>>> org.apache.wicket.RequestListenerInterface.internalInvoke(RequestListenerInterface.java:258)
>>>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>>>> at
>>>>>>>>>> org.apache.wicket.RequestListenerInterface.invoke(RequestListenerInterface.java:241)
>>>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>>>> at
>>>>>>>>>> org.apache.wicket.core.request.handler.ListenerInterfaceRequestHandler.invokeListener(ListenerInterfaceRequestHandler.java:250)
>>>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>>>> at
>>>>>>>>>> org.apache.wicket.core.request.handler.ListenerInterfaceRequestHandler.respond(ListenerInterfaceRequestHandler.java:236)
>>>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>>>> at
>>>>>>>>>> org.apache.wicket.request.cycle.RequestCycle$HandlerExecutor.respond(RequestCycle.java:862)
>>>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>>>> at
>>>>>>>>>> org.apache.wicket.request.RequestHandlerStack.execute(RequestHandlerStack.java:64)
>>>>>>>>>> [wicket-request-jar-6.16.0.jar:6.16.0]
>>>>>>>>>> at
>>>>>>>>>> org.apache.wicket.request.cycle.RequestCycle.execute(RequestCycle.java:261)
>>>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>>>> at
>>>>>>>>>> org.apache.wicket.request.cycle.RequestCycle.processRequest(RequestCycle.java:218)
>>>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>>>> at
>>>>>>>>>> org.apache.wicket.request.cycle.RequestCycle.processRequestAndDetach(RequestCycle.java:289)
>>>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>>>> at
>>>>>>>>>> org.apache.wicket.protocol.ws.AbstractUpgradeFilter.processRequestCycle(AbstractUpgradeFilter.java:59)
>>>>>>>>>> [wicket-native-websocket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>>>> at
>>>>>>>>>> org.apache.wicket.protocol.http.WicketFilter.processRequest(WicketFilter.java:201)
>>>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>>>> at
>>>>>>>>>> org.apache.wicket.protocol.http.WicketFilter.doFilter(WicketFilter.java:282)
>>>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>>>> at
>>>>>>>>>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:241)
>>>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>>>> at
>>>>>>>>>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:208)
>>>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>>>> at
>>>>>>>>>> org.red5.logging.LoggerContextFilter.doFilter(LoggerContextFilter.java:77)
>>>>>>>>>> [red5-server.jar:na]
>>>>>>>>>> at
>>>>>>>>>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:241)
>>>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>>>> at
>>>>>>>>>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:208)
>>>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>>>> at
>>>>>>>>>> org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:220)
>>>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>>>> at
>>>>>>>>>> org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:122)
>>>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>>>> at
>>>>>>>>>> org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:501)
>>>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>>>> at
>>>>>>>>>> org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:171)
>>>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>>>> at
>>>>>>>>>> org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:103)
>>>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>>>> at
>>>>>>>>>> org.apache.catalina.valves.AccessLogValve.invoke(AccessLogValve.java:950)
>>>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>>>> at
>>>>>>>>>> org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:116)
>>>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>>>> at
>>>>>>>>>> org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:408)
>>>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>>>> at
>>>>>>>>>> org.apache.coyote.http11.AbstractHttp11Processor.process(AbstractHttp11Processor.java:1070)
>>>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>>>> at
>>>>>>>>>> org.apache.coyote.AbstractProtocol$AbstractConnectionHandler.process(AbstractProtocol.java:611)
>>>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>>>> at
>>>>>>>>>> org.apache.tomcat.util.net.NioEndpoint$SocketProcessor.doRun(NioEndpoint.java:1736)
>>>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>>>> at
>>>>>>>>>> org.apache.tomcat.util.net.NioEndpoint$SocketProcessor.run(NioEndpoint.java:1695)
>>>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>>>> at
>>>>>>>>>> java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1145)
>>>>>>>>>> [na:1.7.0_65]
>>>>>>>>>> at
>>>>>>>>>> java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:615)
>>>>>>>>>> [na:1.7.0_65]
>>>>>>>>>> at
>>>>>>>>>> org.apache.tomcat.util.threads.TaskThread$WrappingRunnable.run(TaskThread.java:61)
>>>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>>>> at java.lang.Thread.run(Thread.java:745) [na:1.7.0_65]
>>>>>>>>>> DEBUG 09-19 11:47:25.927 o.a.w.u.c.CookieUtils:266
>>>>>>>>>> [http-nio-0.0.0.0-5080-exec-10] - Unable to find Cookie with name=LoggedIn
>>>>>>>>>> and request URI=signin?1-1.IBehaviorListener.1-signin
>>>>>>>>>> DEBUG 09-19 11:47:25.929 o.a.w.f.FeedbackMessages:69
>>>>>>>>>> [http-nio-0.0.0.0-5080-exec-10] - Adding feedback message '[FeedbackMessage
>>>>>>>>>> message = "Invalid password", reporter = signin, level = ERROR]'
>>>>>>>>>> DEBUG 09-19 11:47:25.929 o.a.w.u.c.CookieUtils:266
>>>>>>>>>> [http-nio-0.0.0.0-5080-exec-10] - Unable to find Cookie with name=LoggedIn
>>>>>>>>>> and request URI=signin?1-1.IBehaviorListener.1-signin
>>>>>>>>>> DEBUG 09-19 11:47:25.930 o.a.wicket.Page:871
>>>>>>>>>> [http-nio-0.0.0.0-5080-exec-10] - ending request for page [Page class =
>>>>>>>>>> org.apache.openmeetings.web.pages.auth.SignInPage, id = 1, render count =
>>>>>>>>>> 1], request
>>>>>>>>>> org.apache.wicket.protocol.http.servlet.ServletWebRequest@a6e74b
>>>>>>>>>> DEBUG 09-19 11:47:25.930 o.a.wicket.Page:871
>>>>>>>>>> [http-nio-0.0.0.0-5080-exec-10] - ending request for page [Page class =
>>>>>>>>>> org.apache.openmeetings.web.pages.auth.SignInPage, id = 1, render count =
>>>>>>>>>> 1], request
>>>>>>>>>> org.apache.wicket.protocol.http.servlet.ServletWebRequest@a6e74b
>>>>>>>>>> DEBUG 09-19 11:47:25.930 o.a.wicket.Page:871
>>>>>>>>>> [http-nio-0.0.0.0-5080-exec-10] - ending request for page [Page class =
>>>>>>>>>> org.apache.openmeetings.web.pages.auth.SignInPage, id = 1, render count =
>>>>>>>>>> 1], request
>>>>>>>>>> org.apache.wicket.protocol.http.servlet.ServletWebRequest@a6e74b
>>>>>>>>>> DEBUG 09-19 11:47:25.988
>>>>>>>>>> o.a.w.p.AsynchronousDataStore$PageSavingRunnable:354
>>>>>>>>>> [Wicket-PageSavingThread] - Saving asynchronously: Entry
>>>>>>>>>> [sessionId=2A10AA69C3E771FF51FABD4D26A20559, pageId=1]...
>>>>>>>>>> DEBUG 09-19 11:47:25.988 o.a.w.p.DiskDataStore:186
>>>>>>>>>> [Wicket-PageSavingThread] - Storing data for page with id '1' in session
>>>>>>>>>> with id '2A10AA69C3E771FF51FABD4D26A20559'
>>>>>>>>>> DEBUG 09-19 11:47:25.988 o.a.w.p.PageAccessSynchronizer:195
>>>>>>>>>> [http-nio-0.0.0.0-5080-exec-10] - 'http-nio-0.0.0.0-5080-exec-10' released
>>>>>>>>>> lock to page with id '1'
>>>>>>>>>> DEBUG 09-19 11:47:25.988 o.a.w.p.PageAccessSynchronizer:346
>>>>>>>>>> [http-nio-0.0.0.0-5080-exec-10] - 'http-nio-0.0.0.0-5080-exec-10' notifying
>>>>>>>>>> blocked threads
>>>>>>>>>>
>>>>>>>>>>
>>>>>>>>>>
>>>>>>>>>>
>>>>>>>>>>
>>>>>>>>>>
>>>>>>>>>>
>>>>>>>>>>
>>>>>>>>>>
>>>>>>>>>> And here is my conf file :
>>>>>>>>>>
>>>>>>>>>> #
>>>>>>>>>> # Licensed to the Apache Software Foundation (ASF) under one
>>>>>>>>>> # or more contributor license agreements. See the NOTICE file
>>>>>>>>>> # distributed with this work for additional information
>>>>>>>>>> # regarding copyright ownership. The ASF licenses this file
>>>>>>>>>> # to you under the Apache License, Version 2.0 (the
>>>>>>>>>> # "License"); you may not use this file except in compliance
>>>>>>>>>> # with the License. You may obtain a copy of the License at
>>>>>>>>>> #
>>>>>>>>>> # http://www.apache.org/licenses/LICENSE-2.0
>>>>>>>>>> #
>>>>>>>>>> # Unless required by applicable law or agreed to in writing,
>>>>>>>>>> # software distributed under the License is distributed on an
>>>>>>>>>> # "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
>>>>>>>>>> # KIND, either express or implied. See the License for the
>>>>>>>>>> # specific language governing permissions and limitations
>>>>>>>>>> # under the License.
>>>>>>>>>> #
>>>>>>>>>> #ConfigurationFile for LDAP Auth
>>>>>>>>>> #ConfigKey 'ldap_config_path' must be set in DataBase
>>>>>>>>>> Configration of OM and point to this file
>>>>>>>>>> #o.becherer,14.01.2009
>>>>>>>>>> #LDAP URL
>>>>>>>>>> # This is the URL used to access your LDAP server.
>>>>>>>>>> # if you want to use "ldaps://" links, please be aware that you
>>>>>>>>>> need to import your CA certificate
>>>>>>>>>> # to a java keystore and add the -Djavax.net.ssl.keyStore,
>>>>>>>>>> -Djavax.net.ssl.keyStorePassword,
>>>>>>>>>> # -Djavax.net.ssl.trustStore and
>>>>>>>>>> -Djavax.net.ssl.trustStorePassword parameters to your
>>>>>>>>>> # JAVA_OPT environment
>>>>>>>>>> ldap_conn_host=@IP_of_my_AD
>>>>>>>>>> ldap_conn_port=389
>>>>>>>>>> ldap_conn_secure=false
>>>>>>>>>> # Login distinguished name (DN) for Authentication on LDAP Server
>>>>>>>>>> - keep empty if not required
>>>>>>>>>> # Use full qualified LDAP DN
>>>>>>>>>>
>>>>>>>>>> ldap_admin_dn=CN=adconnect,OU=Comptes,OU=SI,OU=Services,OU=COMPANY,DC=mycompany,DC=priv
>>>>>>>>>> # Loginpass for Authentication on LDAP Server - keep empty if not
>>>>>>>>>> required
>>>>>>>>>> ldap_passwd=pass_for_user_adconnect
>>>>>>>>>> # base to search for userdata(of user, that wants to login)
>>>>>>>>>> ldap_search_base=DC=mycompany,DC=priv
>>>>>>>>>> # Fieldnames (can differ between Ldap servers)
>>>>>>>>>> ldap_search_query=(uid=%s)
>>>>>>>>>> # the scope of the search might be: OBJECT, ONELEVEL, SUBTREE
>>>>>>>>>> ldap_search_scope=ONELEVEL
>>>>>>>>>> # Ldap auth type(NONE, SEARCHANDBIND, SIMPLEBIND)
>>>>>>>>>> # When using SIMPLEBIND a simple bind is performed on the LDAP
>>>>>>>>>> server to check user authentication
>>>>>>>>>> # When using NONE, the Ldap server is not used for authentication
>>>>>>>>>> ldap_auth_type=SIMPLEBIND
>>>>>>>>>> # userDN format, will be used to bind if ldap_auth_type=SIMPLEBIND
>>>>>>>>>> # might be used to get provisionningDn in case ldap_auth_type=NONE
>>>>>>>>>> ldap_userdn_format=uid=%s,OU=COMPANY,DC=mycompany,DC=priv
>>>>>>>>>> # Ldap provisioning type(NONE, AUTOCREATE, AUTOUPDATE)
>>>>>>>>>> ldap_provisionning=AUTOCREATE
>>>>>>>>>> # Set this to 'true' if you want to use admin_dn to get user
>>>>>>>>>> attributes
>>>>>>>>>> # If any other value is set, user_dn will be used
>>>>>>>>>> ldap_use_admin_to_get_attrs=true
>>>>>>>>>> # Ldap-password synchronization to OM DB
>>>>>>>>>> # Set this to 'true' if you want OM to synchronize the user
>>>>>>>>>> Ldap-password to OM's internal DB
>>>>>>>>>> # If you want to disable the feature, set this to any other
>>>>>>>>>> string.
>>>>>>>>>> # Defautl value is 'true'
>>>>>>>>>> ldap_sync_password_to_om=true
>>>>>>>>>> # Ldap user attributes mapping
>>>>>>>>>> # Set the following internal OM user attributes to their
>>>>>>>>>> corresponding Ldap-attribute
>>>>>>>>>> ldap_user_attr_lastname=sn
>>>>>>>>>> ldap_user_attr_firstname=givenName
>>>>>>>>>> ldap_user_attr_mail=mail
>>>>>>>>>> ldap_user_attr_street=streetAddress
>>>>>>>>>> ldap_user_attr_additionalname=description
>>>>>>>>>> ldap_user_attr_fax=facsimileTelephoneNumber
>>>>>>>>>> ldap_user_attr_zip=postalCode
>>>>>>>>>> ldap_user_attr_country=co
>>>>>>>>>> ldap_user_attr_town=l
>>>>>>>>>> ldap_user_attr_phone=telephoneNumber
>>>>>>>>>> # optional, only absolute URLs make sense
>>>>>>>>>> #ldap_user_picture_uri=picture_uri
>>>>>>>>>> # optional
>>>>>>>>>> # the timezone has to match any timezone available in Java,
>>>>>>>>>> otherwise the timezone defined in the value of
>>>>>>>>>> # the conf_key "default.timezone" in OpenMeetings
>>>>>>>>>> "configurations" table
>>>>>>>>>> #ldap_user_timezone=timezone
>>>>>>>>>> # Ldap ignore upper/lower case, convert all input to lower case
>>>>>>>>>> ldap_use_lower_case=false
>>>>>>>>>>
>>>>>>>>>>
>>>>>>>>>>
>>>>>>>>>> Thanks a lot for your help.
>>>>>>>>>>
>>>>>>>>>> Greg.
>>>>>>>>>>
>>>>>>>>>>
>>>>>>>>>>
>>>>>>>>>>
>>>>>>>>>> 2014-09-18 17:52 GMT+02:00 Maxim Solodovnik <solomax666@gmail.com
>>>>>>>>>> >:
>>>>>>>>>>
>>>>>>>>>>> please check this URL:
>>>>>>>>>>> http://kb.juniper.net/InfoCenter/index?page=content&id=KB17098
>>>>>>>>>>> According to it you have "User not found"
>>>>>>>>>>>
>>>>>>>>>>> could you provide more ldap related logs?
>>>>>>>>>>> it might be Admin not found or user entered in login form not
>>>>>>>>>>> found depending on your settings
>>>>>>>>>>>
>>>>>>>>>>> On 18 September 2014 21:43, Grégory Mangeney <mangeney@gmail.com
>>>>>>>>>>> > wrote:
>>>>>>>>>>>
>>>>>>>>>>>> Hello, It's me again...
>>>>>>>>>>>> I'm back.
>>>>>>>>>>>> Now I have a new problem to connect to my AD...
>>>>>>>>>>>> In log file it is write : *ERROR ......... Not authenticated*
>>>>>>>>>>>> witch is a quite better message than before but after that it
>>>>>>>>>>>> is write : *LdapErr: DSID-0C090334, comment:
>>>>>>>>>>>> AcceptSecurityContext error, data 525, vece\00 at........*
>>>>>>>>>>>>
>>>>>>>>>>>> I try to understand my problem but "AcceptSecurityContext
>>>>>>>>>>>> error" seems to speack about a security problem.
>>>>>>>>>>>> I have set my ldap_conn_secure=false in om_ldap.conf.
>>>>>>>>>>>> I don't understand what could be my problem.
>>>>>>>>>>>>
>>>>>>>>>>>> thanks a lot for your ideas.
>>>>>>>>>>>>
>>>>>>>>>>>> Greg.
>>>>>>>>>>>> 2014-09-18 15:37 GMT+02:00 Grégory Mangeney <mangeney@gmail.com
>>>>>>>>>>>> >:
>>>>>>>>>>>>
>>>>>>>>>>>>> Ok, I finally understand that I have to put the filename and
>>>>>>>>>>>>> only the filename without
>>>>>>>>>>>>> */usr/lib/red5/webapps/openmeetings/conf/*
>>>>>>>>>>>>>
>>>>>>>>>>>>> Now I have a new message whitch said me invalid password...
>>>>>>>>>>>>> It's quite better...
>>>>>>>>>>>>> Thank you...
>>>>>>>>>>>>> I could continue to try to set it now.
>>>>>>>>>>>>> bye
>>>>>>>>>>>>>
>>>>>>>>>>>>> Greg.
>>>>>>>>>>>>>
>>>>>>>>>>>>>
>>>>>>>>>>>>>
>>>>>>>>>>>>> 2014-09-18 15:06 GMT+02:00 Maxim Solodovnik <
>>>>>>>>>>>>> solomax666@gmail.com>:
>>>>>>>>>>>>>
>>>>>>>>>>>>>> you need to write file name relative to
>>>>>>>>>>>>>> webapps/openmeetings/conf folder
>>>>>>>>>>>>>> in your case *om_ldap.cfg *should be specified
>>>>>>>>>>>>>>
>>>>>>>>>>>>>> On 18 September 2014 20:04, Grégory Mangeney <
>>>>>>>>>>>>>> mangeney@gmail.com> wrote:
>>>>>>>>>>>>>>
>>>>>>>>>>>>>>> Thank you very much but I don't understand very well.
>>>>>>>>>>>>>>> I think I put the right information...
>>>>>>>>>>>>>>> Do you want to say that I have to write :
>>>>>>>>>>>>>>> */usr/lib/red5/webapps/openmeetings/conf/* without the
>>>>>>>>>>>>>>> filename *om_ldap.cfg* at the end?
>>>>>>>>>>>>>>> Thanks for your help
>>>>>>>>>>>>>>> Greg
>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>> 2014-09-18 14:52 GMT+02:00 Maxim Solodovnik <
>>>>>>>>>>>>>>> solomax666@gmail.com>:
>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>> AFAIK the path should be relative to
>>>>>>>>>>>>>>>> /usr/lib/red5/webapps/openmeetings/conf
>>>>>>>>>>>>>>>> Please change this path
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>> Additionally you can file JIRA issue to add check to the
>>>>>>>>>>>>>>>> Admin screen (so path will be validated on enter)
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>> On 18 September 2014 19:44, Grégory Mangeney <
>>>>>>>>>>>>>>>> mangeney@gmail.com> wrote:
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>> Hello,
>>>>>>>>>>>>>>>>> I have the same problem: I could not connect with AD.
>>>>>>>>>>>>>>>>> I have the domain at the login screen,
>>>>>>>>>>>>>>>>> I am using the 3.0.3.
>>>>>>>>>>>>>>>>> I found this line in my log file :* ERROR 09-18
>>>>>>>>>>>>>>>>> 14:28:33.994 o.a.o.l.LdapLoginManagement:147 [http-nio-0.0.0.0-5080-exec-4]
>>>>>>>>>>>>>>>>> - Error on LdapLogin : Configurationdata couldnt be retrieved!*
>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>> This seem strange because in my LDAP config (in
>>>>>>>>>>>>>>>>> openmeetings Administration/LDAP menu), I put the correct path in the
>>>>>>>>>>>>>>>>> "Config file name" : /usr/lib/red5/webapps/openmeetings/conf/om_ldap.cfg
>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>> Why is this error appeared : *Configurationdata couldnt
>>>>>>>>>>>>>>>>> be retrieved! *???
>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>> Thanks a lot
>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>> Greg
>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>> 2014-09-17 12:52 GMT+02:00 Maxim Solodovnik <
>>>>>>>>>>>>>>>>> solomax666@gmail.com>:
>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>> great :)
>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>> On 17 September 2014 17:46, Teddy Jayasaputra <
>>>>>>>>>>>>>>>>>> teddy.jayasaputra@ocbcnisp.com> wrote:
>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>> Dear Maxim,
>>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>> After close look to console log.
>>>>>>>>>>>>>>>>>>> We found this error :
>>>>>>>>>>>>>>>>>>> ERROR 09-17 17:28:33.278 LdapLoginManagement.java 135070
>>>>>>>>>>>>>>>>>>> 285 org.apache.openmeetings.ldap.LdapLoginManagement
>>>>>>>>>>>>>>>>>>> [http-nio-0.0.0.0-5080-exec-6] - User not found in OM DB and
>>>>>>>>>>>>>>>>>>> Provisionning.AUTOCREATE was not set
>>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>> After we change ldapconfiguration file from
>>>>>>>>>>>>>>>>>>> ldap_provisionning=NONE to AUTOCREATE we can login using AD.
>>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>> thanks.
>>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>> Best Regards,
>>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>> -Teddy Jayasaputra-
>>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>> On 9/17/2014 4:25 PM, Maxim Solodovnik wrote:
>>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>> do you have your AD domain on the login screen?
>>>>>>>>>>>>>>>>>>> are there errors in the log?
>>>>>>>>>>>>>>>>>>> what OM version are you using?
>>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>> On 17 September 2014 16:02, ARI HENDIAWAN <
>>>>>>>>>>>>>>>>>>> ari.hendiawan@ocbcnisp.com> wrote:
>>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>>> Dear all,
>>>>>>>>>>>>>>>>>>>> please we need extra information how to integrate
>>>>>>>>>>>>>>>>>>>> openmeetings 3.0.3 with AD?
>>>>>>>>>>>>>>>>>>>> we already setting on ldap.conf and still problem.. if
>>>>>>>>>>>>>>>>>>>> we saw on AD , user that want sign-in openmeetings success, but on login
>>>>>>>>>>>>>>>>>>>> menu openmeetings shown error "invalid password"
>>>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>>> Tks
>>>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>>> --
>>>>>>>>>>>>>>>>>>>> Disclaimer :
>>>>>>>>>>>>>>>>>>>> Confidential information may be contained in this
>>>>>>>>>>>>>>>>>>>> message. If you are not the intended recipient, you are strictly prohibited
>>>>>>>>>>>>>>>>>>>> and may be unlawful to use, copy, store, distribute, disclose or
>>>>>>>>>>>>>>>>>>>> communicate any part of it to others and you are obliged to return it
>>>>>>>>>>>>>>>>>>>> immediately to sender or notify us and delete the e-mail and any
>>>>>>>>>>>>>>>>>>>> attachments from your system. Opinions, conclusions and other information
>>>>>>>>>>>>>>>>>>>> in this e-mail that do not relate to the official business of any PT Bank
>>>>>>>>>>>>>>>>>>>> OCBC NISP Tbk shall be understood as neither given nor endorsed by it. No
>>>>>>>>>>>>>>>>>>>> assumption of responsibility or liability whatsoever is undertaken by PT
>>>>>>>>>>>>>>>>>>>> Bank OCBC NISP Tbk in respect of prohibited and unauthorised use by any
>>>>>>>>>>>>>>>>>>>> other person.
>>>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>> --
>>>>>>>>>>>>>>>>>>> WBR
>>>>>>>>>>>>>>>>>>> Maxim aka solomax
>>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>> --
>>>>>>>>>>>>>>>>>>> Disclaimer :
>>>>>>>>>>>>>>>>>>> Confidential information may be contained in this
>>>>>>>>>>>>>>>>>>> message. If you are not the intended recipient, you are strictly prohibited
>>>>>>>>>>>>>>>>>>> and may be unlawful to use, copy, store, distribute, disclose or
>>>>>>>>>>>>>>>>>>> communicate any part of it to others and you are obliged to return it
>>>>>>>>>>>>>>>>>>> immediately to sender or notify us and delete the e-mail and any
>>>>>>>>>>>>>>>>>>> attachments from your system. Opinions, conclusions and other information
>>>>>>>>>>>>>>>>>>> in this e-mail that do not relate to the official business of any PT Bank
>>>>>>>>>>>>>>>>>>> OCBC NISP Tbk shall be understood as neither given nor endorsed by it. No
>>>>>>>>>>>>>>>>>>> assumption of responsibility or liability whatsoever is undertaken by PT
>>>>>>>>>>>>>>>>>>> Bank OCBC NISP Tbk in respect of prohibited and unauthorised use by any
>>>>>>>>>>>>>>>>>>> other person.
>>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>> --
>>>>>>>>>>>>>>>>>> WBR
>>>>>>>>>>>>>>>>>> Maxim aka solomax
>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>> --
>>>>>>>>>>>>>>>> WBR
>>>>>>>>>>>>>>>> Maxim aka solomax
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>
>>>>>>>>>>>>>>
>>>>>>>>>>>>>> --
>>>>>>>>>>>>>> WBR
>>>>>>>>>>>>>> Maxim aka solomax
>>>>>>>>>>>>>>
>>>>>>>>>>>>>
>>>>>>>>>>>>>
>>>>>>>>>>>>
>>>>>>>>>>>
>>>>>>>>>>>
>>>>>>>>>>> --
>>>>>>>>>>> WBR
>>>>>>>>>>> Maxim aka solomax
>>>>>>>>>>>
>>>>>>>>>>
>>>>>>>>>>
>>>>>>>>>
>>>>>>>>>
>>>>>>>>> --
>>>>>>>>> WBR
>>>>>>>>> Maxim aka solomax
>>>>>>>>>
>>>>>>>>
>>>>>>>>
>>>>>>>
>>>>>>>
>>>>>>> --
>>>>>>> WBR
>>>>>>> Maxim aka solomax
>>>>>>>
>>>>>>
>>>>>>
>>>>
>>>
>>
>>
>> --
>> WBR
>> Maxim aka solomax
>>
>
>
Re: need info about problem when integration AD
Posted by Grégory Mangeney <ma...@gmail.com>.
Hello Maxim.
I had try with the 3.0.4 Version according to your link.
Now I have an other error in log file.
It said NONE USER FOUND IN LDAP...
I hope so the connection with my AD is good and it still a config problem
but maybe you could help me with my logs and my conf file...
My logs:
ERROR 09-23 15:34:55.797 o.a.o.l.LdapLoginManagement:266
[http-nio-0.0.0.0-5080-exec-8] - NONE users found in LDAP
DEBUG 09-23 15:34:55.799 o.a.w.u.c.CookieUtils:273
[http-nio-0.0.0.0-5080-exec-8] - Unable to find Cookie with name=LoggedIn
and request URI=signin?0-5.IBehaviorListener.0-signin-signin-submit
DEBUG 09-23 15:34:55.802 o.a.w.f.FeedbackMessages:69
[http-nio-0.0.0.0-5080-exec-8] - Adding feedback message '[FeedbackMessage
message = "Invalid password", reporter = signin, level = ERROR]'
DEBUG 09-23 15:34:55.808 o.a.wicket.Page:871 [http-nio-0.0.0.0-5080-exec-8]
- ending request for page [Page class =
org.apache.openmeetings.web.pages.auth.SignInPage, id = 0, render count =
5], request org.apache.wicket.protocol.http.servlet.ServletWebRequest@69fbe
DEBUG 09-23 15:34:55.809 o.a.wicket.Page:871 [http-nio-0.0.0.0-5080-exec-8]
- ending request for page [Page class =
org.apache.openmeetings.web.pages.auth.SignInPage, id = 0, render count =
5], request org.apache.wicket.protocol.http.servlet.ServletWebRequest@69fbe
DEBUG 09-23 15:34:55.809 o.a.wicket.Page:871 [http-nio-0.0.0.0-5080-exec-8]
- ending request for page [Page class =
org.apache.openmeetings.web.pages.auth.SignInPage, id = 0, render count =
5], request org.apache.wicket.protocol.http.servlet.ServletWebRequest@69fbe
DEBUG 09-23 15:34:55.811
o.a.w.p.AsynchronousDataStore$PageSavingRunnable:354
[Wicket-PageSavingThread] - Saving asynchronously: Entry
[sessionId=E576CCA08DEE992DF7CCBD22F2FD64F8, pageId=0]...
DEBUG 09-23 15:34:55.811 o.a.w.p.DiskDataStore:186
[Wicket-PageSavingThread] - Storing data for page with id '0' in session
with id 'E576CCA08DEE992DF7CCBD22F2FD64F8'
DEBUG 09-23 15:34:55.812 o.a.w.p.PageAccessSynchronizer:195
[http-nio-0.0.0.0-5080-exec-8] - 'http-nio-0.0.0.0-5080-exec-8' released
lock to page with id '0'
DEBUG 09-23 15:34:55.812 o.a.w.p.PageAccessSynchronizer:346
[http-nio-0.0.0.0-5080-exec-8] - 'http-nio-0.0.0.0-5080-exec-8' notifying
blocked threads
DEBUG 09-23 15:35:30.522 o.a.o.m.MailHandler:258
[org.springframework.scheduling.quartz.SchedulerFactoryBean#0_Worker-2] -
sendMails enter ...
DEBUG 09-23 15:35:30.523 o.a.o.m.MailHandler:260
[org.springframework.scheduling.quartz.SchedulerFactoryBean#0_Worker-2] -
Number of emails in init queue 0
DEBUG 09-23 15:35:30.524 o.a.o.m.MailHandler:265
[org.springframework.scheduling.quartz.SchedulerFactoryBean#0_Worker-2] -
... sendMails done.
DEBUG 09-23 15:35:35.503 o.a.o.d.d.s.SessiondataDao:404
[org.springframework.scheduling.quartz.SchedulerFactoryBean#0_Worker-3] -
****** clearSessionTable:
DEBUG 09-23 15:35:35.505 o.a.o.d.d.s.SessiondataDao:408
[org.springframework.scheduling.quartz.SchedulerFactoryBean#0_Worker-3] -
clearSessionTable: 0
DEBUG 09-23 15:35:35.512 o.a.o.q.s.MeetingReminderJob:34
[org.springframework.scheduling.quartz.SchedulerFactoryBean#0_Worker-4] -
MeetingReminderJob.execute
My conf :
#
# Licensed to the Apache Software Foundation (ASF) under one
# or more contributor license agreements. See the NOTICE file
# distributed with this work for additional information
# regarding copyright ownership. The ASF licenses this file
# to you under the Apache License, Version 2.0 (the
# "License"); you may not use this file except in compliance
# with the License. You may obtain a copy of the License at
#
# http://www.apache.org/licenses/LICENSE-2.0
#
# Unless required by applicable law or agreed to in writing,
# software distributed under the License is distributed on an
# "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
# KIND, either express or implied. See the License for the
# specific language governing permissions and limitations
# under the License.
#
#ConfigurationFile for LDAP Auth
#ConfigKey 'ldap_config_path' must be set in DataBase Configration of OM
and point to this file
#o.becherer,14.01.2009
#LDAP URL
# This is the URL used to access your LDAP server.
# if you want to use "ldaps://" links, please be aware that you need to
import your CA certificate
# to a java keystore and add the -Djavax.net.ssl.keyStore,
-Djavax.net.ssl.keyStorePassword,
# -Djavax.net.ssl.trustStore and -Djavax.net.ssl.trustStorePassword
parameters to your
# JAVA_OPT environment
ldap_conn_host=@IP_of_my_AD
ldap_conn_port=389
ldap_conn_secure=false
# Login distinguished name (DN) for Authentication on LDAP Server - keep
empty if not required
# Use full qualified LDAP DN
ldap_admin_dn=CN=adconnect,OU=Comptes
Cles,OU=SI,OU=Services,OU=COMPANY,DC=mycompany,DC=priv
# Loginpass for Authentication on LDAP Server - keep empty if not required
ldap_passwd=pass_for_user_adconnect
# base to search for userdata(of user, that wants to login)
ldap_search_base=OU=COMPANY,DC=mycompany,DC=priv
# Fieldnames (can differ between Ldap servers)
ldap_search_query=(uid=%s)
# the scope of the search might be: OBJECT, ONELEVEL, SUBTREE
ldap_search_scope=SUBTREE
# Ldap auth type(NONE, SEARCHANDBIND, SIMPLEBIND)
# When using SIMPLEBIND a simple bind is performed on the LDAP server to
check user authentication
# When using NONE, the Ldap server is not used for authentication
ldap_auth_type=SEARCHANDBIND
# userDN format, will be used to bind if ldap_auth_type=SIMPLEBIND
# might be used to get provisionningDn in case ldap_auth_type=NONE
ldap_userdn_format=uid=%s,OU=COMPANY,DC=mycompany,DC=priv
# Ldap provisioning type(NONE, AUTOCREATE, AUTOUPDATE)
ldap_provisionning=AUTOCREATE
# Set this to 'true' if you want to use admin_dn to get user attributes
# If any other value is set, user_dn will be used
ldap_use_admin_to_get_attrs=true
# Ldap-password synchronization to OM DB
# Set this to 'true' if you want OM to synchronize the user Ldap-password
to OM's internal DB
# If you want to disable the feature, set this to any other string.
# Defautl value is 'true'
ldap_sync_password_to_om=true
# Ldap user attributes mapping
# Set the following internal OM user attributes to their corresponding
Ldap-attribute
ldap_user_attr_lastname=sn
ldap_user_attr_firstname=givenName
ldap_user_attr_mail=mail
ldap_user_attr_street=streetAddress
ldap_user_attr_additionalname=description
ldap_user_attr_fax=facsimileTelephoneNumber
ldap_user_attr_zip=postalCode
ldap_user_attr_country=co
ldap_user_attr_town=l
ldap_user_attr_phone=telephoneNumber
# optional, only absolute URLs make sense
#ldap_user_picture_uri=picture_uri
# optional
# the timezone has to match any timezone available in Java, otherwise the
timezone defined in the value of
# the conf_key "default.timezone" in OpenMeetings "configurations" table
#ldap_user_timezone=timezone
# Ldap ignore upper/lower case, convert all input to lower case
ldap_use_lower_case=false
Do you see how to fix my problem with this new branch of openmeetings 3.0.4?
Thanks a lot.
Greg.
2014-09-22 17:50 GMT+02:00 Maxim Solodovnik <so...@gmail.com>:
> Please get build #67 here:
> https://builds.apache.org/view/M-R/view/OpenMeetings/job/Openmeetings%203.0.x/
> I have no LDAP infrastructure to test :( I 100% rely on community in this
> So thanks for the testing :)
>
> On 23 September 2014 01:17, Grégory Mangeney <ma...@gmail.com> wrote:
>
>> Windows Server 2003 R2
>>
>> 2014-09-22 17:13 GMT+02:00 Grégory Mangeney <ma...@gmail.com>:
>>
>>> Ok,thank you for that.
>>> For information I am using a Microsoft Active Directory in object
>>> version 31
>>>
>>> I get this information by tapping dsquery *
>>> cn=schema,cn=configuration,dc=mycompany,dc=priv -scope base -attr
>>> objectVersion
>>>
>>> Good evening.
>>>
>>> Best regards.
>>>
>>> Greg.
>>>
>>> 2014-09-22 16:40 GMT+02:00 Maxim Solodovnik <so...@gmail.com>:
>>>
>>>> You have these Paramaribo in your configuration:
>>>> ldap_search_base=DC=mycompany,DC=priv
>>>> # Fieldnames (can differ between Ldap servers)
>>>> ldap_search_query=(uid=%s)
>>>>
>>>> I guess nothing is found. Not sure I never saw error like yours.
>>>>
>>>> Will create 3.0.4 nightly fly you later today (with updated ldap
>>>> library) if error will be the same I'll ask ldap library developers for the
>>>> help
>>>> On Sep 22, 2014 9:05 PM, "Grégory Mangeney" <ma...@gmail.com> wrote:
>>>>
>>>>> a bad search query?
>>>>>
>>>>> In this case, the loging error message shouldn't be somthing like :
>>>>> "Login/password do not exist" ?
>>>>>
>>>>> How could I check this point...
>>>>> I do not modified the source code!
>>>>>
>>>>> 2014-09-22 11:25 GMT+02:00 Maxim Solodovnik <so...@gmail.com>:
>>>>>
>>>>>> it seems like nothing was found
>>>>>> Maybe bad search query?
>>>>>>
>>>>>> On 22 September 2014 15:55, Grégory Mangeney <ma...@gmail.com>
>>>>>> wrote:
>>>>>>
>>>>>>> Hello Maxim.
>>>>>>> Thanks a lot for your answer.
>>>>>>> You're helpfull...
>>>>>>>
>>>>>>> I had ever try with SEARCHANDBIND but it still not working...
>>>>>>> So I set it again to give you my logs...
>>>>>>> The error is quite different but I could not understand what is the
>>>>>>> problem...
>>>>>>>
>>>>>>> In the login screen I have the following message in red : "Unknown
>>>>>>> error. Please report this to the administrator."
>>>>>>>
>>>>>>>
>>>>>>>
>>>>>>>
>>>>>>> Here is my logs :
>>>>>>>
>>>>>>> ERROR 09-22 10:34:34.814 o.a.o.l.LdapLoginManagement:356
>>>>>>> [http-nio-0.0.0.0-5080-exec-4] - Unexpected exception.
>>>>>>> org.apache.directory.api.ldap.model.cursor.CursorLdapReferralException:
>>>>>>> null
>>>>>>> at
>>>>>>> org.apache.directory.ldap.client.api.EntryCursorImpl.get(EntryCursorImpl.java:164)
>>>>>>> ~[api-all-jar-1.0.0-M23.jar:1.0.0-M23]
>>>>>>> at
>>>>>>> org.apache.directory.ldap.client.api.EntryCursorImpl.get(EntryCursorImpl.java:50)
>>>>>>> ~[api-all-jar-1.0.0-M23.jar:1.0.0-M23]
>>>>>>> at
>>>>>>> org.apache.openmeetings.ldap.LdapLoginManagement.login(LdapLoginManagement.java:258)
>>>>>>> ~[openmeetings-core-3.0.3-RELEASE.jar:na]
>>>>>>> at
>>>>>>> org.apache.openmeetings.web.app.WebSession.signIn(WebSession.java:257)
>>>>>>> [openmeetings-web-3.0.3-RELEASE.jar:na]
>>>>>>> at
>>>>>>> org.apache.openmeetings.web.pages.auth.SignInDialog.onSubmit(SignInDialog.java:190)
>>>>>>> [openmeetings-web-3.0.3-RELEASE.jar:na]
>>>>>>> at
>>>>>>> com.googlecode.wicket.jquery.ui.widget.dialog.AbstractFormDialog$DialogFormSubmitter.onSubmit(AbstractFormDialog.java:279)
>>>>>>> [wicket-jquery-ui-jar-6.16.0.jar:na]
>>>>>>> at
>>>>>>> org.apache.wicket.markup.html.form.Form.delegateSubmit(Form.java:1266)
>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>> at
>>>>>>> org.apache.wicket.markup.html.form.Form.process(Form.java:938)
>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>> at
>>>>>>> org.apache.wicket.markup.html.form.StatelessForm.process(StatelessForm.java:96)
>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>> at
>>>>>>> org.apache.wicket.markup.html.form.Form.onFormSubmitted(Form.java:770)
>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>> at
>>>>>>> com.googlecode.wicket.jquery.ui.widget.dialog.AbstractFormDialog.internalOnClick(AbstractFormDialog.java:200)
>>>>>>> [wicket-jquery-ui-jar-6.16.0.jar:na]
>>>>>>> at
>>>>>>> com.googlecode.wicket.jquery.ui.widget.dialog.AbstractDialog$1.onClick(AbstractDialog.java:439)
>>>>>>> [wicket-jquery-ui-jar-6.16.0.jar:na]
>>>>>>> at
>>>>>>> com.googlecode.wicket.jquery.ui.widget.dialog.DialogBehavior.onAjax(DialogBehavior.java:175)
>>>>>>> [wicket-jquery-ui-jar-6.16.0.jar:na]
>>>>>>> at
>>>>>>> com.googlecode.wicket.jquery.core.ajax.JQueryAjaxBehavior.respond(JQueryAjaxBehavior.java:171)
>>>>>>> [wicket-jquery-ui-core-jar-6.16.0.jar:na]
>>>>>>> at
>>>>>>> org.apache.wicket.ajax.AbstractDefaultAjaxBehavior.onRequest(AbstractDefaultAjaxBehavior.java:633)
>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>> at sun.reflect.GeneratedMethodAccessor91.invoke(Unknown Source)
>>>>>>> ~[na:na]
>>>>>>> at
>>>>>>> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
>>>>>>> ~[na:1.7.0_65]
>>>>>>> at java.lang.reflect.Method.invoke(Method.java:606)
>>>>>>> ~[na:1.7.0_65]
>>>>>>> at
>>>>>>> org.apache.wicket.RequestListenerInterface.internalInvoke(RequestListenerInterface.java:258)
>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>> at
>>>>>>> org.apache.wicket.RequestListenerInterface.invoke(RequestListenerInterface.java:241)
>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>> at
>>>>>>> org.apache.wicket.core.request.handler.ListenerInterfaceRequestHandler.invokeListener(ListenerInterfaceRequestHandler.java:250)
>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>> at
>>>>>>> org.apache.wicket.core.request.handler.ListenerInterfaceRequestHandler.respond(ListenerInterfaceRequestHandler.java:236)
>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>> at
>>>>>>> org.apache.wicket.request.cycle.RequestCycle$HandlerExecutor.respond(RequestCycle.java:862)
>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>> at
>>>>>>> org.apache.wicket.request.RequestHandlerStack.execute(RequestHandlerStack.java:64)
>>>>>>> [wicket-request-jar-6.16.0.jar:6.16.0]
>>>>>>> at
>>>>>>> org.apache.wicket.request.cycle.RequestCycle.execute(RequestCycle.java:261)
>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>> at
>>>>>>> org.apache.wicket.request.cycle.RequestCycle.processRequest(RequestCycle.java:218)
>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>> at
>>>>>>> org.apache.wicket.request.cycle.RequestCycle.processRequestAndDetach(RequestCycle.java:289)
>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>> at
>>>>>>> org.apache.wicket.protocol.ws.AbstractUpgradeFilter.processRequestCycle(AbstractUpgradeFilter.java:59)
>>>>>>> [wicket-native-websocket-core-jar-6.16.0.jar:6.16.0]
>>>>>>> at
>>>>>>> org.apache.wicket.protocol.http.WicketFilter.processRequest(WicketFilter.java:201)
>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>> at
>>>>>>> org.apache.wicket.protocol.http.WicketFilter.doFilter(WicketFilter.java:282)
>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>> at
>>>>>>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:241)
>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>> at
>>>>>>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:208)
>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>> at
>>>>>>> org.red5.logging.LoggerContextFilter.doFilter(LoggerContextFilter.java:77)
>>>>>>> [red5-server.jar:na]
>>>>>>> at
>>>>>>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:241)
>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>> at
>>>>>>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:208)
>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>> at
>>>>>>> org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:220)
>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>> at
>>>>>>> org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:122)
>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>> at
>>>>>>> org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:501)
>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>> at
>>>>>>> org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:171)
>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>> at
>>>>>>> org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:103)
>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>> at
>>>>>>> org.apache.catalina.valves.AccessLogValve.invoke(AccessLogValve.java:950)
>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>> at
>>>>>>> org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:116)
>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>> at
>>>>>>> org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:408)
>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>> at
>>>>>>> org.apache.coyote.http11.AbstractHttp11Processor.process(AbstractHttp11Processor.java:1070)
>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>> at
>>>>>>> org.apache.coyote.AbstractProtocol$AbstractConnectionHandler.process(AbstractProtocol.java:611)
>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>> at
>>>>>>> org.apache.tomcat.util.net.NioEndpoint$SocketProcessor.doRun(NioEndpoint.java:1736)
>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>> at
>>>>>>> org.apache.tomcat.util.net.NioEndpoint$SocketProcessor.run(NioEndpoint.java:1695)
>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>> at
>>>>>>> java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1145)
>>>>>>> [na:1.7.0_65]
>>>>>>> at
>>>>>>> java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:615)
>>>>>>> [na:1.7.0_65]
>>>>>>> at
>>>>>>> org.apache.tomcat.util.threads.TaskThread$WrappingRunnable.run(TaskThread.java:61)
>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>> at java.lang.Thread.run(Thread.java:745) [na:1.7.0_65]
>>>>>>> DEBUG 09-22 10:34:34.817 o.a.w.u.c.CookieUtils:266
>>>>>>> [http-nio-0.0.0.0-5080-exec-4] - Unable to find Cookie with name=LoggedIn
>>>>>>> and request URI=signin?1-1.IBehaviorListener.1-signin
>>>>>>> DEBUG 09-22 10:34:34.820 o.a.w.f.FeedbackMessages:69
>>>>>>> [http-nio-0.0.0.0-5080-exec-4] - Adding feedback message '[FeedbackMessage
>>>>>>> message = "Unknown error. Please report this to the administrator.",
>>>>>>> reporter = signin, level = ERROR]'
>>>>>>> DEBUG 09-22 10:34:34.821 o.a.w.u.c.CookieUtils:266
>>>>>>> [http-nio-0.0.0.0-5080-exec-4] - Unable to find Cookie with name=LoggedIn
>>>>>>> and request URI=signin?1-1.IBehaviorListener.1-signin
>>>>>>> DEBUG 09-22 10:34:34.822 o.a.wicket.Page:871
>>>>>>> [http-nio-0.0.0.0-5080-exec-4] - ending request for page [Page class =
>>>>>>> org.apache.openmeetings.web.pages.auth.SignInPage, id = 1, render count =
>>>>>>> 1], request
>>>>>>> org.apache.wicket.protocol.http.servlet.ServletWebRequest@16618f3
>>>>>>> DEBUG 09-22 10:34:34.822 o.a.wicket.Page:871
>>>>>>> [http-nio-0.0.0.0-5080-exec-4] - ending request for page [Page class =
>>>>>>> org.apache.openmeetings.web.pages.auth.SignInPage, id = 1, render count =
>>>>>>> 1], request
>>>>>>> org.apache.wicket.protocol.http.servlet.ServletWebRequest@16618f3
>>>>>>> DEBUG 09-22 10:34:34.823 o.a.wicket.Page:871
>>>>>>> [http-nio-0.0.0.0-5080-exec-4] - ending request for page [Page class =
>>>>>>> org.apache.openmeetings.web.pages.auth.SignInPage, id = 1, render count =
>>>>>>> 1], request
>>>>>>> org.apache.wicket.protocol.http.servlet.ServletWebRequest@16618f3
>>>>>>> DEBUG 09-22 10:34:34.828
>>>>>>> o.a.w.p.AsynchronousDataStore$PageSavingRunnable:354
>>>>>>> [Wicket-PageSavingThread] - Saving asynchronously: Entry
>>>>>>> [sessionId=907ABBB232B18743F2A67024DA18F185, pageId=1]...
>>>>>>> DEBUG 09-22 10:34:34.828 o.a.w.p.DiskDataStore:186
>>>>>>> [Wicket-PageSavingThread] - Storing data for page with id '1' in session
>>>>>>> with id '907ABBB232B18743F2A67024DA18F185'
>>>>>>> DEBUG 09-22 10:34:34.828 o.a.w.p.PageAccessSynchronizer:195
>>>>>>> [http-nio-0.0.0.0-5080-exec-4] - 'http-nio-0.0.0.0-5080-exec-4' released
>>>>>>> lock to page with id '1'
>>>>>>> DEBUG 09-22 10:34:34.828 o.a.w.p.PageAccessSynchronizer:346
>>>>>>> [http-nio-0.0.0.0-5080-exec-4] - 'http-nio-0.0.0.0-5080-exec-4' notifying
>>>>>>> blocked threads
>>>>>>> DEBUG 09-22 10:34:36.341 o.a.o.m.MailHandler:249
>>>>>>> [org.springframework.scheduling.quartz.SchedulerFactoryBean#0_Worker-1] -
>>>>>>> resetSendingStatus enter ...
>>>>>>>
>>>>>>>
>>>>>>>
>>>>>>> Thank you for your time.
>>>>>>>
>>>>>>> Greg.
>>>>>>>
>>>>>>> 2014-09-20 8:59 GMT+02:00 Maxim Solodovnik <so...@gmail.com>:
>>>>>>>
>>>>>>>> According to the logs and config SIMPLEBIND failed for the user
>>>>>>>> specified
>>>>>>>> please try SEARCHANDBIND
>>>>>>>>
>>>>>>>> On 19 September 2014 17:09, Grégory Mangeney <ma...@gmail.com>
>>>>>>>> wrote:
>>>>>>>>
>>>>>>>>> Hello.
>>>>>>>>> Thank you for your link.
>>>>>>>>> It appeare that I have a 525 error (user not found).
>>>>>>>>>
>>>>>>>>> I think the problem must be in my config file because I'm sure
>>>>>>>>> that my user is good because I use it for an other app witch use it to
>>>>>>>>> connect with AD.
>>>>>>>>>
>>>>>>>>> As you ask me i give you more line of my log file, after that I
>>>>>>>>> would like to show you my conf file...
>>>>>>>>> Maybe you will find a setting withch is not good!
>>>>>>>>>
>>>>>>>>>
>>>>>>>>> So here is my log file whene I try to connect :
>>>>>>>>> DEBUG 09-19 11:47:01.337 o.a.o.q.s.MeetingReminderJob:34
>>>>>>>>> [org.springframework.scheduling.quartz.SchedulerFactoryBean#0_Worker-2] -
>>>>>>>>> MeetingReminderJob.execute
>>>>>>>>> DEBUG 09-19 11:47:25.760 o.a.w.p.h.s.ServletWebRequest:189
>>>>>>>>> [http-nio-0.0.0.0-5080-exec-10] - Calculating context relative path from:
>>>>>>>>> context path '/openmeetings', filterPrefix '', uri '/openmeetings/signin'
>>>>>>>>> DEBUG 09-19 11:47:25.761 o.a.w.p.PageAccessSynchronizer:100
>>>>>>>>> [http-nio-0.0.0.0-5080-exec-10] - 'http-nio-0.0.0.0-5080-exec-10'
>>>>>>>>> attempting to acquire lock to page with id '1'
>>>>>>>>> DEBUG 09-19 11:47:25.761 o.a.w.p.PageAccessSynchronizer:125
>>>>>>>>> [http-nio-0.0.0.0-5080-exec-10] - http-nio-0.0.0.0-5080-exec-10 acquired
>>>>>>>>> lock to page 1
>>>>>>>>> DEBUG 09-19 11:47:25.762 o.a.o.d.d.s.SessiondataDao:68
>>>>>>>>> [http-nio-0.0.0.0-5080-exec-10] - startsession :: startsession
>>>>>>>>> DEBUG 09-19 11:47:25.763 o.a.o.u.c.ManageCryptStyle:32
>>>>>>>>> [http-nio-0.0.0.0-5080-exec-10] - getInstanceOfCrypt::
>>>>>>>>> configKeyCryptClassName:
>>>>>>>>> org.apache.openmeetings.util.crypt.MD5Implementation
>>>>>>>>> DEBUG 09-19 11:47:25.788 o.a.o.l.LdapLoginManagement:165
>>>>>>>>> [http-nio-0.0.0.0-5080-exec-10] - LdapLoginmanagement.doLdapLogin
>>>>>>>>> ERROR 09-19 11:47:25.924 o.a.o.l.LdapLoginManagement:351
>>>>>>>>> [http-nio-0.0.0.0-5080-exec-10] - Not authenticated.
>>>>>>>>> org.apache.directory.api.ldap.model.exception.LdapAuthenticationException:
>>>>>>>>> 80090308: LdapErr: DSID-0C090334, comment: AcceptSecurityContext error,
>>>>>>>>> data 525, vece\00
>>>>>>>>> at
>>>>>>>>> org.apache.directory.api.ldap.model.message.ResultCodeEnum.processResponse(ResultCodeEnum.java:2021)
>>>>>>>>> ~[api-all-jar-1.0.0-M23.jar:1.0.0-M23]
>>>>>>>>> at
>>>>>>>>> org.apache.directory.ldap.client.api.AbstractLdapConnection.bind(AbstractLdapConnection.java:129)
>>>>>>>>> ~[api-all-jar-1.0.0-M23.jar:1.0.0-M23]
>>>>>>>>> at
>>>>>>>>> org.apache.openmeetings.ldap.LdapLoginManagement.login(LdapLoginManagement.java:275)
>>>>>>>>> ~[openmeetings-core-3.0.3-RELEASE.jar:na]
>>>>>>>>> at
>>>>>>>>> org.apache.openmeetings.web.app.WebSession.signIn(WebSession.java:257)
>>>>>>>>> [openmeetings-web-3.0.3-RELEASE.jar:na]
>>>>>>>>> at
>>>>>>>>> org.apache.openmeetings.web.pages.auth.SignInDialog.onSubmit(SignInDialog.java:190)
>>>>>>>>> [openmeetings-web-3.0.3-RELEASE.jar:na]
>>>>>>>>> at
>>>>>>>>> com.googlecode.wicket.jquery.ui.widget.dialog.AbstractFormDialog$DialogFormSubmitter.onSubmit(AbstractFormDialog.java:279)
>>>>>>>>> [wicket-jquery-ui-jar-6.16.0.jar:na]
>>>>>>>>> at
>>>>>>>>> org.apache.wicket.markup.html.form.Form.delegateSubmit(Form.java:1266)
>>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>>> at org.apache.wicket.markup.html.form.Form.process(Form.java:938)
>>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>>> at
>>>>>>>>> org.apache.wicket.markup.html.form.StatelessForm.process(StatelessForm.java:96)
>>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>>> at
>>>>>>>>> org.apache.wicket.markup.html.form.Form.onFormSubmitted(Form.java:770)
>>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>>> at
>>>>>>>>> com.googlecode.wicket.jquery.ui.widget.dialog.AbstractFormDialog.internalOnClick(AbstractFormDialog.java:200)
>>>>>>>>> [wicket-jquery-ui-jar-6.16.0.jar:na]
>>>>>>>>> at
>>>>>>>>> com.googlecode.wicket.jquery.ui.widget.dialog.AbstractDialog$1.onClick(AbstractDialog.java:439)
>>>>>>>>> [wicket-jquery-ui-jar-6.16.0.jar:na]
>>>>>>>>> at
>>>>>>>>> com.googlecode.wicket.jquery.ui.widget.dialog.DialogBehavior.onAjax(DialogBehavior.java:175)
>>>>>>>>> [wicket-jquery-ui-jar-6.16.0.jar:na]
>>>>>>>>> at
>>>>>>>>> com.googlecode.wicket.jquery.core.ajax.JQueryAjaxBehavior.respond(JQueryAjaxBehavior.java:171)
>>>>>>>>> [wicket-jquery-ui-core-jar-6.16.0.jar:na]
>>>>>>>>> at
>>>>>>>>> org.apache.wicket.ajax.AbstractDefaultAjaxBehavior.onRequest(AbstractDefaultAjaxBehavior.java:633)
>>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>>> at sun.reflect.GeneratedMethodAccessor91.invoke(Unknown Source)
>>>>>>>>> ~[na:na]
>>>>>>>>> at
>>>>>>>>> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
>>>>>>>>> ~[na:1.7.0_65]
>>>>>>>>> at java.lang.reflect.Method.invoke(Method.java:606) ~[na:1.7.0_65]
>>>>>>>>> at
>>>>>>>>> org.apache.wicket.RequestListenerInterface.internalInvoke(RequestListenerInterface.java:258)
>>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>>> at
>>>>>>>>> org.apache.wicket.RequestListenerInterface.invoke(RequestListenerInterface.java:241)
>>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>>> at
>>>>>>>>> org.apache.wicket.core.request.handler.ListenerInterfaceRequestHandler.invokeListener(ListenerInterfaceRequestHandler.java:250)
>>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>>> at
>>>>>>>>> org.apache.wicket.core.request.handler.ListenerInterfaceRequestHandler.respond(ListenerInterfaceRequestHandler.java:236)
>>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>>> at
>>>>>>>>> org.apache.wicket.request.cycle.RequestCycle$HandlerExecutor.respond(RequestCycle.java:862)
>>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>>> at
>>>>>>>>> org.apache.wicket.request.RequestHandlerStack.execute(RequestHandlerStack.java:64)
>>>>>>>>> [wicket-request-jar-6.16.0.jar:6.16.0]
>>>>>>>>> at
>>>>>>>>> org.apache.wicket.request.cycle.RequestCycle.execute(RequestCycle.java:261)
>>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>>> at
>>>>>>>>> org.apache.wicket.request.cycle.RequestCycle.processRequest(RequestCycle.java:218)
>>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>>> at
>>>>>>>>> org.apache.wicket.request.cycle.RequestCycle.processRequestAndDetach(RequestCycle.java:289)
>>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>>> at
>>>>>>>>> org.apache.wicket.protocol.ws.AbstractUpgradeFilter.processRequestCycle(AbstractUpgradeFilter.java:59)
>>>>>>>>> [wicket-native-websocket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>>> at
>>>>>>>>> org.apache.wicket.protocol.http.WicketFilter.processRequest(WicketFilter.java:201)
>>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>>> at
>>>>>>>>> org.apache.wicket.protocol.http.WicketFilter.doFilter(WicketFilter.java:282)
>>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>>> at
>>>>>>>>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:241)
>>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>>> at
>>>>>>>>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:208)
>>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>>> at
>>>>>>>>> org.red5.logging.LoggerContextFilter.doFilter(LoggerContextFilter.java:77)
>>>>>>>>> [red5-server.jar:na]
>>>>>>>>> at
>>>>>>>>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:241)
>>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>>> at
>>>>>>>>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:208)
>>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>>> at
>>>>>>>>> org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:220)
>>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>>> at
>>>>>>>>> org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:122)
>>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>>> at
>>>>>>>>> org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:501)
>>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>>> at
>>>>>>>>> org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:171)
>>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>>> at
>>>>>>>>> org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:103)
>>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>>> at
>>>>>>>>> org.apache.catalina.valves.AccessLogValve.invoke(AccessLogValve.java:950)
>>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>>> at
>>>>>>>>> org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:116)
>>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>>> at
>>>>>>>>> org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:408)
>>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>>> at
>>>>>>>>> org.apache.coyote.http11.AbstractHttp11Processor.process(AbstractHttp11Processor.java:1070)
>>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>>> at
>>>>>>>>> org.apache.coyote.AbstractProtocol$AbstractConnectionHandler.process(AbstractProtocol.java:611)
>>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>>> at
>>>>>>>>> org.apache.tomcat.util.net.NioEndpoint$SocketProcessor.doRun(NioEndpoint.java:1736)
>>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>>> at
>>>>>>>>> org.apache.tomcat.util.net.NioEndpoint$SocketProcessor.run(NioEndpoint.java:1695)
>>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>>> at
>>>>>>>>> java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1145)
>>>>>>>>> [na:1.7.0_65]
>>>>>>>>> at
>>>>>>>>> java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:615)
>>>>>>>>> [na:1.7.0_65]
>>>>>>>>> at
>>>>>>>>> org.apache.tomcat.util.threads.TaskThread$WrappingRunnable.run(TaskThread.java:61)
>>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>>> at java.lang.Thread.run(Thread.java:745) [na:1.7.0_65]
>>>>>>>>> DEBUG 09-19 11:47:25.927 o.a.w.u.c.CookieUtils:266
>>>>>>>>> [http-nio-0.0.0.0-5080-exec-10] - Unable to find Cookie with name=LoggedIn
>>>>>>>>> and request URI=signin?1-1.IBehaviorListener.1-signin
>>>>>>>>> DEBUG 09-19 11:47:25.929 o.a.w.f.FeedbackMessages:69
>>>>>>>>> [http-nio-0.0.0.0-5080-exec-10] - Adding feedback message '[FeedbackMessage
>>>>>>>>> message = "Invalid password", reporter = signin, level = ERROR]'
>>>>>>>>> DEBUG 09-19 11:47:25.929 o.a.w.u.c.CookieUtils:266
>>>>>>>>> [http-nio-0.0.0.0-5080-exec-10] - Unable to find Cookie with name=LoggedIn
>>>>>>>>> and request URI=signin?1-1.IBehaviorListener.1-signin
>>>>>>>>> DEBUG 09-19 11:47:25.930 o.a.wicket.Page:871
>>>>>>>>> [http-nio-0.0.0.0-5080-exec-10] - ending request for page [Page class =
>>>>>>>>> org.apache.openmeetings.web.pages.auth.SignInPage, id = 1, render count =
>>>>>>>>> 1], request
>>>>>>>>> org.apache.wicket.protocol.http.servlet.ServletWebRequest@a6e74b
>>>>>>>>> DEBUG 09-19 11:47:25.930 o.a.wicket.Page:871
>>>>>>>>> [http-nio-0.0.0.0-5080-exec-10] - ending request for page [Page class =
>>>>>>>>> org.apache.openmeetings.web.pages.auth.SignInPage, id = 1, render count =
>>>>>>>>> 1], request
>>>>>>>>> org.apache.wicket.protocol.http.servlet.ServletWebRequest@a6e74b
>>>>>>>>> DEBUG 09-19 11:47:25.930 o.a.wicket.Page:871
>>>>>>>>> [http-nio-0.0.0.0-5080-exec-10] - ending request for page [Page class =
>>>>>>>>> org.apache.openmeetings.web.pages.auth.SignInPage, id = 1, render count =
>>>>>>>>> 1], request
>>>>>>>>> org.apache.wicket.protocol.http.servlet.ServletWebRequest@a6e74b
>>>>>>>>> DEBUG 09-19 11:47:25.988
>>>>>>>>> o.a.w.p.AsynchronousDataStore$PageSavingRunnable:354
>>>>>>>>> [Wicket-PageSavingThread] - Saving asynchronously: Entry
>>>>>>>>> [sessionId=2A10AA69C3E771FF51FABD4D26A20559, pageId=1]...
>>>>>>>>> DEBUG 09-19 11:47:25.988 o.a.w.p.DiskDataStore:186
>>>>>>>>> [Wicket-PageSavingThread] - Storing data for page with id '1' in session
>>>>>>>>> with id '2A10AA69C3E771FF51FABD4D26A20559'
>>>>>>>>> DEBUG 09-19 11:47:25.988 o.a.w.p.PageAccessSynchronizer:195
>>>>>>>>> [http-nio-0.0.0.0-5080-exec-10] - 'http-nio-0.0.0.0-5080-exec-10' released
>>>>>>>>> lock to page with id '1'
>>>>>>>>> DEBUG 09-19 11:47:25.988 o.a.w.p.PageAccessSynchronizer:346
>>>>>>>>> [http-nio-0.0.0.0-5080-exec-10] - 'http-nio-0.0.0.0-5080-exec-10' notifying
>>>>>>>>> blocked threads
>>>>>>>>>
>>>>>>>>>
>>>>>>>>>
>>>>>>>>>
>>>>>>>>>
>>>>>>>>>
>>>>>>>>>
>>>>>>>>>
>>>>>>>>>
>>>>>>>>> And here is my conf file :
>>>>>>>>>
>>>>>>>>> #
>>>>>>>>> # Licensed to the Apache Software Foundation (ASF) under one
>>>>>>>>> # or more contributor license agreements. See the NOTICE file
>>>>>>>>> # distributed with this work for additional information
>>>>>>>>> # regarding copyright ownership. The ASF licenses this file
>>>>>>>>> # to you under the Apache License, Version 2.0 (the
>>>>>>>>> # "License"); you may not use this file except in compliance
>>>>>>>>> # with the License. You may obtain a copy of the License at
>>>>>>>>> #
>>>>>>>>> # http://www.apache.org/licenses/LICENSE-2.0
>>>>>>>>> #
>>>>>>>>> # Unless required by applicable law or agreed to in writing,
>>>>>>>>> # software distributed under the License is distributed on an
>>>>>>>>> # "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
>>>>>>>>> # KIND, either express or implied. See the License for the
>>>>>>>>> # specific language governing permissions and limitations
>>>>>>>>> # under the License.
>>>>>>>>> #
>>>>>>>>> #ConfigurationFile for LDAP Auth
>>>>>>>>> #ConfigKey 'ldap_config_path' must be set in DataBase Configration
>>>>>>>>> of OM and point to this file
>>>>>>>>> #o.becherer,14.01.2009
>>>>>>>>> #LDAP URL
>>>>>>>>> # This is the URL used to access your LDAP server.
>>>>>>>>> # if you want to use "ldaps://" links, please be aware that you
>>>>>>>>> need to import your CA certificate
>>>>>>>>> # to a java keystore and add the -Djavax.net.ssl.keyStore,
>>>>>>>>> -Djavax.net.ssl.keyStorePassword,
>>>>>>>>> # -Djavax.net.ssl.trustStore and
>>>>>>>>> -Djavax.net.ssl.trustStorePassword parameters to your
>>>>>>>>> # JAVA_OPT environment
>>>>>>>>> ldap_conn_host=@IP_of_my_AD
>>>>>>>>> ldap_conn_port=389
>>>>>>>>> ldap_conn_secure=false
>>>>>>>>> # Login distinguished name (DN) for Authentication on LDAP Server
>>>>>>>>> - keep empty if not required
>>>>>>>>> # Use full qualified LDAP DN
>>>>>>>>>
>>>>>>>>> ldap_admin_dn=CN=adconnect,OU=Comptes,OU=SI,OU=Services,OU=COMPANY,DC=mycompany,DC=priv
>>>>>>>>> # Loginpass for Authentication on LDAP Server - keep empty if not
>>>>>>>>> required
>>>>>>>>> ldap_passwd=pass_for_user_adconnect
>>>>>>>>> # base to search for userdata(of user, that wants to login)
>>>>>>>>> ldap_search_base=DC=mycompany,DC=priv
>>>>>>>>> # Fieldnames (can differ between Ldap servers)
>>>>>>>>> ldap_search_query=(uid=%s)
>>>>>>>>> # the scope of the search might be: OBJECT, ONELEVEL, SUBTREE
>>>>>>>>> ldap_search_scope=ONELEVEL
>>>>>>>>> # Ldap auth type(NONE, SEARCHANDBIND, SIMPLEBIND)
>>>>>>>>> # When using SIMPLEBIND a simple bind is performed on the LDAP
>>>>>>>>> server to check user authentication
>>>>>>>>> # When using NONE, the Ldap server is not used for authentication
>>>>>>>>> ldap_auth_type=SIMPLEBIND
>>>>>>>>> # userDN format, will be used to bind if ldap_auth_type=SIMPLEBIND
>>>>>>>>> # might be used to get provisionningDn in case ldap_auth_type=NONE
>>>>>>>>> ldap_userdn_format=uid=%s,OU=COMPANY,DC=mycompany,DC=priv
>>>>>>>>> # Ldap provisioning type(NONE, AUTOCREATE, AUTOUPDATE)
>>>>>>>>> ldap_provisionning=AUTOCREATE
>>>>>>>>> # Set this to 'true' if you want to use admin_dn to get user
>>>>>>>>> attributes
>>>>>>>>> # If any other value is set, user_dn will be used
>>>>>>>>> ldap_use_admin_to_get_attrs=true
>>>>>>>>> # Ldap-password synchronization to OM DB
>>>>>>>>> # Set this to 'true' if you want OM to synchronize the user
>>>>>>>>> Ldap-password to OM's internal DB
>>>>>>>>> # If you want to disable the feature, set this to any other
>>>>>>>>> string.
>>>>>>>>> # Defautl value is 'true'
>>>>>>>>> ldap_sync_password_to_om=true
>>>>>>>>> # Ldap user attributes mapping
>>>>>>>>> # Set the following internal OM user attributes to their
>>>>>>>>> corresponding Ldap-attribute
>>>>>>>>> ldap_user_attr_lastname=sn
>>>>>>>>> ldap_user_attr_firstname=givenName
>>>>>>>>> ldap_user_attr_mail=mail
>>>>>>>>> ldap_user_attr_street=streetAddress
>>>>>>>>> ldap_user_attr_additionalname=description
>>>>>>>>> ldap_user_attr_fax=facsimileTelephoneNumber
>>>>>>>>> ldap_user_attr_zip=postalCode
>>>>>>>>> ldap_user_attr_country=co
>>>>>>>>> ldap_user_attr_town=l
>>>>>>>>> ldap_user_attr_phone=telephoneNumber
>>>>>>>>> # optional, only absolute URLs make sense
>>>>>>>>> #ldap_user_picture_uri=picture_uri
>>>>>>>>> # optional
>>>>>>>>> # the timezone has to match any timezone available in Java,
>>>>>>>>> otherwise the timezone defined in the value of
>>>>>>>>> # the conf_key "default.timezone" in OpenMeetings "configurations"
>>>>>>>>> table
>>>>>>>>> #ldap_user_timezone=timezone
>>>>>>>>> # Ldap ignore upper/lower case, convert all input to lower case
>>>>>>>>> ldap_use_lower_case=false
>>>>>>>>>
>>>>>>>>>
>>>>>>>>>
>>>>>>>>> Thanks a lot for your help.
>>>>>>>>>
>>>>>>>>> Greg.
>>>>>>>>>
>>>>>>>>>
>>>>>>>>>
>>>>>>>>>
>>>>>>>>> 2014-09-18 17:52 GMT+02:00 Maxim Solodovnik <so...@gmail.com>
>>>>>>>>> :
>>>>>>>>>
>>>>>>>>>> please check this URL:
>>>>>>>>>> http://kb.juniper.net/InfoCenter/index?page=content&id=KB17098
>>>>>>>>>> According to it you have "User not found"
>>>>>>>>>>
>>>>>>>>>> could you provide more ldap related logs?
>>>>>>>>>> it might be Admin not found or user entered in login form not
>>>>>>>>>> found depending on your settings
>>>>>>>>>>
>>>>>>>>>> On 18 September 2014 21:43, Grégory Mangeney <ma...@gmail.com>
>>>>>>>>>> wrote:
>>>>>>>>>>
>>>>>>>>>>> Hello, It's me again...
>>>>>>>>>>> I'm back.
>>>>>>>>>>> Now I have a new problem to connect to my AD...
>>>>>>>>>>> In log file it is write : *ERROR ......... Not authenticated*
>>>>>>>>>>> witch is a quite better message than before but after that it is
>>>>>>>>>>> write : *LdapErr: DSID-0C090334, comment: AcceptSecurityContext
>>>>>>>>>>> error, data 525, vece\00 at........*
>>>>>>>>>>>
>>>>>>>>>>> I try to understand my problem but "AcceptSecurityContext error"
>>>>>>>>>>> seems to speack about a security problem.
>>>>>>>>>>> I have set my ldap_conn_secure=false in om_ldap.conf.
>>>>>>>>>>> I don't understand what could be my problem.
>>>>>>>>>>>
>>>>>>>>>>> thanks a lot for your ideas.
>>>>>>>>>>>
>>>>>>>>>>> Greg.
>>>>>>>>>>> 2014-09-18 15:37 GMT+02:00 Grégory Mangeney <ma...@gmail.com>
>>>>>>>>>>> :
>>>>>>>>>>>
>>>>>>>>>>>> Ok, I finally understand that I have to put the filename and
>>>>>>>>>>>> only the filename without
>>>>>>>>>>>> */usr/lib/red5/webapps/openmeetings/conf/*
>>>>>>>>>>>>
>>>>>>>>>>>> Now I have a new message whitch said me invalid password...
>>>>>>>>>>>> It's quite better...
>>>>>>>>>>>> Thank you...
>>>>>>>>>>>> I could continue to try to set it now.
>>>>>>>>>>>> bye
>>>>>>>>>>>>
>>>>>>>>>>>> Greg.
>>>>>>>>>>>>
>>>>>>>>>>>>
>>>>>>>>>>>>
>>>>>>>>>>>> 2014-09-18 15:06 GMT+02:00 Maxim Solodovnik <
>>>>>>>>>>>> solomax666@gmail.com>:
>>>>>>>>>>>>
>>>>>>>>>>>>> you need to write file name relative to
>>>>>>>>>>>>> webapps/openmeetings/conf folder
>>>>>>>>>>>>> in your case *om_ldap.cfg *should be specified
>>>>>>>>>>>>>
>>>>>>>>>>>>> On 18 September 2014 20:04, Grégory Mangeney <
>>>>>>>>>>>>> mangeney@gmail.com> wrote:
>>>>>>>>>>>>>
>>>>>>>>>>>>>> Thank you very much but I don't understand very well.
>>>>>>>>>>>>>> I think I put the right information...
>>>>>>>>>>>>>> Do you want to say that I have to write :
>>>>>>>>>>>>>> */usr/lib/red5/webapps/openmeetings/conf/* without the
>>>>>>>>>>>>>> filename *om_ldap.cfg* at the end?
>>>>>>>>>>>>>> Thanks for your help
>>>>>>>>>>>>>> Greg
>>>>>>>>>>>>>>
>>>>>>>>>>>>>>
>>>>>>>>>>>>>> 2014-09-18 14:52 GMT+02:00 Maxim Solodovnik <
>>>>>>>>>>>>>> solomax666@gmail.com>:
>>>>>>>>>>>>>>
>>>>>>>>>>>>>>> AFAIK the path should be relative to /usr/lib/red5/webapps/
>>>>>>>>>>>>>>> openmeetings/conf
>>>>>>>>>>>>>>> Please change this path
>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>> Additionally you can file JIRA issue to add check to the
>>>>>>>>>>>>>>> Admin screen (so path will be validated on enter)
>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>> On 18 September 2014 19:44, Grégory Mangeney <
>>>>>>>>>>>>>>> mangeney@gmail.com> wrote:
>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>> Hello,
>>>>>>>>>>>>>>>> I have the same problem: I could not connect with AD.
>>>>>>>>>>>>>>>> I have the domain at the login screen,
>>>>>>>>>>>>>>>> I am using the 3.0.3.
>>>>>>>>>>>>>>>> I found this line in my log file :* ERROR 09-18
>>>>>>>>>>>>>>>> 14:28:33.994 o.a.o.l.LdapLoginManagement:147 [http-nio-0.0.0.0-5080-exec-4]
>>>>>>>>>>>>>>>> - Error on LdapLogin : Configurationdata couldnt be retrieved!*
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>> This seem strange because in my LDAP config (in
>>>>>>>>>>>>>>>> openmeetings Administration/LDAP menu), I put the correct path in the
>>>>>>>>>>>>>>>> "Config file name" : /usr/lib/red5/webapps/openmeetings/conf/om_ldap.cfg
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>> Why is this error appeared : *Configurationdata couldnt be
>>>>>>>>>>>>>>>> retrieved! *???
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>> Thanks a lot
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>> Greg
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>> 2014-09-17 12:52 GMT+02:00 Maxim Solodovnik <
>>>>>>>>>>>>>>>> solomax666@gmail.com>:
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>> great :)
>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>> On 17 September 2014 17:46, Teddy Jayasaputra <
>>>>>>>>>>>>>>>>> teddy.jayasaputra@ocbcnisp.com> wrote:
>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>> Dear Maxim,
>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>> After close look to console log.
>>>>>>>>>>>>>>>>>> We found this error :
>>>>>>>>>>>>>>>>>> ERROR 09-17 17:28:33.278 LdapLoginManagement.java 135070
>>>>>>>>>>>>>>>>>> 285 org.apache.openmeetings.ldap.LdapLoginManagement
>>>>>>>>>>>>>>>>>> [http-nio-0.0.0.0-5080-exec-6] - User not found in OM DB and
>>>>>>>>>>>>>>>>>> Provisionning.AUTOCREATE was not set
>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>> After we change ldapconfiguration file from
>>>>>>>>>>>>>>>>>> ldap_provisionning=NONE to AUTOCREATE we can login using AD.
>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>> thanks.
>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>> Best Regards,
>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>> -Teddy Jayasaputra-
>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>> On 9/17/2014 4:25 PM, Maxim Solodovnik wrote:
>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>> do you have your AD domain on the login screen?
>>>>>>>>>>>>>>>>>> are there errors in the log?
>>>>>>>>>>>>>>>>>> what OM version are you using?
>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>> On 17 September 2014 16:02, ARI HENDIAWAN <
>>>>>>>>>>>>>>>>>> ari.hendiawan@ocbcnisp.com> wrote:
>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>> Dear all,
>>>>>>>>>>>>>>>>>>> please we need extra information how to integrate
>>>>>>>>>>>>>>>>>>> openmeetings 3.0.3 with AD?
>>>>>>>>>>>>>>>>>>> we already setting on ldap.conf and still problem.. if
>>>>>>>>>>>>>>>>>>> we saw on AD , user that want sign-in openmeetings success, but on login
>>>>>>>>>>>>>>>>>>> menu openmeetings shown error "invalid password"
>>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>> Tks
>>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>> --
>>>>>>>>>>>>>>>>>>> Disclaimer :
>>>>>>>>>>>>>>>>>>> Confidential information may be contained in this
>>>>>>>>>>>>>>>>>>> message. If you are not the intended recipient, you are strictly prohibited
>>>>>>>>>>>>>>>>>>> and may be unlawful to use, copy, store, distribute, disclose or
>>>>>>>>>>>>>>>>>>> communicate any part of it to others and you are obliged to return it
>>>>>>>>>>>>>>>>>>> immediately to sender or notify us and delete the e-mail and any
>>>>>>>>>>>>>>>>>>> attachments from your system. Opinions, conclusions and other information
>>>>>>>>>>>>>>>>>>> in this e-mail that do not relate to the official business of any PT Bank
>>>>>>>>>>>>>>>>>>> OCBC NISP Tbk shall be understood as neither given nor endorsed by it. No
>>>>>>>>>>>>>>>>>>> assumption of responsibility or liability whatsoever is undertaken by PT
>>>>>>>>>>>>>>>>>>> Bank OCBC NISP Tbk in respect of prohibited and unauthorised use by any
>>>>>>>>>>>>>>>>>>> other person.
>>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>> --
>>>>>>>>>>>>>>>>>> WBR
>>>>>>>>>>>>>>>>>> Maxim aka solomax
>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>> --
>>>>>>>>>>>>>>>>>> Disclaimer :
>>>>>>>>>>>>>>>>>> Confidential information may be contained in this
>>>>>>>>>>>>>>>>>> message. If you are not the intended recipient, you are strictly prohibited
>>>>>>>>>>>>>>>>>> and may be unlawful to use, copy, store, distribute, disclose or
>>>>>>>>>>>>>>>>>> communicate any part of it to others and you are obliged to return it
>>>>>>>>>>>>>>>>>> immediately to sender or notify us and delete the e-mail and any
>>>>>>>>>>>>>>>>>> attachments from your system. Opinions, conclusions and other information
>>>>>>>>>>>>>>>>>> in this e-mail that do not relate to the official business of any PT Bank
>>>>>>>>>>>>>>>>>> OCBC NISP Tbk shall be understood as neither given nor endorsed by it. No
>>>>>>>>>>>>>>>>>> assumption of responsibility or liability whatsoever is undertaken by PT
>>>>>>>>>>>>>>>>>> Bank OCBC NISP Tbk in respect of prohibited and unauthorised use by any
>>>>>>>>>>>>>>>>>> other person.
>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>> --
>>>>>>>>>>>>>>>>> WBR
>>>>>>>>>>>>>>>>> Maxim aka solomax
>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>> --
>>>>>>>>>>>>>>> WBR
>>>>>>>>>>>>>>> Maxim aka solomax
>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>
>>>>>>>>>>>>>>
>>>>>>>>>>>>>
>>>>>>>>>>>>>
>>>>>>>>>>>>> --
>>>>>>>>>>>>> WBR
>>>>>>>>>>>>> Maxim aka solomax
>>>>>>>>>>>>>
>>>>>>>>>>>>
>>>>>>>>>>>>
>>>>>>>>>>>
>>>>>>>>>>
>>>>>>>>>>
>>>>>>>>>> --
>>>>>>>>>> WBR
>>>>>>>>>> Maxim aka solomax
>>>>>>>>>>
>>>>>>>>>
>>>>>>>>>
>>>>>>>>
>>>>>>>>
>>>>>>>> --
>>>>>>>> WBR
>>>>>>>> Maxim aka solomax
>>>>>>>>
>>>>>>>
>>>>>>>
>>>>>>
>>>>>>
>>>>>> --
>>>>>> WBR
>>>>>> Maxim aka solomax
>>>>>>
>>>>>
>>>>>
>>>
>>
>
>
> --
> WBR
> Maxim aka solomax
>
Re: need info about problem when integration AD
Posted by Maxim Solodovnik <so...@gmail.com>.
Please get build #67 here:
https://builds.apache.org/view/M-R/view/OpenMeetings/job/Openmeetings%203.0.x/
I have no LDAP infrastructure to test :( I 100% rely on community in this
So thanks for the testing :)
On 23 September 2014 01:17, Grégory Mangeney <ma...@gmail.com> wrote:
> Windows Server 2003 R2
>
> 2014-09-22 17:13 GMT+02:00 Grégory Mangeney <ma...@gmail.com>:
>
>> Ok,thank you for that.
>> For information I am using a Microsoft Active Directory in object version
>> 31
>>
>> I get this information by tapping dsquery *
>> cn=schema,cn=configuration,dc=mycompany,dc=priv -scope base -attr
>> objectVersion
>>
>> Good evening.
>>
>> Best regards.
>>
>> Greg.
>>
>> 2014-09-22 16:40 GMT+02:00 Maxim Solodovnik <so...@gmail.com>:
>>
>>> You have these Paramaribo in your configuration:
>>> ldap_search_base=DC=mycompany,DC=priv
>>> # Fieldnames (can differ between Ldap servers)
>>> ldap_search_query=(uid=%s)
>>>
>>> I guess nothing is found. Not sure I never saw error like yours.
>>>
>>> Will create 3.0.4 nightly fly you later today (with updated ldap
>>> library) if error will be the same I'll ask ldap library developers for the
>>> help
>>> On Sep 22, 2014 9:05 PM, "Grégory Mangeney" <ma...@gmail.com> wrote:
>>>
>>>> a bad search query?
>>>>
>>>> In this case, the loging error message shouldn't be somthing like :
>>>> "Login/password do not exist" ?
>>>>
>>>> How could I check this point...
>>>> I do not modified the source code!
>>>>
>>>> 2014-09-22 11:25 GMT+02:00 Maxim Solodovnik <so...@gmail.com>:
>>>>
>>>>> it seems like nothing was found
>>>>> Maybe bad search query?
>>>>>
>>>>> On 22 September 2014 15:55, Grégory Mangeney <ma...@gmail.com>
>>>>> wrote:
>>>>>
>>>>>> Hello Maxim.
>>>>>> Thanks a lot for your answer.
>>>>>> You're helpfull...
>>>>>>
>>>>>> I had ever try with SEARCHANDBIND but it still not working...
>>>>>> So I set it again to give you my logs...
>>>>>> The error is quite different but I could not understand what is the
>>>>>> problem...
>>>>>>
>>>>>> In the login screen I have the following message in red : "Unknown
>>>>>> error. Please report this to the administrator."
>>>>>>
>>>>>>
>>>>>>
>>>>>>
>>>>>> Here is my logs :
>>>>>>
>>>>>> ERROR 09-22 10:34:34.814 o.a.o.l.LdapLoginManagement:356
>>>>>> [http-nio-0.0.0.0-5080-exec-4] - Unexpected exception.
>>>>>> org.apache.directory.api.ldap.model.cursor.CursorLdapReferralException:
>>>>>> null
>>>>>> at
>>>>>> org.apache.directory.ldap.client.api.EntryCursorImpl.get(EntryCursorImpl.java:164)
>>>>>> ~[api-all-jar-1.0.0-M23.jar:1.0.0-M23]
>>>>>> at
>>>>>> org.apache.directory.ldap.client.api.EntryCursorImpl.get(EntryCursorImpl.java:50)
>>>>>> ~[api-all-jar-1.0.0-M23.jar:1.0.0-M23]
>>>>>> at
>>>>>> org.apache.openmeetings.ldap.LdapLoginManagement.login(LdapLoginManagement.java:258)
>>>>>> ~[openmeetings-core-3.0.3-RELEASE.jar:na]
>>>>>> at
>>>>>> org.apache.openmeetings.web.app.WebSession.signIn(WebSession.java:257)
>>>>>> [openmeetings-web-3.0.3-RELEASE.jar:na]
>>>>>> at
>>>>>> org.apache.openmeetings.web.pages.auth.SignInDialog.onSubmit(SignInDialog.java:190)
>>>>>> [openmeetings-web-3.0.3-RELEASE.jar:na]
>>>>>> at
>>>>>> com.googlecode.wicket.jquery.ui.widget.dialog.AbstractFormDialog$DialogFormSubmitter.onSubmit(AbstractFormDialog.java:279)
>>>>>> [wicket-jquery-ui-jar-6.16.0.jar:na]
>>>>>> at
>>>>>> org.apache.wicket.markup.html.form.Form.delegateSubmit(Form.java:1266)
>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>> at org.apache.wicket.markup.html.form.Form.process(Form.java:938)
>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>> at
>>>>>> org.apache.wicket.markup.html.form.StatelessForm.process(StatelessForm.java:96)
>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>> at
>>>>>> org.apache.wicket.markup.html.form.Form.onFormSubmitted(Form.java:770)
>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>> at
>>>>>> com.googlecode.wicket.jquery.ui.widget.dialog.AbstractFormDialog.internalOnClick(AbstractFormDialog.java:200)
>>>>>> [wicket-jquery-ui-jar-6.16.0.jar:na]
>>>>>> at
>>>>>> com.googlecode.wicket.jquery.ui.widget.dialog.AbstractDialog$1.onClick(AbstractDialog.java:439)
>>>>>> [wicket-jquery-ui-jar-6.16.0.jar:na]
>>>>>> at
>>>>>> com.googlecode.wicket.jquery.ui.widget.dialog.DialogBehavior.onAjax(DialogBehavior.java:175)
>>>>>> [wicket-jquery-ui-jar-6.16.0.jar:na]
>>>>>> at
>>>>>> com.googlecode.wicket.jquery.core.ajax.JQueryAjaxBehavior.respond(JQueryAjaxBehavior.java:171)
>>>>>> [wicket-jquery-ui-core-jar-6.16.0.jar:na]
>>>>>> at
>>>>>> org.apache.wicket.ajax.AbstractDefaultAjaxBehavior.onRequest(AbstractDefaultAjaxBehavior.java:633)
>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>> at sun.reflect.GeneratedMethodAccessor91.invoke(Unknown Source)
>>>>>> ~[na:na]
>>>>>> at
>>>>>> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
>>>>>> ~[na:1.7.0_65]
>>>>>> at java.lang.reflect.Method.invoke(Method.java:606) ~[na:1.7.0_65]
>>>>>> at
>>>>>> org.apache.wicket.RequestListenerInterface.internalInvoke(RequestListenerInterface.java:258)
>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>> at
>>>>>> org.apache.wicket.RequestListenerInterface.invoke(RequestListenerInterface.java:241)
>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>> at
>>>>>> org.apache.wicket.core.request.handler.ListenerInterfaceRequestHandler.invokeListener(ListenerInterfaceRequestHandler.java:250)
>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>> at
>>>>>> org.apache.wicket.core.request.handler.ListenerInterfaceRequestHandler.respond(ListenerInterfaceRequestHandler.java:236)
>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>> at
>>>>>> org.apache.wicket.request.cycle.RequestCycle$HandlerExecutor.respond(RequestCycle.java:862)
>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>> at
>>>>>> org.apache.wicket.request.RequestHandlerStack.execute(RequestHandlerStack.java:64)
>>>>>> [wicket-request-jar-6.16.0.jar:6.16.0]
>>>>>> at
>>>>>> org.apache.wicket.request.cycle.RequestCycle.execute(RequestCycle.java:261)
>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>> at
>>>>>> org.apache.wicket.request.cycle.RequestCycle.processRequest(RequestCycle.java:218)
>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>> at
>>>>>> org.apache.wicket.request.cycle.RequestCycle.processRequestAndDetach(RequestCycle.java:289)
>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>> at
>>>>>> org.apache.wicket.protocol.ws.AbstractUpgradeFilter.processRequestCycle(AbstractUpgradeFilter.java:59)
>>>>>> [wicket-native-websocket-core-jar-6.16.0.jar:6.16.0]
>>>>>> at
>>>>>> org.apache.wicket.protocol.http.WicketFilter.processRequest(WicketFilter.java:201)
>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>> at
>>>>>> org.apache.wicket.protocol.http.WicketFilter.doFilter(WicketFilter.java:282)
>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>> at
>>>>>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:241)
>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>> at
>>>>>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:208)
>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>> at
>>>>>> org.red5.logging.LoggerContextFilter.doFilter(LoggerContextFilter.java:77)
>>>>>> [red5-server.jar:na]
>>>>>> at
>>>>>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:241)
>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>> at
>>>>>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:208)
>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>> at
>>>>>> org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:220)
>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>> at
>>>>>> org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:122)
>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>> at
>>>>>> org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:501)
>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>> at
>>>>>> org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:171)
>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>> at
>>>>>> org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:103)
>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>> at
>>>>>> org.apache.catalina.valves.AccessLogValve.invoke(AccessLogValve.java:950)
>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>> at
>>>>>> org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:116)
>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>> at
>>>>>> org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:408)
>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>> at
>>>>>> org.apache.coyote.http11.AbstractHttp11Processor.process(AbstractHttp11Processor.java:1070)
>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>> at
>>>>>> org.apache.coyote.AbstractProtocol$AbstractConnectionHandler.process(AbstractProtocol.java:611)
>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>> at
>>>>>> org.apache.tomcat.util.net.NioEndpoint$SocketProcessor.doRun(NioEndpoint.java:1736)
>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>> at
>>>>>> org.apache.tomcat.util.net.NioEndpoint$SocketProcessor.run(NioEndpoint.java:1695)
>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>> at
>>>>>> java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1145)
>>>>>> [na:1.7.0_65]
>>>>>> at
>>>>>> java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:615)
>>>>>> [na:1.7.0_65]
>>>>>> at
>>>>>> org.apache.tomcat.util.threads.TaskThread$WrappingRunnable.run(TaskThread.java:61)
>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>> at java.lang.Thread.run(Thread.java:745) [na:1.7.0_65]
>>>>>> DEBUG 09-22 10:34:34.817 o.a.w.u.c.CookieUtils:266
>>>>>> [http-nio-0.0.0.0-5080-exec-4] - Unable to find Cookie with name=LoggedIn
>>>>>> and request URI=signin?1-1.IBehaviorListener.1-signin
>>>>>> DEBUG 09-22 10:34:34.820 o.a.w.f.FeedbackMessages:69
>>>>>> [http-nio-0.0.0.0-5080-exec-4] - Adding feedback message '[FeedbackMessage
>>>>>> message = "Unknown error. Please report this to the administrator.",
>>>>>> reporter = signin, level = ERROR]'
>>>>>> DEBUG 09-22 10:34:34.821 o.a.w.u.c.CookieUtils:266
>>>>>> [http-nio-0.0.0.0-5080-exec-4] - Unable to find Cookie with name=LoggedIn
>>>>>> and request URI=signin?1-1.IBehaviorListener.1-signin
>>>>>> DEBUG 09-22 10:34:34.822 o.a.wicket.Page:871
>>>>>> [http-nio-0.0.0.0-5080-exec-4] - ending request for page [Page class =
>>>>>> org.apache.openmeetings.web.pages.auth.SignInPage, id = 1, render count =
>>>>>> 1], request
>>>>>> org.apache.wicket.protocol.http.servlet.ServletWebRequest@16618f3
>>>>>> DEBUG 09-22 10:34:34.822 o.a.wicket.Page:871
>>>>>> [http-nio-0.0.0.0-5080-exec-4] - ending request for page [Page class =
>>>>>> org.apache.openmeetings.web.pages.auth.SignInPage, id = 1, render count =
>>>>>> 1], request
>>>>>> org.apache.wicket.protocol.http.servlet.ServletWebRequest@16618f3
>>>>>> DEBUG 09-22 10:34:34.823 o.a.wicket.Page:871
>>>>>> [http-nio-0.0.0.0-5080-exec-4] - ending request for page [Page class =
>>>>>> org.apache.openmeetings.web.pages.auth.SignInPage, id = 1, render count =
>>>>>> 1], request
>>>>>> org.apache.wicket.protocol.http.servlet.ServletWebRequest@16618f3
>>>>>> DEBUG 09-22 10:34:34.828
>>>>>> o.a.w.p.AsynchronousDataStore$PageSavingRunnable:354
>>>>>> [Wicket-PageSavingThread] - Saving asynchronously: Entry
>>>>>> [sessionId=907ABBB232B18743F2A67024DA18F185, pageId=1]...
>>>>>> DEBUG 09-22 10:34:34.828 o.a.w.p.DiskDataStore:186
>>>>>> [Wicket-PageSavingThread] - Storing data for page with id '1' in session
>>>>>> with id '907ABBB232B18743F2A67024DA18F185'
>>>>>> DEBUG 09-22 10:34:34.828 o.a.w.p.PageAccessSynchronizer:195
>>>>>> [http-nio-0.0.0.0-5080-exec-4] - 'http-nio-0.0.0.0-5080-exec-4' released
>>>>>> lock to page with id '1'
>>>>>> DEBUG 09-22 10:34:34.828 o.a.w.p.PageAccessSynchronizer:346
>>>>>> [http-nio-0.0.0.0-5080-exec-4] - 'http-nio-0.0.0.0-5080-exec-4' notifying
>>>>>> blocked threads
>>>>>> DEBUG 09-22 10:34:36.341 o.a.o.m.MailHandler:249
>>>>>> [org.springframework.scheduling.quartz.SchedulerFactoryBean#0_Worker-1] -
>>>>>> resetSendingStatus enter ...
>>>>>>
>>>>>>
>>>>>>
>>>>>> Thank you for your time.
>>>>>>
>>>>>> Greg.
>>>>>>
>>>>>> 2014-09-20 8:59 GMT+02:00 Maxim Solodovnik <so...@gmail.com>:
>>>>>>
>>>>>>> According to the logs and config SIMPLEBIND failed for the user
>>>>>>> specified
>>>>>>> please try SEARCHANDBIND
>>>>>>>
>>>>>>> On 19 September 2014 17:09, Grégory Mangeney <ma...@gmail.com>
>>>>>>> wrote:
>>>>>>>
>>>>>>>> Hello.
>>>>>>>> Thank you for your link.
>>>>>>>> It appeare that I have a 525 error (user not found).
>>>>>>>>
>>>>>>>> I think the problem must be in my config file because I'm sure that
>>>>>>>> my user is good because I use it for an other app witch use it to connect
>>>>>>>> with AD.
>>>>>>>>
>>>>>>>> As you ask me i give you more line of my log file, after that I
>>>>>>>> would like to show you my conf file...
>>>>>>>> Maybe you will find a setting withch is not good!
>>>>>>>>
>>>>>>>>
>>>>>>>> So here is my log file whene I try to connect :
>>>>>>>> DEBUG 09-19 11:47:01.337 o.a.o.q.s.MeetingReminderJob:34
>>>>>>>> [org.springframework.scheduling.quartz.SchedulerFactoryBean#0_Worker-2] -
>>>>>>>> MeetingReminderJob.execute
>>>>>>>> DEBUG 09-19 11:47:25.760 o.a.w.p.h.s.ServletWebRequest:189
>>>>>>>> [http-nio-0.0.0.0-5080-exec-10] - Calculating context relative path from:
>>>>>>>> context path '/openmeetings', filterPrefix '', uri '/openmeetings/signin'
>>>>>>>> DEBUG 09-19 11:47:25.761 o.a.w.p.PageAccessSynchronizer:100
>>>>>>>> [http-nio-0.0.0.0-5080-exec-10] - 'http-nio-0.0.0.0-5080-exec-10'
>>>>>>>> attempting to acquire lock to page with id '1'
>>>>>>>> DEBUG 09-19 11:47:25.761 o.a.w.p.PageAccessSynchronizer:125
>>>>>>>> [http-nio-0.0.0.0-5080-exec-10] - http-nio-0.0.0.0-5080-exec-10 acquired
>>>>>>>> lock to page 1
>>>>>>>> DEBUG 09-19 11:47:25.762 o.a.o.d.d.s.SessiondataDao:68
>>>>>>>> [http-nio-0.0.0.0-5080-exec-10] - startsession :: startsession
>>>>>>>> DEBUG 09-19 11:47:25.763 o.a.o.u.c.ManageCryptStyle:32
>>>>>>>> [http-nio-0.0.0.0-5080-exec-10] - getInstanceOfCrypt::
>>>>>>>> configKeyCryptClassName:
>>>>>>>> org.apache.openmeetings.util.crypt.MD5Implementation
>>>>>>>> DEBUG 09-19 11:47:25.788 o.a.o.l.LdapLoginManagement:165
>>>>>>>> [http-nio-0.0.0.0-5080-exec-10] - LdapLoginmanagement.doLdapLogin
>>>>>>>> ERROR 09-19 11:47:25.924 o.a.o.l.LdapLoginManagement:351
>>>>>>>> [http-nio-0.0.0.0-5080-exec-10] - Not authenticated.
>>>>>>>> org.apache.directory.api.ldap.model.exception.LdapAuthenticationException:
>>>>>>>> 80090308: LdapErr: DSID-0C090334, comment: AcceptSecurityContext error,
>>>>>>>> data 525, vece\00
>>>>>>>> at
>>>>>>>> org.apache.directory.api.ldap.model.message.ResultCodeEnum.processResponse(ResultCodeEnum.java:2021)
>>>>>>>> ~[api-all-jar-1.0.0-M23.jar:1.0.0-M23]
>>>>>>>> at
>>>>>>>> org.apache.directory.ldap.client.api.AbstractLdapConnection.bind(AbstractLdapConnection.java:129)
>>>>>>>> ~[api-all-jar-1.0.0-M23.jar:1.0.0-M23]
>>>>>>>> at
>>>>>>>> org.apache.openmeetings.ldap.LdapLoginManagement.login(LdapLoginManagement.java:275)
>>>>>>>> ~[openmeetings-core-3.0.3-RELEASE.jar:na]
>>>>>>>> at
>>>>>>>> org.apache.openmeetings.web.app.WebSession.signIn(WebSession.java:257)
>>>>>>>> [openmeetings-web-3.0.3-RELEASE.jar:na]
>>>>>>>> at
>>>>>>>> org.apache.openmeetings.web.pages.auth.SignInDialog.onSubmit(SignInDialog.java:190)
>>>>>>>> [openmeetings-web-3.0.3-RELEASE.jar:na]
>>>>>>>> at
>>>>>>>> com.googlecode.wicket.jquery.ui.widget.dialog.AbstractFormDialog$DialogFormSubmitter.onSubmit(AbstractFormDialog.java:279)
>>>>>>>> [wicket-jquery-ui-jar-6.16.0.jar:na]
>>>>>>>> at
>>>>>>>> org.apache.wicket.markup.html.form.Form.delegateSubmit(Form.java:1266)
>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>> at org.apache.wicket.markup.html.form.Form.process(Form.java:938)
>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>> at
>>>>>>>> org.apache.wicket.markup.html.form.StatelessForm.process(StatelessForm.java:96)
>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>> at
>>>>>>>> org.apache.wicket.markup.html.form.Form.onFormSubmitted(Form.java:770)
>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>> at
>>>>>>>> com.googlecode.wicket.jquery.ui.widget.dialog.AbstractFormDialog.internalOnClick(AbstractFormDialog.java:200)
>>>>>>>> [wicket-jquery-ui-jar-6.16.0.jar:na]
>>>>>>>> at
>>>>>>>> com.googlecode.wicket.jquery.ui.widget.dialog.AbstractDialog$1.onClick(AbstractDialog.java:439)
>>>>>>>> [wicket-jquery-ui-jar-6.16.0.jar:na]
>>>>>>>> at
>>>>>>>> com.googlecode.wicket.jquery.ui.widget.dialog.DialogBehavior.onAjax(DialogBehavior.java:175)
>>>>>>>> [wicket-jquery-ui-jar-6.16.0.jar:na]
>>>>>>>> at
>>>>>>>> com.googlecode.wicket.jquery.core.ajax.JQueryAjaxBehavior.respond(JQueryAjaxBehavior.java:171)
>>>>>>>> [wicket-jquery-ui-core-jar-6.16.0.jar:na]
>>>>>>>> at
>>>>>>>> org.apache.wicket.ajax.AbstractDefaultAjaxBehavior.onRequest(AbstractDefaultAjaxBehavior.java:633)
>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>> at sun.reflect.GeneratedMethodAccessor91.invoke(Unknown Source)
>>>>>>>> ~[na:na]
>>>>>>>> at
>>>>>>>> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
>>>>>>>> ~[na:1.7.0_65]
>>>>>>>> at java.lang.reflect.Method.invoke(Method.java:606) ~[na:1.7.0_65]
>>>>>>>> at
>>>>>>>> org.apache.wicket.RequestListenerInterface.internalInvoke(RequestListenerInterface.java:258)
>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>> at
>>>>>>>> org.apache.wicket.RequestListenerInterface.invoke(RequestListenerInterface.java:241)
>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>> at
>>>>>>>> org.apache.wicket.core.request.handler.ListenerInterfaceRequestHandler.invokeListener(ListenerInterfaceRequestHandler.java:250)
>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>> at
>>>>>>>> org.apache.wicket.core.request.handler.ListenerInterfaceRequestHandler.respond(ListenerInterfaceRequestHandler.java:236)
>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>> at
>>>>>>>> org.apache.wicket.request.cycle.RequestCycle$HandlerExecutor.respond(RequestCycle.java:862)
>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>> at
>>>>>>>> org.apache.wicket.request.RequestHandlerStack.execute(RequestHandlerStack.java:64)
>>>>>>>> [wicket-request-jar-6.16.0.jar:6.16.0]
>>>>>>>> at
>>>>>>>> org.apache.wicket.request.cycle.RequestCycle.execute(RequestCycle.java:261)
>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>> at
>>>>>>>> org.apache.wicket.request.cycle.RequestCycle.processRequest(RequestCycle.java:218)
>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>> at
>>>>>>>> org.apache.wicket.request.cycle.RequestCycle.processRequestAndDetach(RequestCycle.java:289)
>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>> at
>>>>>>>> org.apache.wicket.protocol.ws.AbstractUpgradeFilter.processRequestCycle(AbstractUpgradeFilter.java:59)
>>>>>>>> [wicket-native-websocket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>> at
>>>>>>>> org.apache.wicket.protocol.http.WicketFilter.processRequest(WicketFilter.java:201)
>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>> at
>>>>>>>> org.apache.wicket.protocol.http.WicketFilter.doFilter(WicketFilter.java:282)
>>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>>> at
>>>>>>>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:241)
>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>> at
>>>>>>>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:208)
>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>> at
>>>>>>>> org.red5.logging.LoggerContextFilter.doFilter(LoggerContextFilter.java:77)
>>>>>>>> [red5-server.jar:na]
>>>>>>>> at
>>>>>>>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:241)
>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>> at
>>>>>>>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:208)
>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>> at
>>>>>>>> org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:220)
>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>> at
>>>>>>>> org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:122)
>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>> at
>>>>>>>> org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:501)
>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>> at
>>>>>>>> org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:171)
>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>> at
>>>>>>>> org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:103)
>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>> at
>>>>>>>> org.apache.catalina.valves.AccessLogValve.invoke(AccessLogValve.java:950)
>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>> at
>>>>>>>> org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:116)
>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>> at
>>>>>>>> org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:408)
>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>> at
>>>>>>>> org.apache.coyote.http11.AbstractHttp11Processor.process(AbstractHttp11Processor.java:1070)
>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>> at
>>>>>>>> org.apache.coyote.AbstractProtocol$AbstractConnectionHandler.process(AbstractProtocol.java:611)
>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>> at
>>>>>>>> org.apache.tomcat.util.net.NioEndpoint$SocketProcessor.doRun(NioEndpoint.java:1736)
>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>> at
>>>>>>>> org.apache.tomcat.util.net.NioEndpoint$SocketProcessor.run(NioEndpoint.java:1695)
>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>> at
>>>>>>>> java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1145)
>>>>>>>> [na:1.7.0_65]
>>>>>>>> at
>>>>>>>> java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:615)
>>>>>>>> [na:1.7.0_65]
>>>>>>>> at
>>>>>>>> org.apache.tomcat.util.threads.TaskThread$WrappingRunnable.run(TaskThread.java:61)
>>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>>> at java.lang.Thread.run(Thread.java:745) [na:1.7.0_65]
>>>>>>>> DEBUG 09-19 11:47:25.927 o.a.w.u.c.CookieUtils:266
>>>>>>>> [http-nio-0.0.0.0-5080-exec-10] - Unable to find Cookie with name=LoggedIn
>>>>>>>> and request URI=signin?1-1.IBehaviorListener.1-signin
>>>>>>>> DEBUG 09-19 11:47:25.929 o.a.w.f.FeedbackMessages:69
>>>>>>>> [http-nio-0.0.0.0-5080-exec-10] - Adding feedback message '[FeedbackMessage
>>>>>>>> message = "Invalid password", reporter = signin, level = ERROR]'
>>>>>>>> DEBUG 09-19 11:47:25.929 o.a.w.u.c.CookieUtils:266
>>>>>>>> [http-nio-0.0.0.0-5080-exec-10] - Unable to find Cookie with name=LoggedIn
>>>>>>>> and request URI=signin?1-1.IBehaviorListener.1-signin
>>>>>>>> DEBUG 09-19 11:47:25.930 o.a.wicket.Page:871
>>>>>>>> [http-nio-0.0.0.0-5080-exec-10] - ending request for page [Page class =
>>>>>>>> org.apache.openmeetings.web.pages.auth.SignInPage, id = 1, render count =
>>>>>>>> 1], request
>>>>>>>> org.apache.wicket.protocol.http.servlet.ServletWebRequest@a6e74b
>>>>>>>> DEBUG 09-19 11:47:25.930 o.a.wicket.Page:871
>>>>>>>> [http-nio-0.0.0.0-5080-exec-10] - ending request for page [Page class =
>>>>>>>> org.apache.openmeetings.web.pages.auth.SignInPage, id = 1, render count =
>>>>>>>> 1], request
>>>>>>>> org.apache.wicket.protocol.http.servlet.ServletWebRequest@a6e74b
>>>>>>>> DEBUG 09-19 11:47:25.930 o.a.wicket.Page:871
>>>>>>>> [http-nio-0.0.0.0-5080-exec-10] - ending request for page [Page class =
>>>>>>>> org.apache.openmeetings.web.pages.auth.SignInPage, id = 1, render count =
>>>>>>>> 1], request
>>>>>>>> org.apache.wicket.protocol.http.servlet.ServletWebRequest@a6e74b
>>>>>>>> DEBUG 09-19 11:47:25.988
>>>>>>>> o.a.w.p.AsynchronousDataStore$PageSavingRunnable:354
>>>>>>>> [Wicket-PageSavingThread] - Saving asynchronously: Entry
>>>>>>>> [sessionId=2A10AA69C3E771FF51FABD4D26A20559, pageId=1]...
>>>>>>>> DEBUG 09-19 11:47:25.988 o.a.w.p.DiskDataStore:186
>>>>>>>> [Wicket-PageSavingThread] - Storing data for page with id '1' in session
>>>>>>>> with id '2A10AA69C3E771FF51FABD4D26A20559'
>>>>>>>> DEBUG 09-19 11:47:25.988 o.a.w.p.PageAccessSynchronizer:195
>>>>>>>> [http-nio-0.0.0.0-5080-exec-10] - 'http-nio-0.0.0.0-5080-exec-10' released
>>>>>>>> lock to page with id '1'
>>>>>>>> DEBUG 09-19 11:47:25.988 o.a.w.p.PageAccessSynchronizer:346
>>>>>>>> [http-nio-0.0.0.0-5080-exec-10] - 'http-nio-0.0.0.0-5080-exec-10' notifying
>>>>>>>> blocked threads
>>>>>>>>
>>>>>>>>
>>>>>>>>
>>>>>>>>
>>>>>>>>
>>>>>>>>
>>>>>>>>
>>>>>>>>
>>>>>>>>
>>>>>>>> And here is my conf file :
>>>>>>>>
>>>>>>>> #
>>>>>>>> # Licensed to the Apache Software Foundation (ASF) under one
>>>>>>>> # or more contributor license agreements. See the NOTICE file
>>>>>>>> # distributed with this work for additional information
>>>>>>>> # regarding copyright ownership. The ASF licenses this file
>>>>>>>> # to you under the Apache License, Version 2.0 (the
>>>>>>>> # "License"); you may not use this file except in compliance
>>>>>>>> # with the License. You may obtain a copy of the License at
>>>>>>>> #
>>>>>>>> # http://www.apache.org/licenses/LICENSE-2.0
>>>>>>>> #
>>>>>>>> # Unless required by applicable law or agreed to in writing,
>>>>>>>> # software distributed under the License is distributed on an
>>>>>>>> # "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
>>>>>>>> # KIND, either express or implied. See the License for the
>>>>>>>> # specific language governing permissions and limitations
>>>>>>>> # under the License.
>>>>>>>> #
>>>>>>>> #ConfigurationFile for LDAP Auth
>>>>>>>> #ConfigKey 'ldap_config_path' must be set in DataBase Configration
>>>>>>>> of OM and point to this file
>>>>>>>> #o.becherer,14.01.2009
>>>>>>>> #LDAP URL
>>>>>>>> # This is the URL used to access your LDAP server.
>>>>>>>> # if you want to use "ldaps://" links, please be aware that you
>>>>>>>> need to import your CA certificate
>>>>>>>> # to a java keystore and add the -Djavax.net.ssl.keyStore,
>>>>>>>> -Djavax.net.ssl.keyStorePassword,
>>>>>>>> # -Djavax.net.ssl.trustStore and
>>>>>>>> -Djavax.net.ssl.trustStorePassword parameters to your
>>>>>>>> # JAVA_OPT environment
>>>>>>>> ldap_conn_host=@IP_of_my_AD
>>>>>>>> ldap_conn_port=389
>>>>>>>> ldap_conn_secure=false
>>>>>>>> # Login distinguished name (DN) for Authentication on LDAP Server -
>>>>>>>> keep empty if not required
>>>>>>>> # Use full qualified LDAP DN
>>>>>>>>
>>>>>>>> ldap_admin_dn=CN=adconnect,OU=Comptes,OU=SI,OU=Services,OU=COMPANY,DC=mycompany,DC=priv
>>>>>>>> # Loginpass for Authentication on LDAP Server - keep empty if not
>>>>>>>> required
>>>>>>>> ldap_passwd=pass_for_user_adconnect
>>>>>>>> # base to search for userdata(of user, that wants to login)
>>>>>>>> ldap_search_base=DC=mycompany,DC=priv
>>>>>>>> # Fieldnames (can differ between Ldap servers)
>>>>>>>> ldap_search_query=(uid=%s)
>>>>>>>> # the scope of the search might be: OBJECT, ONELEVEL, SUBTREE
>>>>>>>> ldap_search_scope=ONELEVEL
>>>>>>>> # Ldap auth type(NONE, SEARCHANDBIND, SIMPLEBIND)
>>>>>>>> # When using SIMPLEBIND a simple bind is performed on the LDAP
>>>>>>>> server to check user authentication
>>>>>>>> # When using NONE, the Ldap server is not used for authentication
>>>>>>>> ldap_auth_type=SIMPLEBIND
>>>>>>>> # userDN format, will be used to bind if ldap_auth_type=SIMPLEBIND
>>>>>>>> # might be used to get provisionningDn in case ldap_auth_type=NONE
>>>>>>>> ldap_userdn_format=uid=%s,OU=COMPANY,DC=mycompany,DC=priv
>>>>>>>> # Ldap provisioning type(NONE, AUTOCREATE, AUTOUPDATE)
>>>>>>>> ldap_provisionning=AUTOCREATE
>>>>>>>> # Set this to 'true' if you want to use admin_dn to get user
>>>>>>>> attributes
>>>>>>>> # If any other value is set, user_dn will be used
>>>>>>>> ldap_use_admin_to_get_attrs=true
>>>>>>>> # Ldap-password synchronization to OM DB
>>>>>>>> # Set this to 'true' if you want OM to synchronize the user
>>>>>>>> Ldap-password to OM's internal DB
>>>>>>>> # If you want to disable the feature, set this to any other string.
>>>>>>>> # Defautl value is 'true'
>>>>>>>> ldap_sync_password_to_om=true
>>>>>>>> # Ldap user attributes mapping
>>>>>>>> # Set the following internal OM user attributes to their
>>>>>>>> corresponding Ldap-attribute
>>>>>>>> ldap_user_attr_lastname=sn
>>>>>>>> ldap_user_attr_firstname=givenName
>>>>>>>> ldap_user_attr_mail=mail
>>>>>>>> ldap_user_attr_street=streetAddress
>>>>>>>> ldap_user_attr_additionalname=description
>>>>>>>> ldap_user_attr_fax=facsimileTelephoneNumber
>>>>>>>> ldap_user_attr_zip=postalCode
>>>>>>>> ldap_user_attr_country=co
>>>>>>>> ldap_user_attr_town=l
>>>>>>>> ldap_user_attr_phone=telephoneNumber
>>>>>>>> # optional, only absolute URLs make sense
>>>>>>>> #ldap_user_picture_uri=picture_uri
>>>>>>>> # optional
>>>>>>>> # the timezone has to match any timezone available in Java,
>>>>>>>> otherwise the timezone defined in the value of
>>>>>>>> # the conf_key "default.timezone" in OpenMeetings "configurations"
>>>>>>>> table
>>>>>>>> #ldap_user_timezone=timezone
>>>>>>>> # Ldap ignore upper/lower case, convert all input to lower case
>>>>>>>> ldap_use_lower_case=false
>>>>>>>>
>>>>>>>>
>>>>>>>>
>>>>>>>> Thanks a lot for your help.
>>>>>>>>
>>>>>>>> Greg.
>>>>>>>>
>>>>>>>>
>>>>>>>>
>>>>>>>>
>>>>>>>> 2014-09-18 17:52 GMT+02:00 Maxim Solodovnik <so...@gmail.com>:
>>>>>>>>
>>>>>>>>> please check this URL:
>>>>>>>>> http://kb.juniper.net/InfoCenter/index?page=content&id=KB17098
>>>>>>>>> According to it you have "User not found"
>>>>>>>>>
>>>>>>>>> could you provide more ldap related logs?
>>>>>>>>> it might be Admin not found or user entered in login form not
>>>>>>>>> found depending on your settings
>>>>>>>>>
>>>>>>>>> On 18 September 2014 21:43, Grégory Mangeney <ma...@gmail.com>
>>>>>>>>> wrote:
>>>>>>>>>
>>>>>>>>>> Hello, It's me again...
>>>>>>>>>> I'm back.
>>>>>>>>>> Now I have a new problem to connect to my AD...
>>>>>>>>>> In log file it is write : *ERROR ......... Not authenticated*
>>>>>>>>>> witch is a quite better message than before but after that it is
>>>>>>>>>> write : *LdapErr: DSID-0C090334, comment: AcceptSecurityContext
>>>>>>>>>> error, data 525, vece\00 at........*
>>>>>>>>>>
>>>>>>>>>> I try to understand my problem but "AcceptSecurityContext error"
>>>>>>>>>> seems to speack about a security problem.
>>>>>>>>>> I have set my ldap_conn_secure=false in om_ldap.conf.
>>>>>>>>>> I don't understand what could be my problem.
>>>>>>>>>>
>>>>>>>>>> thanks a lot for your ideas.
>>>>>>>>>>
>>>>>>>>>> Greg.
>>>>>>>>>> 2014-09-18 15:37 GMT+02:00 Grégory Mangeney <ma...@gmail.com>:
>>>>>>>>>>
>>>>>>>>>>> Ok, I finally understand that I have to put the filename and
>>>>>>>>>>> only the filename without
>>>>>>>>>>> */usr/lib/red5/webapps/openmeetings/conf/*
>>>>>>>>>>>
>>>>>>>>>>> Now I have a new message whitch said me invalid password...
>>>>>>>>>>> It's quite better...
>>>>>>>>>>> Thank you...
>>>>>>>>>>> I could continue to try to set it now.
>>>>>>>>>>> bye
>>>>>>>>>>>
>>>>>>>>>>> Greg.
>>>>>>>>>>>
>>>>>>>>>>>
>>>>>>>>>>>
>>>>>>>>>>> 2014-09-18 15:06 GMT+02:00 Maxim Solodovnik <
>>>>>>>>>>> solomax666@gmail.com>:
>>>>>>>>>>>
>>>>>>>>>>>> you need to write file name relative to
>>>>>>>>>>>> webapps/openmeetings/conf folder
>>>>>>>>>>>> in your case *om_ldap.cfg *should be specified
>>>>>>>>>>>>
>>>>>>>>>>>> On 18 September 2014 20:04, Grégory Mangeney <
>>>>>>>>>>>> mangeney@gmail.com> wrote:
>>>>>>>>>>>>
>>>>>>>>>>>>> Thank you very much but I don't understand very well.
>>>>>>>>>>>>> I think I put the right information...
>>>>>>>>>>>>> Do you want to say that I have to write :
>>>>>>>>>>>>> */usr/lib/red5/webapps/openmeetings/conf/* without the
>>>>>>>>>>>>> filename *om_ldap.cfg* at the end?
>>>>>>>>>>>>> Thanks for your help
>>>>>>>>>>>>> Greg
>>>>>>>>>>>>>
>>>>>>>>>>>>>
>>>>>>>>>>>>> 2014-09-18 14:52 GMT+02:00 Maxim Solodovnik <
>>>>>>>>>>>>> solomax666@gmail.com>:
>>>>>>>>>>>>>
>>>>>>>>>>>>>> AFAIK the path should be relative to /usr/lib/red5/webapps/
>>>>>>>>>>>>>> openmeetings/conf
>>>>>>>>>>>>>> Please change this path
>>>>>>>>>>>>>>
>>>>>>>>>>>>>> Additionally you can file JIRA issue to add check to the
>>>>>>>>>>>>>> Admin screen (so path will be validated on enter)
>>>>>>>>>>>>>>
>>>>>>>>>>>>>> On 18 September 2014 19:44, Grégory Mangeney <
>>>>>>>>>>>>>> mangeney@gmail.com> wrote:
>>>>>>>>>>>>>>
>>>>>>>>>>>>>>> Hello,
>>>>>>>>>>>>>>> I have the same problem: I could not connect with AD.
>>>>>>>>>>>>>>> I have the domain at the login screen,
>>>>>>>>>>>>>>> I am using the 3.0.3.
>>>>>>>>>>>>>>> I found this line in my log file :* ERROR 09-18
>>>>>>>>>>>>>>> 14:28:33.994 o.a.o.l.LdapLoginManagement:147 [http-nio-0.0.0.0-5080-exec-4]
>>>>>>>>>>>>>>> - Error on LdapLogin : Configurationdata couldnt be retrieved!*
>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>> This seem strange because in my LDAP config (in openmeetings
>>>>>>>>>>>>>>> Administration/LDAP menu), I put the correct path in the "Config file name"
>>>>>>>>>>>>>>> : /usr/lib/red5/webapps/openmeetings/conf/om_ldap.cfg
>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>> Why is this error appeared : *Configurationdata couldnt be
>>>>>>>>>>>>>>> retrieved! *???
>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>> Thanks a lot
>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>> Greg
>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>> 2014-09-17 12:52 GMT+02:00 Maxim Solodovnik <
>>>>>>>>>>>>>>> solomax666@gmail.com>:
>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>> great :)
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>> On 17 September 2014 17:46, Teddy Jayasaputra <
>>>>>>>>>>>>>>>> teddy.jayasaputra@ocbcnisp.com> wrote:
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>> Dear Maxim,
>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>> After close look to console log.
>>>>>>>>>>>>>>>>> We found this error :
>>>>>>>>>>>>>>>>> ERROR 09-17 17:28:33.278 LdapLoginManagement.java 135070
>>>>>>>>>>>>>>>>> 285 org.apache.openmeetings.ldap.LdapLoginManagement
>>>>>>>>>>>>>>>>> [http-nio-0.0.0.0-5080-exec-6] - User not found in OM DB and
>>>>>>>>>>>>>>>>> Provisionning.AUTOCREATE was not set
>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>> After we change ldapconfiguration file from
>>>>>>>>>>>>>>>>> ldap_provisionning=NONE to AUTOCREATE we can login using AD.
>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>> thanks.
>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>> Best Regards,
>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>> -Teddy Jayasaputra-
>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>> On 9/17/2014 4:25 PM, Maxim Solodovnik wrote:
>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>> do you have your AD domain on the login screen?
>>>>>>>>>>>>>>>>> are there errors in the log?
>>>>>>>>>>>>>>>>> what OM version are you using?
>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>> On 17 September 2014 16:02, ARI HENDIAWAN <
>>>>>>>>>>>>>>>>> ari.hendiawan@ocbcnisp.com> wrote:
>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>> Dear all,
>>>>>>>>>>>>>>>>>> please we need extra information how to integrate
>>>>>>>>>>>>>>>>>> openmeetings 3.0.3 with AD?
>>>>>>>>>>>>>>>>>> we already setting on ldap.conf and still problem.. if we
>>>>>>>>>>>>>>>>>> saw on AD , user that want sign-in openmeetings success, but on login menu
>>>>>>>>>>>>>>>>>> openmeetings shown error "invalid password"
>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>> Tks
>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>> --
>>>>>>>>>>>>>>>>>> Disclaimer :
>>>>>>>>>>>>>>>>>> Confidential information may be contained in this
>>>>>>>>>>>>>>>>>> message. If you are not the intended recipient, you are strictly prohibited
>>>>>>>>>>>>>>>>>> and may be unlawful to use, copy, store, distribute, disclose or
>>>>>>>>>>>>>>>>>> communicate any part of it to others and you are obliged to return it
>>>>>>>>>>>>>>>>>> immediately to sender or notify us and delete the e-mail and any
>>>>>>>>>>>>>>>>>> attachments from your system. Opinions, conclusions and other information
>>>>>>>>>>>>>>>>>> in this e-mail that do not relate to the official business of any PT Bank
>>>>>>>>>>>>>>>>>> OCBC NISP Tbk shall be understood as neither given nor endorsed by it. No
>>>>>>>>>>>>>>>>>> assumption of responsibility or liability whatsoever is undertaken by PT
>>>>>>>>>>>>>>>>>> Bank OCBC NISP Tbk in respect of prohibited and unauthorised use by any
>>>>>>>>>>>>>>>>>> other person.
>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>> --
>>>>>>>>>>>>>>>>> WBR
>>>>>>>>>>>>>>>>> Maxim aka solomax
>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>> --
>>>>>>>>>>>>>>>>> Disclaimer :
>>>>>>>>>>>>>>>>> Confidential information may be contained in this message.
>>>>>>>>>>>>>>>>> If you are not the intended recipient, you are strictly prohibited and may
>>>>>>>>>>>>>>>>> be unlawful to use, copy, store, distribute, disclose or communicate any
>>>>>>>>>>>>>>>>> part of it to others and you are obliged to return it immediately to sender
>>>>>>>>>>>>>>>>> or notify us and delete the e-mail and any attachments from your system.
>>>>>>>>>>>>>>>>> Opinions, conclusions and other information in this e-mail that do not
>>>>>>>>>>>>>>>>> relate to the official business of any PT Bank OCBC NISP Tbk shall be
>>>>>>>>>>>>>>>>> understood as neither given nor endorsed by it. No assumption of
>>>>>>>>>>>>>>>>> responsibility or liability whatsoever is undertaken by PT Bank OCBC NISP
>>>>>>>>>>>>>>>>> Tbk in respect of prohibited and unauthorised use by any other person.
>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>> --
>>>>>>>>>>>>>>>> WBR
>>>>>>>>>>>>>>>> Maxim aka solomax
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>
>>>>>>>>>>>>>>
>>>>>>>>>>>>>> --
>>>>>>>>>>>>>> WBR
>>>>>>>>>>>>>> Maxim aka solomax
>>>>>>>>>>>>>>
>>>>>>>>>>>>>
>>>>>>>>>>>>>
>>>>>>>>>>>>
>>>>>>>>>>>>
>>>>>>>>>>>> --
>>>>>>>>>>>> WBR
>>>>>>>>>>>> Maxim aka solomax
>>>>>>>>>>>>
>>>>>>>>>>>
>>>>>>>>>>>
>>>>>>>>>>
>>>>>>>>>
>>>>>>>>>
>>>>>>>>> --
>>>>>>>>> WBR
>>>>>>>>> Maxim aka solomax
>>>>>>>>>
>>>>>>>>
>>>>>>>>
>>>>>>>
>>>>>>>
>>>>>>> --
>>>>>>> WBR
>>>>>>> Maxim aka solomax
>>>>>>>
>>>>>>
>>>>>>
>>>>>
>>>>>
>>>>> --
>>>>> WBR
>>>>> Maxim aka solomax
>>>>>
>>>>
>>>>
>>
>
--
WBR
Maxim aka solomax
Re: need info about problem when integration AD
Posted by Grégory Mangeney <ma...@gmail.com>.
Windows Server 2003 R2
2014-09-22 17:13 GMT+02:00 Grégory Mangeney <ma...@gmail.com>:
> Ok,thank you for that.
> For information I am using a Microsoft Active Directory in object version
> 31
>
> I get this information by tapping dsquery *
> cn=schema,cn=configuration,dc=mycompany,dc=priv -scope base -attr
> objectVersion
>
> Good evening.
>
> Best regards.
>
> Greg.
>
> 2014-09-22 16:40 GMT+02:00 Maxim Solodovnik <so...@gmail.com>:
>
>> You have these Paramaribo in your configuration:
>> ldap_search_base=DC=mycompany,DC=priv
>> # Fieldnames (can differ between Ldap servers)
>> ldap_search_query=(uid=%s)
>>
>> I guess nothing is found. Not sure I never saw error like yours.
>>
>> Will create 3.0.4 nightly fly you later today (with updated ldap library)
>> if error will be the same I'll ask ldap library developers for the help
>> On Sep 22, 2014 9:05 PM, "Grégory Mangeney" <ma...@gmail.com> wrote:
>>
>>> a bad search query?
>>>
>>> In this case, the loging error message shouldn't be somthing like :
>>> "Login/password do not exist" ?
>>>
>>> How could I check this point...
>>> I do not modified the source code!
>>>
>>> 2014-09-22 11:25 GMT+02:00 Maxim Solodovnik <so...@gmail.com>:
>>>
>>>> it seems like nothing was found
>>>> Maybe bad search query?
>>>>
>>>> On 22 September 2014 15:55, Grégory Mangeney <ma...@gmail.com>
>>>> wrote:
>>>>
>>>>> Hello Maxim.
>>>>> Thanks a lot for your answer.
>>>>> You're helpfull...
>>>>>
>>>>> I had ever try with SEARCHANDBIND but it still not working...
>>>>> So I set it again to give you my logs...
>>>>> The error is quite different but I could not understand what is the
>>>>> problem...
>>>>>
>>>>> In the login screen I have the following message in red : "Unknown
>>>>> error. Please report this to the administrator."
>>>>>
>>>>>
>>>>>
>>>>>
>>>>> Here is my logs :
>>>>>
>>>>> ERROR 09-22 10:34:34.814 o.a.o.l.LdapLoginManagement:356
>>>>> [http-nio-0.0.0.0-5080-exec-4] - Unexpected exception.
>>>>> org.apache.directory.api.ldap.model.cursor.CursorLdapReferralException:
>>>>> null
>>>>> at
>>>>> org.apache.directory.ldap.client.api.EntryCursorImpl.get(EntryCursorImpl.java:164)
>>>>> ~[api-all-jar-1.0.0-M23.jar:1.0.0-M23]
>>>>> at
>>>>> org.apache.directory.ldap.client.api.EntryCursorImpl.get(EntryCursorImpl.java:50)
>>>>> ~[api-all-jar-1.0.0-M23.jar:1.0.0-M23]
>>>>> at
>>>>> org.apache.openmeetings.ldap.LdapLoginManagement.login(LdapLoginManagement.java:258)
>>>>> ~[openmeetings-core-3.0.3-RELEASE.jar:na]
>>>>> at
>>>>> org.apache.openmeetings.web.app.WebSession.signIn(WebSession.java:257)
>>>>> [openmeetings-web-3.0.3-RELEASE.jar:na]
>>>>> at
>>>>> org.apache.openmeetings.web.pages.auth.SignInDialog.onSubmit(SignInDialog.java:190)
>>>>> [openmeetings-web-3.0.3-RELEASE.jar:na]
>>>>> at
>>>>> com.googlecode.wicket.jquery.ui.widget.dialog.AbstractFormDialog$DialogFormSubmitter.onSubmit(AbstractFormDialog.java:279)
>>>>> [wicket-jquery-ui-jar-6.16.0.jar:na]
>>>>> at
>>>>> org.apache.wicket.markup.html.form.Form.delegateSubmit(Form.java:1266)
>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>> at org.apache.wicket.markup.html.form.Form.process(Form.java:938)
>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>> at
>>>>> org.apache.wicket.markup.html.form.StatelessForm.process(StatelessForm.java:96)
>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>> at
>>>>> org.apache.wicket.markup.html.form.Form.onFormSubmitted(Form.java:770)
>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>> at
>>>>> com.googlecode.wicket.jquery.ui.widget.dialog.AbstractFormDialog.internalOnClick(AbstractFormDialog.java:200)
>>>>> [wicket-jquery-ui-jar-6.16.0.jar:na]
>>>>> at
>>>>> com.googlecode.wicket.jquery.ui.widget.dialog.AbstractDialog$1.onClick(AbstractDialog.java:439)
>>>>> [wicket-jquery-ui-jar-6.16.0.jar:na]
>>>>> at
>>>>> com.googlecode.wicket.jquery.ui.widget.dialog.DialogBehavior.onAjax(DialogBehavior.java:175)
>>>>> [wicket-jquery-ui-jar-6.16.0.jar:na]
>>>>> at
>>>>> com.googlecode.wicket.jquery.core.ajax.JQueryAjaxBehavior.respond(JQueryAjaxBehavior.java:171)
>>>>> [wicket-jquery-ui-core-jar-6.16.0.jar:na]
>>>>> at
>>>>> org.apache.wicket.ajax.AbstractDefaultAjaxBehavior.onRequest(AbstractDefaultAjaxBehavior.java:633)
>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>> at sun.reflect.GeneratedMethodAccessor91.invoke(Unknown Source)
>>>>> ~[na:na]
>>>>> at
>>>>> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
>>>>> ~[na:1.7.0_65]
>>>>> at java.lang.reflect.Method.invoke(Method.java:606) ~[na:1.7.0_65]
>>>>> at
>>>>> org.apache.wicket.RequestListenerInterface.internalInvoke(RequestListenerInterface.java:258)
>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>> at
>>>>> org.apache.wicket.RequestListenerInterface.invoke(RequestListenerInterface.java:241)
>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>> at
>>>>> org.apache.wicket.core.request.handler.ListenerInterfaceRequestHandler.invokeListener(ListenerInterfaceRequestHandler.java:250)
>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>> at
>>>>> org.apache.wicket.core.request.handler.ListenerInterfaceRequestHandler.respond(ListenerInterfaceRequestHandler.java:236)
>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>> at
>>>>> org.apache.wicket.request.cycle.RequestCycle$HandlerExecutor.respond(RequestCycle.java:862)
>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>> at
>>>>> org.apache.wicket.request.RequestHandlerStack.execute(RequestHandlerStack.java:64)
>>>>> [wicket-request-jar-6.16.0.jar:6.16.0]
>>>>> at
>>>>> org.apache.wicket.request.cycle.RequestCycle.execute(RequestCycle.java:261)
>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>> at
>>>>> org.apache.wicket.request.cycle.RequestCycle.processRequest(RequestCycle.java:218)
>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>> at
>>>>> org.apache.wicket.request.cycle.RequestCycle.processRequestAndDetach(RequestCycle.java:289)
>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>> at
>>>>> org.apache.wicket.protocol.ws.AbstractUpgradeFilter.processRequestCycle(AbstractUpgradeFilter.java:59)
>>>>> [wicket-native-websocket-core-jar-6.16.0.jar:6.16.0]
>>>>> at
>>>>> org.apache.wicket.protocol.http.WicketFilter.processRequest(WicketFilter.java:201)
>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>> at
>>>>> org.apache.wicket.protocol.http.WicketFilter.doFilter(WicketFilter.java:282)
>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>> at
>>>>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:241)
>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>> at
>>>>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:208)
>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>> at
>>>>> org.red5.logging.LoggerContextFilter.doFilter(LoggerContextFilter.java:77)
>>>>> [red5-server.jar:na]
>>>>> at
>>>>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:241)
>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>> at
>>>>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:208)
>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>> at
>>>>> org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:220)
>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>> at
>>>>> org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:122)
>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>> at
>>>>> org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:501)
>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>> at
>>>>> org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:171)
>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>> at
>>>>> org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:103)
>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>> at
>>>>> org.apache.catalina.valves.AccessLogValve.invoke(AccessLogValve.java:950)
>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>> at
>>>>> org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:116)
>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>> at
>>>>> org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:408)
>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>> at
>>>>> org.apache.coyote.http11.AbstractHttp11Processor.process(AbstractHttp11Processor.java:1070)
>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>> at
>>>>> org.apache.coyote.AbstractProtocol$AbstractConnectionHandler.process(AbstractProtocol.java:611)
>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>> at
>>>>> org.apache.tomcat.util.net.NioEndpoint$SocketProcessor.doRun(NioEndpoint.java:1736)
>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>> at
>>>>> org.apache.tomcat.util.net.NioEndpoint$SocketProcessor.run(NioEndpoint.java:1695)
>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>> at
>>>>> java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1145)
>>>>> [na:1.7.0_65]
>>>>> at
>>>>> java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:615)
>>>>> [na:1.7.0_65]
>>>>> at
>>>>> org.apache.tomcat.util.threads.TaskThread$WrappingRunnable.run(TaskThread.java:61)
>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>> at java.lang.Thread.run(Thread.java:745) [na:1.7.0_65]
>>>>> DEBUG 09-22 10:34:34.817 o.a.w.u.c.CookieUtils:266
>>>>> [http-nio-0.0.0.0-5080-exec-4] - Unable to find Cookie with name=LoggedIn
>>>>> and request URI=signin?1-1.IBehaviorListener.1-signin
>>>>> DEBUG 09-22 10:34:34.820 o.a.w.f.FeedbackMessages:69
>>>>> [http-nio-0.0.0.0-5080-exec-4] - Adding feedback message '[FeedbackMessage
>>>>> message = "Unknown error. Please report this to the administrator.",
>>>>> reporter = signin, level = ERROR]'
>>>>> DEBUG 09-22 10:34:34.821 o.a.w.u.c.CookieUtils:266
>>>>> [http-nio-0.0.0.0-5080-exec-4] - Unable to find Cookie with name=LoggedIn
>>>>> and request URI=signin?1-1.IBehaviorListener.1-signin
>>>>> DEBUG 09-22 10:34:34.822 o.a.wicket.Page:871
>>>>> [http-nio-0.0.0.0-5080-exec-4] - ending request for page [Page class =
>>>>> org.apache.openmeetings.web.pages.auth.SignInPage, id = 1, render count =
>>>>> 1], request
>>>>> org.apache.wicket.protocol.http.servlet.ServletWebRequest@16618f3
>>>>> DEBUG 09-22 10:34:34.822 o.a.wicket.Page:871
>>>>> [http-nio-0.0.0.0-5080-exec-4] - ending request for page [Page class =
>>>>> org.apache.openmeetings.web.pages.auth.SignInPage, id = 1, render count =
>>>>> 1], request
>>>>> org.apache.wicket.protocol.http.servlet.ServletWebRequest@16618f3
>>>>> DEBUG 09-22 10:34:34.823 o.a.wicket.Page:871
>>>>> [http-nio-0.0.0.0-5080-exec-4] - ending request for page [Page class =
>>>>> org.apache.openmeetings.web.pages.auth.SignInPage, id = 1, render count =
>>>>> 1], request
>>>>> org.apache.wicket.protocol.http.servlet.ServletWebRequest@16618f3
>>>>> DEBUG 09-22 10:34:34.828
>>>>> o.a.w.p.AsynchronousDataStore$PageSavingRunnable:354
>>>>> [Wicket-PageSavingThread] - Saving asynchronously: Entry
>>>>> [sessionId=907ABBB232B18743F2A67024DA18F185, pageId=1]...
>>>>> DEBUG 09-22 10:34:34.828 o.a.w.p.DiskDataStore:186
>>>>> [Wicket-PageSavingThread] - Storing data for page with id '1' in session
>>>>> with id '907ABBB232B18743F2A67024DA18F185'
>>>>> DEBUG 09-22 10:34:34.828 o.a.w.p.PageAccessSynchronizer:195
>>>>> [http-nio-0.0.0.0-5080-exec-4] - 'http-nio-0.0.0.0-5080-exec-4' released
>>>>> lock to page with id '1'
>>>>> DEBUG 09-22 10:34:34.828 o.a.w.p.PageAccessSynchronizer:346
>>>>> [http-nio-0.0.0.0-5080-exec-4] - 'http-nio-0.0.0.0-5080-exec-4' notifying
>>>>> blocked threads
>>>>> DEBUG 09-22 10:34:36.341 o.a.o.m.MailHandler:249
>>>>> [org.springframework.scheduling.quartz.SchedulerFactoryBean#0_Worker-1] -
>>>>> resetSendingStatus enter ...
>>>>>
>>>>>
>>>>>
>>>>> Thank you for your time.
>>>>>
>>>>> Greg.
>>>>>
>>>>> 2014-09-20 8:59 GMT+02:00 Maxim Solodovnik <so...@gmail.com>:
>>>>>
>>>>>> According to the logs and config SIMPLEBIND failed for the user
>>>>>> specified
>>>>>> please try SEARCHANDBIND
>>>>>>
>>>>>> On 19 September 2014 17:09, Grégory Mangeney <ma...@gmail.com>
>>>>>> wrote:
>>>>>>
>>>>>>> Hello.
>>>>>>> Thank you for your link.
>>>>>>> It appeare that I have a 525 error (user not found).
>>>>>>>
>>>>>>> I think the problem must be in my config file because I'm sure that
>>>>>>> my user is good because I use it for an other app witch use it to connect
>>>>>>> with AD.
>>>>>>>
>>>>>>> As you ask me i give you more line of my log file, after that I
>>>>>>> would like to show you my conf file...
>>>>>>> Maybe you will find a setting withch is not good!
>>>>>>>
>>>>>>>
>>>>>>> So here is my log file whene I try to connect :
>>>>>>> DEBUG 09-19 11:47:01.337 o.a.o.q.s.MeetingReminderJob:34
>>>>>>> [org.springframework.scheduling.quartz.SchedulerFactoryBean#0_Worker-2] -
>>>>>>> MeetingReminderJob.execute
>>>>>>> DEBUG 09-19 11:47:25.760 o.a.w.p.h.s.ServletWebRequest:189
>>>>>>> [http-nio-0.0.0.0-5080-exec-10] - Calculating context relative path from:
>>>>>>> context path '/openmeetings', filterPrefix '', uri '/openmeetings/signin'
>>>>>>> DEBUG 09-19 11:47:25.761 o.a.w.p.PageAccessSynchronizer:100
>>>>>>> [http-nio-0.0.0.0-5080-exec-10] - 'http-nio-0.0.0.0-5080-exec-10'
>>>>>>> attempting to acquire lock to page with id '1'
>>>>>>> DEBUG 09-19 11:47:25.761 o.a.w.p.PageAccessSynchronizer:125
>>>>>>> [http-nio-0.0.0.0-5080-exec-10] - http-nio-0.0.0.0-5080-exec-10 acquired
>>>>>>> lock to page 1
>>>>>>> DEBUG 09-19 11:47:25.762 o.a.o.d.d.s.SessiondataDao:68
>>>>>>> [http-nio-0.0.0.0-5080-exec-10] - startsession :: startsession
>>>>>>> DEBUG 09-19 11:47:25.763 o.a.o.u.c.ManageCryptStyle:32
>>>>>>> [http-nio-0.0.0.0-5080-exec-10] - getInstanceOfCrypt::
>>>>>>> configKeyCryptClassName:
>>>>>>> org.apache.openmeetings.util.crypt.MD5Implementation
>>>>>>> DEBUG 09-19 11:47:25.788 o.a.o.l.LdapLoginManagement:165
>>>>>>> [http-nio-0.0.0.0-5080-exec-10] - LdapLoginmanagement.doLdapLogin
>>>>>>> ERROR 09-19 11:47:25.924 o.a.o.l.LdapLoginManagement:351
>>>>>>> [http-nio-0.0.0.0-5080-exec-10] - Not authenticated.
>>>>>>> org.apache.directory.api.ldap.model.exception.LdapAuthenticationException:
>>>>>>> 80090308: LdapErr: DSID-0C090334, comment: AcceptSecurityContext error,
>>>>>>> data 525, vece\00
>>>>>>> at
>>>>>>> org.apache.directory.api.ldap.model.message.ResultCodeEnum.processResponse(ResultCodeEnum.java:2021)
>>>>>>> ~[api-all-jar-1.0.0-M23.jar:1.0.0-M23]
>>>>>>> at
>>>>>>> org.apache.directory.ldap.client.api.AbstractLdapConnection.bind(AbstractLdapConnection.java:129)
>>>>>>> ~[api-all-jar-1.0.0-M23.jar:1.0.0-M23]
>>>>>>> at
>>>>>>> org.apache.openmeetings.ldap.LdapLoginManagement.login(LdapLoginManagement.java:275)
>>>>>>> ~[openmeetings-core-3.0.3-RELEASE.jar:na]
>>>>>>> at
>>>>>>> org.apache.openmeetings.web.app.WebSession.signIn(WebSession.java:257)
>>>>>>> [openmeetings-web-3.0.3-RELEASE.jar:na]
>>>>>>> at
>>>>>>> org.apache.openmeetings.web.pages.auth.SignInDialog.onSubmit(SignInDialog.java:190)
>>>>>>> [openmeetings-web-3.0.3-RELEASE.jar:na]
>>>>>>> at
>>>>>>> com.googlecode.wicket.jquery.ui.widget.dialog.AbstractFormDialog$DialogFormSubmitter.onSubmit(AbstractFormDialog.java:279)
>>>>>>> [wicket-jquery-ui-jar-6.16.0.jar:na]
>>>>>>> at
>>>>>>> org.apache.wicket.markup.html.form.Form.delegateSubmit(Form.java:1266)
>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>> at org.apache.wicket.markup.html.form.Form.process(Form.java:938)
>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>> at
>>>>>>> org.apache.wicket.markup.html.form.StatelessForm.process(StatelessForm.java:96)
>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>> at
>>>>>>> org.apache.wicket.markup.html.form.Form.onFormSubmitted(Form.java:770)
>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>> at
>>>>>>> com.googlecode.wicket.jquery.ui.widget.dialog.AbstractFormDialog.internalOnClick(AbstractFormDialog.java:200)
>>>>>>> [wicket-jquery-ui-jar-6.16.0.jar:na]
>>>>>>> at
>>>>>>> com.googlecode.wicket.jquery.ui.widget.dialog.AbstractDialog$1.onClick(AbstractDialog.java:439)
>>>>>>> [wicket-jquery-ui-jar-6.16.0.jar:na]
>>>>>>> at
>>>>>>> com.googlecode.wicket.jquery.ui.widget.dialog.DialogBehavior.onAjax(DialogBehavior.java:175)
>>>>>>> [wicket-jquery-ui-jar-6.16.0.jar:na]
>>>>>>> at
>>>>>>> com.googlecode.wicket.jquery.core.ajax.JQueryAjaxBehavior.respond(JQueryAjaxBehavior.java:171)
>>>>>>> [wicket-jquery-ui-core-jar-6.16.0.jar:na]
>>>>>>> at
>>>>>>> org.apache.wicket.ajax.AbstractDefaultAjaxBehavior.onRequest(AbstractDefaultAjaxBehavior.java:633)
>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>> at sun.reflect.GeneratedMethodAccessor91.invoke(Unknown Source)
>>>>>>> ~[na:na]
>>>>>>> at
>>>>>>> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
>>>>>>> ~[na:1.7.0_65]
>>>>>>> at java.lang.reflect.Method.invoke(Method.java:606) ~[na:1.7.0_65]
>>>>>>> at
>>>>>>> org.apache.wicket.RequestListenerInterface.internalInvoke(RequestListenerInterface.java:258)
>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>> at
>>>>>>> org.apache.wicket.RequestListenerInterface.invoke(RequestListenerInterface.java:241)
>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>> at
>>>>>>> org.apache.wicket.core.request.handler.ListenerInterfaceRequestHandler.invokeListener(ListenerInterfaceRequestHandler.java:250)
>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>> at
>>>>>>> org.apache.wicket.core.request.handler.ListenerInterfaceRequestHandler.respond(ListenerInterfaceRequestHandler.java:236)
>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>> at
>>>>>>> org.apache.wicket.request.cycle.RequestCycle$HandlerExecutor.respond(RequestCycle.java:862)
>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>> at
>>>>>>> org.apache.wicket.request.RequestHandlerStack.execute(RequestHandlerStack.java:64)
>>>>>>> [wicket-request-jar-6.16.0.jar:6.16.0]
>>>>>>> at
>>>>>>> org.apache.wicket.request.cycle.RequestCycle.execute(RequestCycle.java:261)
>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>> at
>>>>>>> org.apache.wicket.request.cycle.RequestCycle.processRequest(RequestCycle.java:218)
>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>> at
>>>>>>> org.apache.wicket.request.cycle.RequestCycle.processRequestAndDetach(RequestCycle.java:289)
>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>> at
>>>>>>> org.apache.wicket.protocol.ws.AbstractUpgradeFilter.processRequestCycle(AbstractUpgradeFilter.java:59)
>>>>>>> [wicket-native-websocket-core-jar-6.16.0.jar:6.16.0]
>>>>>>> at
>>>>>>> org.apache.wicket.protocol.http.WicketFilter.processRequest(WicketFilter.java:201)
>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>> at
>>>>>>> org.apache.wicket.protocol.http.WicketFilter.doFilter(WicketFilter.java:282)
>>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>>> at
>>>>>>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:241)
>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>> at
>>>>>>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:208)
>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>> at
>>>>>>> org.red5.logging.LoggerContextFilter.doFilter(LoggerContextFilter.java:77)
>>>>>>> [red5-server.jar:na]
>>>>>>> at
>>>>>>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:241)
>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>> at
>>>>>>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:208)
>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>> at
>>>>>>> org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:220)
>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>> at
>>>>>>> org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:122)
>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>> at
>>>>>>> org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:501)
>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>> at
>>>>>>> org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:171)
>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>> at
>>>>>>> org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:103)
>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>> at
>>>>>>> org.apache.catalina.valves.AccessLogValve.invoke(AccessLogValve.java:950)
>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>> at
>>>>>>> org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:116)
>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>> at
>>>>>>> org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:408)
>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>> at
>>>>>>> org.apache.coyote.http11.AbstractHttp11Processor.process(AbstractHttp11Processor.java:1070)
>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>> at
>>>>>>> org.apache.coyote.AbstractProtocol$AbstractConnectionHandler.process(AbstractProtocol.java:611)
>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>> at
>>>>>>> org.apache.tomcat.util.net.NioEndpoint$SocketProcessor.doRun(NioEndpoint.java:1736)
>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>> at
>>>>>>> org.apache.tomcat.util.net.NioEndpoint$SocketProcessor.run(NioEndpoint.java:1695)
>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>> at
>>>>>>> java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1145)
>>>>>>> [na:1.7.0_65]
>>>>>>> at
>>>>>>> java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:615)
>>>>>>> [na:1.7.0_65]
>>>>>>> at
>>>>>>> org.apache.tomcat.util.threads.TaskThread$WrappingRunnable.run(TaskThread.java:61)
>>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>>> at java.lang.Thread.run(Thread.java:745) [na:1.7.0_65]
>>>>>>> DEBUG 09-19 11:47:25.927 o.a.w.u.c.CookieUtils:266
>>>>>>> [http-nio-0.0.0.0-5080-exec-10] - Unable to find Cookie with name=LoggedIn
>>>>>>> and request URI=signin?1-1.IBehaviorListener.1-signin
>>>>>>> DEBUG 09-19 11:47:25.929 o.a.w.f.FeedbackMessages:69
>>>>>>> [http-nio-0.0.0.0-5080-exec-10] - Adding feedback message '[FeedbackMessage
>>>>>>> message = "Invalid password", reporter = signin, level = ERROR]'
>>>>>>> DEBUG 09-19 11:47:25.929 o.a.w.u.c.CookieUtils:266
>>>>>>> [http-nio-0.0.0.0-5080-exec-10] - Unable to find Cookie with name=LoggedIn
>>>>>>> and request URI=signin?1-1.IBehaviorListener.1-signin
>>>>>>> DEBUG 09-19 11:47:25.930 o.a.wicket.Page:871
>>>>>>> [http-nio-0.0.0.0-5080-exec-10] - ending request for page [Page class =
>>>>>>> org.apache.openmeetings.web.pages.auth.SignInPage, id = 1, render count =
>>>>>>> 1], request
>>>>>>> org.apache.wicket.protocol.http.servlet.ServletWebRequest@a6e74b
>>>>>>> DEBUG 09-19 11:47:25.930 o.a.wicket.Page:871
>>>>>>> [http-nio-0.0.0.0-5080-exec-10] - ending request for page [Page class =
>>>>>>> org.apache.openmeetings.web.pages.auth.SignInPage, id = 1, render count =
>>>>>>> 1], request
>>>>>>> org.apache.wicket.protocol.http.servlet.ServletWebRequest@a6e74b
>>>>>>> DEBUG 09-19 11:47:25.930 o.a.wicket.Page:871
>>>>>>> [http-nio-0.0.0.0-5080-exec-10] - ending request for page [Page class =
>>>>>>> org.apache.openmeetings.web.pages.auth.SignInPage, id = 1, render count =
>>>>>>> 1], request
>>>>>>> org.apache.wicket.protocol.http.servlet.ServletWebRequest@a6e74b
>>>>>>> DEBUG 09-19 11:47:25.988
>>>>>>> o.a.w.p.AsynchronousDataStore$PageSavingRunnable:354
>>>>>>> [Wicket-PageSavingThread] - Saving asynchronously: Entry
>>>>>>> [sessionId=2A10AA69C3E771FF51FABD4D26A20559, pageId=1]...
>>>>>>> DEBUG 09-19 11:47:25.988 o.a.w.p.DiskDataStore:186
>>>>>>> [Wicket-PageSavingThread] - Storing data for page with id '1' in session
>>>>>>> with id '2A10AA69C3E771FF51FABD4D26A20559'
>>>>>>> DEBUG 09-19 11:47:25.988 o.a.w.p.PageAccessSynchronizer:195
>>>>>>> [http-nio-0.0.0.0-5080-exec-10] - 'http-nio-0.0.0.0-5080-exec-10' released
>>>>>>> lock to page with id '1'
>>>>>>> DEBUG 09-19 11:47:25.988 o.a.w.p.PageAccessSynchronizer:346
>>>>>>> [http-nio-0.0.0.0-5080-exec-10] - 'http-nio-0.0.0.0-5080-exec-10' notifying
>>>>>>> blocked threads
>>>>>>>
>>>>>>>
>>>>>>>
>>>>>>>
>>>>>>>
>>>>>>>
>>>>>>>
>>>>>>>
>>>>>>>
>>>>>>> And here is my conf file :
>>>>>>>
>>>>>>> #
>>>>>>> # Licensed to the Apache Software Foundation (ASF) under one
>>>>>>> # or more contributor license agreements. See the NOTICE file
>>>>>>> # distributed with this work for additional information
>>>>>>> # regarding copyright ownership. The ASF licenses this file
>>>>>>> # to you under the Apache License, Version 2.0 (the
>>>>>>> # "License"); you may not use this file except in compliance
>>>>>>> # with the License. You may obtain a copy of the License at
>>>>>>> #
>>>>>>> # http://www.apache.org/licenses/LICENSE-2.0
>>>>>>> #
>>>>>>> # Unless required by applicable law or agreed to in writing,
>>>>>>> # software distributed under the License is distributed on an
>>>>>>> # "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
>>>>>>> # KIND, either express or implied. See the License for the
>>>>>>> # specific language governing permissions and limitations
>>>>>>> # under the License.
>>>>>>> #
>>>>>>> #ConfigurationFile for LDAP Auth
>>>>>>> #ConfigKey 'ldap_config_path' must be set in DataBase Configration
>>>>>>> of OM and point to this file
>>>>>>> #o.becherer,14.01.2009
>>>>>>> #LDAP URL
>>>>>>> # This is the URL used to access your LDAP server.
>>>>>>> # if you want to use "ldaps://" links, please be aware that you need
>>>>>>> to import your CA certificate
>>>>>>> # to a java keystore and add the -Djavax.net.ssl.keyStore,
>>>>>>> -Djavax.net.ssl.keyStorePassword,
>>>>>>> # -Djavax.net.ssl.trustStore and -Djavax.net.ssl.trustStorePassword
>>>>>>> parameters to your
>>>>>>> # JAVA_OPT environment
>>>>>>> ldap_conn_host=@IP_of_my_AD
>>>>>>> ldap_conn_port=389
>>>>>>> ldap_conn_secure=false
>>>>>>> # Login distinguished name (DN) for Authentication on LDAP Server -
>>>>>>> keep empty if not required
>>>>>>> # Use full qualified LDAP DN
>>>>>>>
>>>>>>> ldap_admin_dn=CN=adconnect,OU=Comptes,OU=SI,OU=Services,OU=COMPANY,DC=mycompany,DC=priv
>>>>>>> # Loginpass for Authentication on LDAP Server - keep empty if not
>>>>>>> required
>>>>>>> ldap_passwd=pass_for_user_adconnect
>>>>>>> # base to search for userdata(of user, that wants to login)
>>>>>>> ldap_search_base=DC=mycompany,DC=priv
>>>>>>> # Fieldnames (can differ between Ldap servers)
>>>>>>> ldap_search_query=(uid=%s)
>>>>>>> # the scope of the search might be: OBJECT, ONELEVEL, SUBTREE
>>>>>>> ldap_search_scope=ONELEVEL
>>>>>>> # Ldap auth type(NONE, SEARCHANDBIND, SIMPLEBIND)
>>>>>>> # When using SIMPLEBIND a simple bind is performed on the LDAP
>>>>>>> server to check user authentication
>>>>>>> # When using NONE, the Ldap server is not used for authentication
>>>>>>> ldap_auth_type=SIMPLEBIND
>>>>>>> # userDN format, will be used to bind if ldap_auth_type=SIMPLEBIND
>>>>>>> # might be used to get provisionningDn in case ldap_auth_type=NONE
>>>>>>> ldap_userdn_format=uid=%s,OU=COMPANY,DC=mycompany,DC=priv
>>>>>>> # Ldap provisioning type(NONE, AUTOCREATE, AUTOUPDATE)
>>>>>>> ldap_provisionning=AUTOCREATE
>>>>>>> # Set this to 'true' if you want to use admin_dn to get user
>>>>>>> attributes
>>>>>>> # If any other value is set, user_dn will be used
>>>>>>> ldap_use_admin_to_get_attrs=true
>>>>>>> # Ldap-password synchronization to OM DB
>>>>>>> # Set this to 'true' if you want OM to synchronize the user
>>>>>>> Ldap-password to OM's internal DB
>>>>>>> # If you want to disable the feature, set this to any other string.
>>>>>>> # Defautl value is 'true'
>>>>>>> ldap_sync_password_to_om=true
>>>>>>> # Ldap user attributes mapping
>>>>>>> # Set the following internal OM user attributes to their
>>>>>>> corresponding Ldap-attribute
>>>>>>> ldap_user_attr_lastname=sn
>>>>>>> ldap_user_attr_firstname=givenName
>>>>>>> ldap_user_attr_mail=mail
>>>>>>> ldap_user_attr_street=streetAddress
>>>>>>> ldap_user_attr_additionalname=description
>>>>>>> ldap_user_attr_fax=facsimileTelephoneNumber
>>>>>>> ldap_user_attr_zip=postalCode
>>>>>>> ldap_user_attr_country=co
>>>>>>> ldap_user_attr_town=l
>>>>>>> ldap_user_attr_phone=telephoneNumber
>>>>>>> # optional, only absolute URLs make sense
>>>>>>> #ldap_user_picture_uri=picture_uri
>>>>>>> # optional
>>>>>>> # the timezone has to match any timezone available in Java,
>>>>>>> otherwise the timezone defined in the value of
>>>>>>> # the conf_key "default.timezone" in OpenMeetings "configurations"
>>>>>>> table
>>>>>>> #ldap_user_timezone=timezone
>>>>>>> # Ldap ignore upper/lower case, convert all input to lower case
>>>>>>> ldap_use_lower_case=false
>>>>>>>
>>>>>>>
>>>>>>>
>>>>>>> Thanks a lot for your help.
>>>>>>>
>>>>>>> Greg.
>>>>>>>
>>>>>>>
>>>>>>>
>>>>>>>
>>>>>>> 2014-09-18 17:52 GMT+02:00 Maxim Solodovnik <so...@gmail.com>:
>>>>>>>
>>>>>>>> please check this URL:
>>>>>>>> http://kb.juniper.net/InfoCenter/index?page=content&id=KB17098
>>>>>>>> According to it you have "User not found"
>>>>>>>>
>>>>>>>> could you provide more ldap related logs?
>>>>>>>> it might be Admin not found or user entered in login form not found
>>>>>>>> depending on your settings
>>>>>>>>
>>>>>>>> On 18 September 2014 21:43, Grégory Mangeney <ma...@gmail.com>
>>>>>>>> wrote:
>>>>>>>>
>>>>>>>>> Hello, It's me again...
>>>>>>>>> I'm back.
>>>>>>>>> Now I have a new problem to connect to my AD...
>>>>>>>>> In log file it is write : *ERROR ......... Not authenticated*
>>>>>>>>> witch is a quite better message than before but after that it is
>>>>>>>>> write : *LdapErr: DSID-0C090334, comment: AcceptSecurityContext
>>>>>>>>> error, data 525, vece\00 at........*
>>>>>>>>>
>>>>>>>>> I try to understand my problem but "AcceptSecurityContext error"
>>>>>>>>> seems to speack about a security problem.
>>>>>>>>> I have set my ldap_conn_secure=false in om_ldap.conf.
>>>>>>>>> I don't understand what could be my problem.
>>>>>>>>>
>>>>>>>>> thanks a lot for your ideas.
>>>>>>>>>
>>>>>>>>> Greg.
>>>>>>>>> 2014-09-18 15:37 GMT+02:00 Grégory Mangeney <ma...@gmail.com>:
>>>>>>>>>
>>>>>>>>>> Ok, I finally understand that I have to put the filename and only
>>>>>>>>>> the filename without */usr/lib/red5/webapps/openmeetings/conf/*
>>>>>>>>>>
>>>>>>>>>> Now I have a new message whitch said me invalid password...
>>>>>>>>>> It's quite better...
>>>>>>>>>> Thank you...
>>>>>>>>>> I could continue to try to set it now.
>>>>>>>>>> bye
>>>>>>>>>>
>>>>>>>>>> Greg.
>>>>>>>>>>
>>>>>>>>>>
>>>>>>>>>>
>>>>>>>>>> 2014-09-18 15:06 GMT+02:00 Maxim Solodovnik <solomax666@gmail.com
>>>>>>>>>> >:
>>>>>>>>>>
>>>>>>>>>>> you need to write file name relative to
>>>>>>>>>>> webapps/openmeetings/conf folder
>>>>>>>>>>> in your case *om_ldap.cfg *should be specified
>>>>>>>>>>>
>>>>>>>>>>> On 18 September 2014 20:04, Grégory Mangeney <mangeney@gmail.com
>>>>>>>>>>> > wrote:
>>>>>>>>>>>
>>>>>>>>>>>> Thank you very much but I don't understand very well.
>>>>>>>>>>>> I think I put the right information...
>>>>>>>>>>>> Do you want to say that I have to write :
>>>>>>>>>>>> */usr/lib/red5/webapps/openmeetings/conf/* without the
>>>>>>>>>>>> filename *om_ldap.cfg* at the end?
>>>>>>>>>>>> Thanks for your help
>>>>>>>>>>>> Greg
>>>>>>>>>>>>
>>>>>>>>>>>>
>>>>>>>>>>>> 2014-09-18 14:52 GMT+02:00 Maxim Solodovnik <
>>>>>>>>>>>> solomax666@gmail.com>:
>>>>>>>>>>>>
>>>>>>>>>>>>> AFAIK the path should be relative to /usr/lib/red5/webapps/
>>>>>>>>>>>>> openmeetings/conf
>>>>>>>>>>>>> Please change this path
>>>>>>>>>>>>>
>>>>>>>>>>>>> Additionally you can file JIRA issue to add check to the Admin
>>>>>>>>>>>>> screen (so path will be validated on enter)
>>>>>>>>>>>>>
>>>>>>>>>>>>> On 18 September 2014 19:44, Grégory Mangeney <
>>>>>>>>>>>>> mangeney@gmail.com> wrote:
>>>>>>>>>>>>>
>>>>>>>>>>>>>> Hello,
>>>>>>>>>>>>>> I have the same problem: I could not connect with AD.
>>>>>>>>>>>>>> I have the domain at the login screen,
>>>>>>>>>>>>>> I am using the 3.0.3.
>>>>>>>>>>>>>> I found this line in my log file :* ERROR 09-18 14:28:33.994
>>>>>>>>>>>>>> o.a.o.l.LdapLoginManagement:147 [http-nio-0.0.0.0-5080-exec-4] - Error on
>>>>>>>>>>>>>> LdapLogin : Configurationdata couldnt be retrieved!*
>>>>>>>>>>>>>>
>>>>>>>>>>>>>> This seem strange because in my LDAP config (in openmeetings
>>>>>>>>>>>>>> Administration/LDAP menu), I put the correct path in the "Config file name"
>>>>>>>>>>>>>> : /usr/lib/red5/webapps/openmeetings/conf/om_ldap.cfg
>>>>>>>>>>>>>>
>>>>>>>>>>>>>> Why is this error appeared : *Configurationdata couldnt be
>>>>>>>>>>>>>> retrieved! *???
>>>>>>>>>>>>>>
>>>>>>>>>>>>>>
>>>>>>>>>>>>>> Thanks a lot
>>>>>>>>>>>>>>
>>>>>>>>>>>>>> Greg
>>>>>>>>>>>>>>
>>>>>>>>>>>>>>
>>>>>>>>>>>>>> 2014-09-17 12:52 GMT+02:00 Maxim Solodovnik <
>>>>>>>>>>>>>> solomax666@gmail.com>:
>>>>>>>>>>>>>>
>>>>>>>>>>>>>>> great :)
>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>> On 17 September 2014 17:46, Teddy Jayasaputra <
>>>>>>>>>>>>>>> teddy.jayasaputra@ocbcnisp.com> wrote:
>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>> Dear Maxim,
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>> After close look to console log.
>>>>>>>>>>>>>>>> We found this error :
>>>>>>>>>>>>>>>> ERROR 09-17 17:28:33.278 LdapLoginManagement.java 135070
>>>>>>>>>>>>>>>> 285 org.apache.openmeetings.ldap.LdapLoginManagement
>>>>>>>>>>>>>>>> [http-nio-0.0.0.0-5080-exec-6] - User not found in OM DB and
>>>>>>>>>>>>>>>> Provisionning.AUTOCREATE was not set
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>> After we change ldapconfiguration file from
>>>>>>>>>>>>>>>> ldap_provisionning=NONE to AUTOCREATE we can login using AD.
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>> thanks.
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>> Best Regards,
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>> -Teddy Jayasaputra-
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>> On 9/17/2014 4:25 PM, Maxim Solodovnik wrote:
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>> do you have your AD domain on the login screen?
>>>>>>>>>>>>>>>> are there errors in the log?
>>>>>>>>>>>>>>>> what OM version are you using?
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>> On 17 September 2014 16:02, ARI HENDIAWAN <
>>>>>>>>>>>>>>>> ari.hendiawan@ocbcnisp.com> wrote:
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>> Dear all,
>>>>>>>>>>>>>>>>> please we need extra information how to integrate
>>>>>>>>>>>>>>>>> openmeetings 3.0.3 with AD?
>>>>>>>>>>>>>>>>> we already setting on ldap.conf and still problem.. if we
>>>>>>>>>>>>>>>>> saw on AD , user that want sign-in openmeetings success, but on login menu
>>>>>>>>>>>>>>>>> openmeetings shown error "invalid password"
>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>> Tks
>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>> --
>>>>>>>>>>>>>>>>> Disclaimer :
>>>>>>>>>>>>>>>>> Confidential information may be contained in this message.
>>>>>>>>>>>>>>>>> If you are not the intended recipient, you are strictly prohibited and may
>>>>>>>>>>>>>>>>> be unlawful to use, copy, store, distribute, disclose or communicate any
>>>>>>>>>>>>>>>>> part of it to others and you are obliged to return it immediately to sender
>>>>>>>>>>>>>>>>> or notify us and delete the e-mail and any attachments from your system.
>>>>>>>>>>>>>>>>> Opinions, conclusions and other information in this e-mail that do not
>>>>>>>>>>>>>>>>> relate to the official business of any PT Bank OCBC NISP Tbk shall be
>>>>>>>>>>>>>>>>> understood as neither given nor endorsed by it. No assumption of
>>>>>>>>>>>>>>>>> responsibility or liability whatsoever is undertaken by PT Bank OCBC NISP
>>>>>>>>>>>>>>>>> Tbk in respect of prohibited and unauthorised use by any other person.
>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>> --
>>>>>>>>>>>>>>>> WBR
>>>>>>>>>>>>>>>> Maxim aka solomax
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>> --
>>>>>>>>>>>>>>>> Disclaimer :
>>>>>>>>>>>>>>>> Confidential information may be contained in this message.
>>>>>>>>>>>>>>>> If you are not the intended recipient, you are strictly prohibited and may
>>>>>>>>>>>>>>>> be unlawful to use, copy, store, distribute, disclose or communicate any
>>>>>>>>>>>>>>>> part of it to others and you are obliged to return it immediately to sender
>>>>>>>>>>>>>>>> or notify us and delete the e-mail and any attachments from your system.
>>>>>>>>>>>>>>>> Opinions, conclusions and other information in this e-mail that do not
>>>>>>>>>>>>>>>> relate to the official business of any PT Bank OCBC NISP Tbk shall be
>>>>>>>>>>>>>>>> understood as neither given nor endorsed by it. No assumption of
>>>>>>>>>>>>>>>> responsibility or liability whatsoever is undertaken by PT Bank OCBC NISP
>>>>>>>>>>>>>>>> Tbk in respect of prohibited and unauthorised use by any other person.
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>> --
>>>>>>>>>>>>>>> WBR
>>>>>>>>>>>>>>> Maxim aka solomax
>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>
>>>>>>>>>>>>>>
>>>>>>>>>>>>>
>>>>>>>>>>>>>
>>>>>>>>>>>>> --
>>>>>>>>>>>>> WBR
>>>>>>>>>>>>> Maxim aka solomax
>>>>>>>>>>>>>
>>>>>>>>>>>>
>>>>>>>>>>>>
>>>>>>>>>>>
>>>>>>>>>>>
>>>>>>>>>>> --
>>>>>>>>>>> WBR
>>>>>>>>>>> Maxim aka solomax
>>>>>>>>>>>
>>>>>>>>>>
>>>>>>>>>>
>>>>>>>>>
>>>>>>>>
>>>>>>>>
>>>>>>>> --
>>>>>>>> WBR
>>>>>>>> Maxim aka solomax
>>>>>>>>
>>>>>>>
>>>>>>>
>>>>>>
>>>>>>
>>>>>> --
>>>>>> WBR
>>>>>> Maxim aka solomax
>>>>>>
>>>>>
>>>>>
>>>>
>>>>
>>>> --
>>>> WBR
>>>> Maxim aka solomax
>>>>
>>>
>>>
>
Re: need info about problem when integration AD
Posted by Grégory Mangeney <ma...@gmail.com>.
Ok,thank you for that.
For information I am using a Microsoft Active Directory in object version
31
I get this information by tapping dsquery *
cn=schema,cn=configuration,dc=mycompany,dc=priv -scope base -attr
objectVersion
Good evening.
Best regards.
Greg.
2014-09-22 16:40 GMT+02:00 Maxim Solodovnik <so...@gmail.com>:
> You have these Paramaribo in your configuration:
> ldap_search_base=DC=mycompany,DC=priv
> # Fieldnames (can differ between Ldap servers)
> ldap_search_query=(uid=%s)
>
> I guess nothing is found. Not sure I never saw error like yours.
>
> Will create 3.0.4 nightly fly you later today (with updated ldap library)
> if error will be the same I'll ask ldap library developers for the help
> On Sep 22, 2014 9:05 PM, "Grégory Mangeney" <ma...@gmail.com> wrote:
>
>> a bad search query?
>>
>> In this case, the loging error message shouldn't be somthing like :
>> "Login/password do not exist" ?
>>
>> How could I check this point...
>> I do not modified the source code!
>>
>> 2014-09-22 11:25 GMT+02:00 Maxim Solodovnik <so...@gmail.com>:
>>
>>> it seems like nothing was found
>>> Maybe bad search query?
>>>
>>> On 22 September 2014 15:55, Grégory Mangeney <ma...@gmail.com> wrote:
>>>
>>>> Hello Maxim.
>>>> Thanks a lot for your answer.
>>>> You're helpfull...
>>>>
>>>> I had ever try with SEARCHANDBIND but it still not working...
>>>> So I set it again to give you my logs...
>>>> The error is quite different but I could not understand what is the
>>>> problem...
>>>>
>>>> In the login screen I have the following message in red : "Unknown
>>>> error. Please report this to the administrator."
>>>>
>>>>
>>>>
>>>>
>>>> Here is my logs :
>>>>
>>>> ERROR 09-22 10:34:34.814 o.a.o.l.LdapLoginManagement:356
>>>> [http-nio-0.0.0.0-5080-exec-4] - Unexpected exception.
>>>> org.apache.directory.api.ldap.model.cursor.CursorLdapReferralException:
>>>> null
>>>> at
>>>> org.apache.directory.ldap.client.api.EntryCursorImpl.get(EntryCursorImpl.java:164)
>>>> ~[api-all-jar-1.0.0-M23.jar:1.0.0-M23]
>>>> at
>>>> org.apache.directory.ldap.client.api.EntryCursorImpl.get(EntryCursorImpl.java:50)
>>>> ~[api-all-jar-1.0.0-M23.jar:1.0.0-M23]
>>>> at
>>>> org.apache.openmeetings.ldap.LdapLoginManagement.login(LdapLoginManagement.java:258)
>>>> ~[openmeetings-core-3.0.3-RELEASE.jar:na]
>>>> at
>>>> org.apache.openmeetings.web.app.WebSession.signIn(WebSession.java:257)
>>>> [openmeetings-web-3.0.3-RELEASE.jar:na]
>>>> at
>>>> org.apache.openmeetings.web.pages.auth.SignInDialog.onSubmit(SignInDialog.java:190)
>>>> [openmeetings-web-3.0.3-RELEASE.jar:na]
>>>> at
>>>> com.googlecode.wicket.jquery.ui.widget.dialog.AbstractFormDialog$DialogFormSubmitter.onSubmit(AbstractFormDialog.java:279)
>>>> [wicket-jquery-ui-jar-6.16.0.jar:na]
>>>> at
>>>> org.apache.wicket.markup.html.form.Form.delegateSubmit(Form.java:1266)
>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>> at org.apache.wicket.markup.html.form.Form.process(Form.java:938)
>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>> at
>>>> org.apache.wicket.markup.html.form.StatelessForm.process(StatelessForm.java:96)
>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>> at
>>>> org.apache.wicket.markup.html.form.Form.onFormSubmitted(Form.java:770)
>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>> at
>>>> com.googlecode.wicket.jquery.ui.widget.dialog.AbstractFormDialog.internalOnClick(AbstractFormDialog.java:200)
>>>> [wicket-jquery-ui-jar-6.16.0.jar:na]
>>>> at
>>>> com.googlecode.wicket.jquery.ui.widget.dialog.AbstractDialog$1.onClick(AbstractDialog.java:439)
>>>> [wicket-jquery-ui-jar-6.16.0.jar:na]
>>>> at
>>>> com.googlecode.wicket.jquery.ui.widget.dialog.DialogBehavior.onAjax(DialogBehavior.java:175)
>>>> [wicket-jquery-ui-jar-6.16.0.jar:na]
>>>> at
>>>> com.googlecode.wicket.jquery.core.ajax.JQueryAjaxBehavior.respond(JQueryAjaxBehavior.java:171)
>>>> [wicket-jquery-ui-core-jar-6.16.0.jar:na]
>>>> at
>>>> org.apache.wicket.ajax.AbstractDefaultAjaxBehavior.onRequest(AbstractDefaultAjaxBehavior.java:633)
>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>> at sun.reflect.GeneratedMethodAccessor91.invoke(Unknown Source)
>>>> ~[na:na]
>>>> at
>>>> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
>>>> ~[na:1.7.0_65]
>>>> at java.lang.reflect.Method.invoke(Method.java:606) ~[na:1.7.0_65]
>>>> at
>>>> org.apache.wicket.RequestListenerInterface.internalInvoke(RequestListenerInterface.java:258)
>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>> at
>>>> org.apache.wicket.RequestListenerInterface.invoke(RequestListenerInterface.java:241)
>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>> at
>>>> org.apache.wicket.core.request.handler.ListenerInterfaceRequestHandler.invokeListener(ListenerInterfaceRequestHandler.java:250)
>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>> at
>>>> org.apache.wicket.core.request.handler.ListenerInterfaceRequestHandler.respond(ListenerInterfaceRequestHandler.java:236)
>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>> at
>>>> org.apache.wicket.request.cycle.RequestCycle$HandlerExecutor.respond(RequestCycle.java:862)
>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>> at
>>>> org.apache.wicket.request.RequestHandlerStack.execute(RequestHandlerStack.java:64)
>>>> [wicket-request-jar-6.16.0.jar:6.16.0]
>>>> at
>>>> org.apache.wicket.request.cycle.RequestCycle.execute(RequestCycle.java:261)
>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>> at
>>>> org.apache.wicket.request.cycle.RequestCycle.processRequest(RequestCycle.java:218)
>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>> at
>>>> org.apache.wicket.request.cycle.RequestCycle.processRequestAndDetach(RequestCycle.java:289)
>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>> at
>>>> org.apache.wicket.protocol.ws.AbstractUpgradeFilter.processRequestCycle(AbstractUpgradeFilter.java:59)
>>>> [wicket-native-websocket-core-jar-6.16.0.jar:6.16.0]
>>>> at
>>>> org.apache.wicket.protocol.http.WicketFilter.processRequest(WicketFilter.java:201)
>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>> at
>>>> org.apache.wicket.protocol.http.WicketFilter.doFilter(WicketFilter.java:282)
>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>> at
>>>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:241)
>>>> [tomcat-embed-core.jar:7.0.55]
>>>> at
>>>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:208)
>>>> [tomcat-embed-core.jar:7.0.55]
>>>> at
>>>> org.red5.logging.LoggerContextFilter.doFilter(LoggerContextFilter.java:77)
>>>> [red5-server.jar:na]
>>>> at
>>>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:241)
>>>> [tomcat-embed-core.jar:7.0.55]
>>>> at
>>>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:208)
>>>> [tomcat-embed-core.jar:7.0.55]
>>>> at
>>>> org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:220)
>>>> [tomcat-embed-core.jar:7.0.55]
>>>> at
>>>> org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:122)
>>>> [tomcat-embed-core.jar:7.0.55]
>>>> at
>>>> org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:501)
>>>> [tomcat-embed-core.jar:7.0.55]
>>>> at
>>>> org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:171)
>>>> [tomcat-embed-core.jar:7.0.55]
>>>> at
>>>> org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:103)
>>>> [tomcat-embed-core.jar:7.0.55]
>>>> at
>>>> org.apache.catalina.valves.AccessLogValve.invoke(AccessLogValve.java:950)
>>>> [tomcat-embed-core.jar:7.0.55]
>>>> at
>>>> org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:116)
>>>> [tomcat-embed-core.jar:7.0.55]
>>>> at
>>>> org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:408)
>>>> [tomcat-embed-core.jar:7.0.55]
>>>> at
>>>> org.apache.coyote.http11.AbstractHttp11Processor.process(AbstractHttp11Processor.java:1070)
>>>> [tomcat-embed-core.jar:7.0.55]
>>>> at
>>>> org.apache.coyote.AbstractProtocol$AbstractConnectionHandler.process(AbstractProtocol.java:611)
>>>> [tomcat-embed-core.jar:7.0.55]
>>>> at
>>>> org.apache.tomcat.util.net.NioEndpoint$SocketProcessor.doRun(NioEndpoint.java:1736)
>>>> [tomcat-embed-core.jar:7.0.55]
>>>> at
>>>> org.apache.tomcat.util.net.NioEndpoint$SocketProcessor.run(NioEndpoint.java:1695)
>>>> [tomcat-embed-core.jar:7.0.55]
>>>> at
>>>> java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1145)
>>>> [na:1.7.0_65]
>>>> at
>>>> java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:615)
>>>> [na:1.7.0_65]
>>>> at
>>>> org.apache.tomcat.util.threads.TaskThread$WrappingRunnable.run(TaskThread.java:61)
>>>> [tomcat-embed-core.jar:7.0.55]
>>>> at java.lang.Thread.run(Thread.java:745) [na:1.7.0_65]
>>>> DEBUG 09-22 10:34:34.817 o.a.w.u.c.CookieUtils:266
>>>> [http-nio-0.0.0.0-5080-exec-4] - Unable to find Cookie with name=LoggedIn
>>>> and request URI=signin?1-1.IBehaviorListener.1-signin
>>>> DEBUG 09-22 10:34:34.820 o.a.w.f.FeedbackMessages:69
>>>> [http-nio-0.0.0.0-5080-exec-4] - Adding feedback message '[FeedbackMessage
>>>> message = "Unknown error. Please report this to the administrator.",
>>>> reporter = signin, level = ERROR]'
>>>> DEBUG 09-22 10:34:34.821 o.a.w.u.c.CookieUtils:266
>>>> [http-nio-0.0.0.0-5080-exec-4] - Unable to find Cookie with name=LoggedIn
>>>> and request URI=signin?1-1.IBehaviorListener.1-signin
>>>> DEBUG 09-22 10:34:34.822 o.a.wicket.Page:871
>>>> [http-nio-0.0.0.0-5080-exec-4] - ending request for page [Page class =
>>>> org.apache.openmeetings.web.pages.auth.SignInPage, id = 1, render count =
>>>> 1], request
>>>> org.apache.wicket.protocol.http.servlet.ServletWebRequest@16618f3
>>>> DEBUG 09-22 10:34:34.822 o.a.wicket.Page:871
>>>> [http-nio-0.0.0.0-5080-exec-4] - ending request for page [Page class =
>>>> org.apache.openmeetings.web.pages.auth.SignInPage, id = 1, render count =
>>>> 1], request
>>>> org.apache.wicket.protocol.http.servlet.ServletWebRequest@16618f3
>>>> DEBUG 09-22 10:34:34.823 o.a.wicket.Page:871
>>>> [http-nio-0.0.0.0-5080-exec-4] - ending request for page [Page class =
>>>> org.apache.openmeetings.web.pages.auth.SignInPage, id = 1, render count =
>>>> 1], request
>>>> org.apache.wicket.protocol.http.servlet.ServletWebRequest@16618f3
>>>> DEBUG 09-22 10:34:34.828
>>>> o.a.w.p.AsynchronousDataStore$PageSavingRunnable:354
>>>> [Wicket-PageSavingThread] - Saving asynchronously: Entry
>>>> [sessionId=907ABBB232B18743F2A67024DA18F185, pageId=1]...
>>>> DEBUG 09-22 10:34:34.828 o.a.w.p.DiskDataStore:186
>>>> [Wicket-PageSavingThread] - Storing data for page with id '1' in session
>>>> with id '907ABBB232B18743F2A67024DA18F185'
>>>> DEBUG 09-22 10:34:34.828 o.a.w.p.PageAccessSynchronizer:195
>>>> [http-nio-0.0.0.0-5080-exec-4] - 'http-nio-0.0.0.0-5080-exec-4' released
>>>> lock to page with id '1'
>>>> DEBUG 09-22 10:34:34.828 o.a.w.p.PageAccessSynchronizer:346
>>>> [http-nio-0.0.0.0-5080-exec-4] - 'http-nio-0.0.0.0-5080-exec-4' notifying
>>>> blocked threads
>>>> DEBUG 09-22 10:34:36.341 o.a.o.m.MailHandler:249
>>>> [org.springframework.scheduling.quartz.SchedulerFactoryBean#0_Worker-1] -
>>>> resetSendingStatus enter ...
>>>>
>>>>
>>>>
>>>> Thank you for your time.
>>>>
>>>> Greg.
>>>>
>>>> 2014-09-20 8:59 GMT+02:00 Maxim Solodovnik <so...@gmail.com>:
>>>>
>>>>> According to the logs and config SIMPLEBIND failed for the user
>>>>> specified
>>>>> please try SEARCHANDBIND
>>>>>
>>>>> On 19 September 2014 17:09, Grégory Mangeney <ma...@gmail.com>
>>>>> wrote:
>>>>>
>>>>>> Hello.
>>>>>> Thank you for your link.
>>>>>> It appeare that I have a 525 error (user not found).
>>>>>>
>>>>>> I think the problem must be in my config file because I'm sure that
>>>>>> my user is good because I use it for an other app witch use it to connect
>>>>>> with AD.
>>>>>>
>>>>>> As you ask me i give you more line of my log file, after that I would
>>>>>> like to show you my conf file...
>>>>>> Maybe you will find a setting withch is not good!
>>>>>>
>>>>>>
>>>>>> So here is my log file whene I try to connect :
>>>>>> DEBUG 09-19 11:47:01.337 o.a.o.q.s.MeetingReminderJob:34
>>>>>> [org.springframework.scheduling.quartz.SchedulerFactoryBean#0_Worker-2] -
>>>>>> MeetingReminderJob.execute
>>>>>> DEBUG 09-19 11:47:25.760 o.a.w.p.h.s.ServletWebRequest:189
>>>>>> [http-nio-0.0.0.0-5080-exec-10] - Calculating context relative path from:
>>>>>> context path '/openmeetings', filterPrefix '', uri '/openmeetings/signin'
>>>>>> DEBUG 09-19 11:47:25.761 o.a.w.p.PageAccessSynchronizer:100
>>>>>> [http-nio-0.0.0.0-5080-exec-10] - 'http-nio-0.0.0.0-5080-exec-10'
>>>>>> attempting to acquire lock to page with id '1'
>>>>>> DEBUG 09-19 11:47:25.761 o.a.w.p.PageAccessSynchronizer:125
>>>>>> [http-nio-0.0.0.0-5080-exec-10] - http-nio-0.0.0.0-5080-exec-10 acquired
>>>>>> lock to page 1
>>>>>> DEBUG 09-19 11:47:25.762 o.a.o.d.d.s.SessiondataDao:68
>>>>>> [http-nio-0.0.0.0-5080-exec-10] - startsession :: startsession
>>>>>> DEBUG 09-19 11:47:25.763 o.a.o.u.c.ManageCryptStyle:32
>>>>>> [http-nio-0.0.0.0-5080-exec-10] - getInstanceOfCrypt::
>>>>>> configKeyCryptClassName:
>>>>>> org.apache.openmeetings.util.crypt.MD5Implementation
>>>>>> DEBUG 09-19 11:47:25.788 o.a.o.l.LdapLoginManagement:165
>>>>>> [http-nio-0.0.0.0-5080-exec-10] - LdapLoginmanagement.doLdapLogin
>>>>>> ERROR 09-19 11:47:25.924 o.a.o.l.LdapLoginManagement:351
>>>>>> [http-nio-0.0.0.0-5080-exec-10] - Not authenticated.
>>>>>> org.apache.directory.api.ldap.model.exception.LdapAuthenticationException:
>>>>>> 80090308: LdapErr: DSID-0C090334, comment: AcceptSecurityContext error,
>>>>>> data 525, vece\00
>>>>>> at
>>>>>> org.apache.directory.api.ldap.model.message.ResultCodeEnum.processResponse(ResultCodeEnum.java:2021)
>>>>>> ~[api-all-jar-1.0.0-M23.jar:1.0.0-M23]
>>>>>> at
>>>>>> org.apache.directory.ldap.client.api.AbstractLdapConnection.bind(AbstractLdapConnection.java:129)
>>>>>> ~[api-all-jar-1.0.0-M23.jar:1.0.0-M23]
>>>>>> at
>>>>>> org.apache.openmeetings.ldap.LdapLoginManagement.login(LdapLoginManagement.java:275)
>>>>>> ~[openmeetings-core-3.0.3-RELEASE.jar:na]
>>>>>> at
>>>>>> org.apache.openmeetings.web.app.WebSession.signIn(WebSession.java:257)
>>>>>> [openmeetings-web-3.0.3-RELEASE.jar:na]
>>>>>> at
>>>>>> org.apache.openmeetings.web.pages.auth.SignInDialog.onSubmit(SignInDialog.java:190)
>>>>>> [openmeetings-web-3.0.3-RELEASE.jar:na]
>>>>>> at
>>>>>> com.googlecode.wicket.jquery.ui.widget.dialog.AbstractFormDialog$DialogFormSubmitter.onSubmit(AbstractFormDialog.java:279)
>>>>>> [wicket-jquery-ui-jar-6.16.0.jar:na]
>>>>>> at
>>>>>> org.apache.wicket.markup.html.form.Form.delegateSubmit(Form.java:1266)
>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>> at org.apache.wicket.markup.html.form.Form.process(Form.java:938)
>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>> at
>>>>>> org.apache.wicket.markup.html.form.StatelessForm.process(StatelessForm.java:96)
>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>> at
>>>>>> org.apache.wicket.markup.html.form.Form.onFormSubmitted(Form.java:770)
>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>> at
>>>>>> com.googlecode.wicket.jquery.ui.widget.dialog.AbstractFormDialog.internalOnClick(AbstractFormDialog.java:200)
>>>>>> [wicket-jquery-ui-jar-6.16.0.jar:na]
>>>>>> at
>>>>>> com.googlecode.wicket.jquery.ui.widget.dialog.AbstractDialog$1.onClick(AbstractDialog.java:439)
>>>>>> [wicket-jquery-ui-jar-6.16.0.jar:na]
>>>>>> at
>>>>>> com.googlecode.wicket.jquery.ui.widget.dialog.DialogBehavior.onAjax(DialogBehavior.java:175)
>>>>>> [wicket-jquery-ui-jar-6.16.0.jar:na]
>>>>>> at
>>>>>> com.googlecode.wicket.jquery.core.ajax.JQueryAjaxBehavior.respond(JQueryAjaxBehavior.java:171)
>>>>>> [wicket-jquery-ui-core-jar-6.16.0.jar:na]
>>>>>> at
>>>>>> org.apache.wicket.ajax.AbstractDefaultAjaxBehavior.onRequest(AbstractDefaultAjaxBehavior.java:633)
>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>> at sun.reflect.GeneratedMethodAccessor91.invoke(Unknown Source)
>>>>>> ~[na:na]
>>>>>> at
>>>>>> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
>>>>>> ~[na:1.7.0_65]
>>>>>> at java.lang.reflect.Method.invoke(Method.java:606) ~[na:1.7.0_65]
>>>>>> at
>>>>>> org.apache.wicket.RequestListenerInterface.internalInvoke(RequestListenerInterface.java:258)
>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>> at
>>>>>> org.apache.wicket.RequestListenerInterface.invoke(RequestListenerInterface.java:241)
>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>> at
>>>>>> org.apache.wicket.core.request.handler.ListenerInterfaceRequestHandler.invokeListener(ListenerInterfaceRequestHandler.java:250)
>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>> at
>>>>>> org.apache.wicket.core.request.handler.ListenerInterfaceRequestHandler.respond(ListenerInterfaceRequestHandler.java:236)
>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>> at
>>>>>> org.apache.wicket.request.cycle.RequestCycle$HandlerExecutor.respond(RequestCycle.java:862)
>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>> at
>>>>>> org.apache.wicket.request.RequestHandlerStack.execute(RequestHandlerStack.java:64)
>>>>>> [wicket-request-jar-6.16.0.jar:6.16.0]
>>>>>> at
>>>>>> org.apache.wicket.request.cycle.RequestCycle.execute(RequestCycle.java:261)
>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>> at
>>>>>> org.apache.wicket.request.cycle.RequestCycle.processRequest(RequestCycle.java:218)
>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>> at
>>>>>> org.apache.wicket.request.cycle.RequestCycle.processRequestAndDetach(RequestCycle.java:289)
>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>> at
>>>>>> org.apache.wicket.protocol.ws.AbstractUpgradeFilter.processRequestCycle(AbstractUpgradeFilter.java:59)
>>>>>> [wicket-native-websocket-core-jar-6.16.0.jar:6.16.0]
>>>>>> at
>>>>>> org.apache.wicket.protocol.http.WicketFilter.processRequest(WicketFilter.java:201)
>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>> at
>>>>>> org.apache.wicket.protocol.http.WicketFilter.doFilter(WicketFilter.java:282)
>>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>>> at
>>>>>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:241)
>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>> at
>>>>>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:208)
>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>> at
>>>>>> org.red5.logging.LoggerContextFilter.doFilter(LoggerContextFilter.java:77)
>>>>>> [red5-server.jar:na]
>>>>>> at
>>>>>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:241)
>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>> at
>>>>>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:208)
>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>> at
>>>>>> org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:220)
>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>> at
>>>>>> org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:122)
>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>> at
>>>>>> org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:501)
>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>> at
>>>>>> org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:171)
>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>> at
>>>>>> org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:103)
>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>> at
>>>>>> org.apache.catalina.valves.AccessLogValve.invoke(AccessLogValve.java:950)
>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>> at
>>>>>> org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:116)
>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>> at
>>>>>> org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:408)
>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>> at
>>>>>> org.apache.coyote.http11.AbstractHttp11Processor.process(AbstractHttp11Processor.java:1070)
>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>> at
>>>>>> org.apache.coyote.AbstractProtocol$AbstractConnectionHandler.process(AbstractProtocol.java:611)
>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>> at
>>>>>> org.apache.tomcat.util.net.NioEndpoint$SocketProcessor.doRun(NioEndpoint.java:1736)
>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>> at
>>>>>> org.apache.tomcat.util.net.NioEndpoint$SocketProcessor.run(NioEndpoint.java:1695)
>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>> at
>>>>>> java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1145)
>>>>>> [na:1.7.0_65]
>>>>>> at
>>>>>> java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:615)
>>>>>> [na:1.7.0_65]
>>>>>> at
>>>>>> org.apache.tomcat.util.threads.TaskThread$WrappingRunnable.run(TaskThread.java:61)
>>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>>> at java.lang.Thread.run(Thread.java:745) [na:1.7.0_65]
>>>>>> DEBUG 09-19 11:47:25.927 o.a.w.u.c.CookieUtils:266
>>>>>> [http-nio-0.0.0.0-5080-exec-10] - Unable to find Cookie with name=LoggedIn
>>>>>> and request URI=signin?1-1.IBehaviorListener.1-signin
>>>>>> DEBUG 09-19 11:47:25.929 o.a.w.f.FeedbackMessages:69
>>>>>> [http-nio-0.0.0.0-5080-exec-10] - Adding feedback message '[FeedbackMessage
>>>>>> message = "Invalid password", reporter = signin, level = ERROR]'
>>>>>> DEBUG 09-19 11:47:25.929 o.a.w.u.c.CookieUtils:266
>>>>>> [http-nio-0.0.0.0-5080-exec-10] - Unable to find Cookie with name=LoggedIn
>>>>>> and request URI=signin?1-1.IBehaviorListener.1-signin
>>>>>> DEBUG 09-19 11:47:25.930 o.a.wicket.Page:871
>>>>>> [http-nio-0.0.0.0-5080-exec-10] - ending request for page [Page class =
>>>>>> org.apache.openmeetings.web.pages.auth.SignInPage, id = 1, render count =
>>>>>> 1], request
>>>>>> org.apache.wicket.protocol.http.servlet.ServletWebRequest@a6e74b
>>>>>> DEBUG 09-19 11:47:25.930 o.a.wicket.Page:871
>>>>>> [http-nio-0.0.0.0-5080-exec-10] - ending request for page [Page class =
>>>>>> org.apache.openmeetings.web.pages.auth.SignInPage, id = 1, render count =
>>>>>> 1], request
>>>>>> org.apache.wicket.protocol.http.servlet.ServletWebRequest@a6e74b
>>>>>> DEBUG 09-19 11:47:25.930 o.a.wicket.Page:871
>>>>>> [http-nio-0.0.0.0-5080-exec-10] - ending request for page [Page class =
>>>>>> org.apache.openmeetings.web.pages.auth.SignInPage, id = 1, render count =
>>>>>> 1], request
>>>>>> org.apache.wicket.protocol.http.servlet.ServletWebRequest@a6e74b
>>>>>> DEBUG 09-19 11:47:25.988
>>>>>> o.a.w.p.AsynchronousDataStore$PageSavingRunnable:354
>>>>>> [Wicket-PageSavingThread] - Saving asynchronously: Entry
>>>>>> [sessionId=2A10AA69C3E771FF51FABD4D26A20559, pageId=1]...
>>>>>> DEBUG 09-19 11:47:25.988 o.a.w.p.DiskDataStore:186
>>>>>> [Wicket-PageSavingThread] - Storing data for page with id '1' in session
>>>>>> with id '2A10AA69C3E771FF51FABD4D26A20559'
>>>>>> DEBUG 09-19 11:47:25.988 o.a.w.p.PageAccessSynchronizer:195
>>>>>> [http-nio-0.0.0.0-5080-exec-10] - 'http-nio-0.0.0.0-5080-exec-10' released
>>>>>> lock to page with id '1'
>>>>>> DEBUG 09-19 11:47:25.988 o.a.w.p.PageAccessSynchronizer:346
>>>>>> [http-nio-0.0.0.0-5080-exec-10] - 'http-nio-0.0.0.0-5080-exec-10' notifying
>>>>>> blocked threads
>>>>>>
>>>>>>
>>>>>>
>>>>>>
>>>>>>
>>>>>>
>>>>>>
>>>>>>
>>>>>>
>>>>>> And here is my conf file :
>>>>>>
>>>>>> #
>>>>>> # Licensed to the Apache Software Foundation (ASF) under one
>>>>>> # or more contributor license agreements. See the NOTICE file
>>>>>> # distributed with this work for additional information
>>>>>> # regarding copyright ownership. The ASF licenses this file
>>>>>> # to you under the Apache License, Version 2.0 (the
>>>>>> # "License"); you may not use this file except in compliance
>>>>>> # with the License. You may obtain a copy of the License at
>>>>>> #
>>>>>> # http://www.apache.org/licenses/LICENSE-2.0
>>>>>> #
>>>>>> # Unless required by applicable law or agreed to in writing,
>>>>>> # software distributed under the License is distributed on an
>>>>>> # "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
>>>>>> # KIND, either express or implied. See the License for the
>>>>>> # specific language governing permissions and limitations
>>>>>> # under the License.
>>>>>> #
>>>>>> #ConfigurationFile for LDAP Auth
>>>>>> #ConfigKey 'ldap_config_path' must be set in DataBase Configration of
>>>>>> OM and point to this file
>>>>>> #o.becherer,14.01.2009
>>>>>> #LDAP URL
>>>>>> # This is the URL used to access your LDAP server.
>>>>>> # if you want to use "ldaps://" links, please be aware that you need
>>>>>> to import your CA certificate
>>>>>> # to a java keystore and add the -Djavax.net.ssl.keyStore,
>>>>>> -Djavax.net.ssl.keyStorePassword,
>>>>>> # -Djavax.net.ssl.trustStore and -Djavax.net.ssl.trustStorePassword
>>>>>> parameters to your
>>>>>> # JAVA_OPT environment
>>>>>> ldap_conn_host=@IP_of_my_AD
>>>>>> ldap_conn_port=389
>>>>>> ldap_conn_secure=false
>>>>>> # Login distinguished name (DN) for Authentication on LDAP Server -
>>>>>> keep empty if not required
>>>>>> # Use full qualified LDAP DN
>>>>>>
>>>>>> ldap_admin_dn=CN=adconnect,OU=Comptes,OU=SI,OU=Services,OU=COMPANY,DC=mycompany,DC=priv
>>>>>> # Loginpass for Authentication on LDAP Server - keep empty if not
>>>>>> required
>>>>>> ldap_passwd=pass_for_user_adconnect
>>>>>> # base to search for userdata(of user, that wants to login)
>>>>>> ldap_search_base=DC=mycompany,DC=priv
>>>>>> # Fieldnames (can differ between Ldap servers)
>>>>>> ldap_search_query=(uid=%s)
>>>>>> # the scope of the search might be: OBJECT, ONELEVEL, SUBTREE
>>>>>> ldap_search_scope=ONELEVEL
>>>>>> # Ldap auth type(NONE, SEARCHANDBIND, SIMPLEBIND)
>>>>>> # When using SIMPLEBIND a simple bind is performed on the LDAP
>>>>>> server to check user authentication
>>>>>> # When using NONE, the Ldap server is not used for authentication
>>>>>> ldap_auth_type=SIMPLEBIND
>>>>>> # userDN format, will be used to bind if ldap_auth_type=SIMPLEBIND
>>>>>> # might be used to get provisionningDn in case ldap_auth_type=NONE
>>>>>> ldap_userdn_format=uid=%s,OU=COMPANY,DC=mycompany,DC=priv
>>>>>> # Ldap provisioning type(NONE, AUTOCREATE, AUTOUPDATE)
>>>>>> ldap_provisionning=AUTOCREATE
>>>>>> # Set this to 'true' if you want to use admin_dn to get user
>>>>>> attributes
>>>>>> # If any other value is set, user_dn will be used
>>>>>> ldap_use_admin_to_get_attrs=true
>>>>>> # Ldap-password synchronization to OM DB
>>>>>> # Set this to 'true' if you want OM to synchronize the user
>>>>>> Ldap-password to OM's internal DB
>>>>>> # If you want to disable the feature, set this to any other string.
>>>>>> # Defautl value is 'true'
>>>>>> ldap_sync_password_to_om=true
>>>>>> # Ldap user attributes mapping
>>>>>> # Set the following internal OM user attributes to their
>>>>>> corresponding Ldap-attribute
>>>>>> ldap_user_attr_lastname=sn
>>>>>> ldap_user_attr_firstname=givenName
>>>>>> ldap_user_attr_mail=mail
>>>>>> ldap_user_attr_street=streetAddress
>>>>>> ldap_user_attr_additionalname=description
>>>>>> ldap_user_attr_fax=facsimileTelephoneNumber
>>>>>> ldap_user_attr_zip=postalCode
>>>>>> ldap_user_attr_country=co
>>>>>> ldap_user_attr_town=l
>>>>>> ldap_user_attr_phone=telephoneNumber
>>>>>> # optional, only absolute URLs make sense
>>>>>> #ldap_user_picture_uri=picture_uri
>>>>>> # optional
>>>>>> # the timezone has to match any timezone available in Java, otherwise
>>>>>> the timezone defined in the value of
>>>>>> # the conf_key "default.timezone" in OpenMeetings "configurations"
>>>>>> table
>>>>>> #ldap_user_timezone=timezone
>>>>>> # Ldap ignore upper/lower case, convert all input to lower case
>>>>>> ldap_use_lower_case=false
>>>>>>
>>>>>>
>>>>>>
>>>>>> Thanks a lot for your help.
>>>>>>
>>>>>> Greg.
>>>>>>
>>>>>>
>>>>>>
>>>>>>
>>>>>> 2014-09-18 17:52 GMT+02:00 Maxim Solodovnik <so...@gmail.com>:
>>>>>>
>>>>>>> please check this URL:
>>>>>>> http://kb.juniper.net/InfoCenter/index?page=content&id=KB17098
>>>>>>> According to it you have "User not found"
>>>>>>>
>>>>>>> could you provide more ldap related logs?
>>>>>>> it might be Admin not found or user entered in login form not found
>>>>>>> depending on your settings
>>>>>>>
>>>>>>> On 18 September 2014 21:43, Grégory Mangeney <ma...@gmail.com>
>>>>>>> wrote:
>>>>>>>
>>>>>>>> Hello, It's me again...
>>>>>>>> I'm back.
>>>>>>>> Now I have a new problem to connect to my AD...
>>>>>>>> In log file it is write : *ERROR ......... Not authenticated*
>>>>>>>> witch is a quite better message than before but after that it is
>>>>>>>> write : *LdapErr: DSID-0C090334, comment: AcceptSecurityContext
>>>>>>>> error, data 525, vece\00 at........*
>>>>>>>>
>>>>>>>> I try to understand my problem but "AcceptSecurityContext error"
>>>>>>>> seems to speack about a security problem.
>>>>>>>> I have set my ldap_conn_secure=false in om_ldap.conf.
>>>>>>>> I don't understand what could be my problem.
>>>>>>>>
>>>>>>>> thanks a lot for your ideas.
>>>>>>>>
>>>>>>>> Greg.
>>>>>>>> 2014-09-18 15:37 GMT+02:00 Grégory Mangeney <ma...@gmail.com>:
>>>>>>>>
>>>>>>>>> Ok, I finally understand that I have to put the filename and only
>>>>>>>>> the filename without */usr/lib/red5/webapps/openmeetings/conf/*
>>>>>>>>>
>>>>>>>>> Now I have a new message whitch said me invalid password...
>>>>>>>>> It's quite better...
>>>>>>>>> Thank you...
>>>>>>>>> I could continue to try to set it now.
>>>>>>>>> bye
>>>>>>>>>
>>>>>>>>> Greg.
>>>>>>>>>
>>>>>>>>>
>>>>>>>>>
>>>>>>>>> 2014-09-18 15:06 GMT+02:00 Maxim Solodovnik <so...@gmail.com>
>>>>>>>>> :
>>>>>>>>>
>>>>>>>>>> you need to write file name relative to webapps/openmeetings/conf
>>>>>>>>>> folder
>>>>>>>>>> in your case *om_ldap.cfg *should be specified
>>>>>>>>>>
>>>>>>>>>> On 18 September 2014 20:04, Grégory Mangeney <ma...@gmail.com>
>>>>>>>>>> wrote:
>>>>>>>>>>
>>>>>>>>>>> Thank you very much but I don't understand very well.
>>>>>>>>>>> I think I put the right information...
>>>>>>>>>>> Do you want to say that I have to write :
>>>>>>>>>>> */usr/lib/red5/webapps/openmeetings/conf/* without the filename
>>>>>>>>>>> *om_ldap.cfg* at the end?
>>>>>>>>>>> Thanks for your help
>>>>>>>>>>> Greg
>>>>>>>>>>>
>>>>>>>>>>>
>>>>>>>>>>> 2014-09-18 14:52 GMT+02:00 Maxim Solodovnik <
>>>>>>>>>>> solomax666@gmail.com>:
>>>>>>>>>>>
>>>>>>>>>>>> AFAIK the path should be relative to /usr/lib/red5/webapps/
>>>>>>>>>>>> openmeetings/conf
>>>>>>>>>>>> Please change this path
>>>>>>>>>>>>
>>>>>>>>>>>> Additionally you can file JIRA issue to add check to the Admin
>>>>>>>>>>>> screen (so path will be validated on enter)
>>>>>>>>>>>>
>>>>>>>>>>>> On 18 September 2014 19:44, Grégory Mangeney <
>>>>>>>>>>>> mangeney@gmail.com> wrote:
>>>>>>>>>>>>
>>>>>>>>>>>>> Hello,
>>>>>>>>>>>>> I have the same problem: I could not connect with AD.
>>>>>>>>>>>>> I have the domain at the login screen,
>>>>>>>>>>>>> I am using the 3.0.3.
>>>>>>>>>>>>> I found this line in my log file :* ERROR 09-18 14:28:33.994
>>>>>>>>>>>>> o.a.o.l.LdapLoginManagement:147 [http-nio-0.0.0.0-5080-exec-4] - Error on
>>>>>>>>>>>>> LdapLogin : Configurationdata couldnt be retrieved!*
>>>>>>>>>>>>>
>>>>>>>>>>>>> This seem strange because in my LDAP config (in openmeetings
>>>>>>>>>>>>> Administration/LDAP menu), I put the correct path in the "Config file name"
>>>>>>>>>>>>> : /usr/lib/red5/webapps/openmeetings/conf/om_ldap.cfg
>>>>>>>>>>>>>
>>>>>>>>>>>>> Why is this error appeared : *Configurationdata couldnt be
>>>>>>>>>>>>> retrieved! *???
>>>>>>>>>>>>>
>>>>>>>>>>>>>
>>>>>>>>>>>>> Thanks a lot
>>>>>>>>>>>>>
>>>>>>>>>>>>> Greg
>>>>>>>>>>>>>
>>>>>>>>>>>>>
>>>>>>>>>>>>> 2014-09-17 12:52 GMT+02:00 Maxim Solodovnik <
>>>>>>>>>>>>> solomax666@gmail.com>:
>>>>>>>>>>>>>
>>>>>>>>>>>>>> great :)
>>>>>>>>>>>>>>
>>>>>>>>>>>>>> On 17 September 2014 17:46, Teddy Jayasaputra <
>>>>>>>>>>>>>> teddy.jayasaputra@ocbcnisp.com> wrote:
>>>>>>>>>>>>>>
>>>>>>>>>>>>>>> Dear Maxim,
>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>> After close look to console log.
>>>>>>>>>>>>>>> We found this error :
>>>>>>>>>>>>>>> ERROR 09-17 17:28:33.278 LdapLoginManagement.java 135070 285
>>>>>>>>>>>>>>> org.apache.openmeetings.ldap.LdapLoginManagement
>>>>>>>>>>>>>>> [http-nio-0.0.0.0-5080-exec-6] - User not found in OM DB and
>>>>>>>>>>>>>>> Provisionning.AUTOCREATE was not set
>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>> After we change ldapconfiguration file from
>>>>>>>>>>>>>>> ldap_provisionning=NONE to AUTOCREATE we can login using AD.
>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>> thanks.
>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>> Best Regards,
>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>> -Teddy Jayasaputra-
>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>> On 9/17/2014 4:25 PM, Maxim Solodovnik wrote:
>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>> do you have your AD domain on the login screen?
>>>>>>>>>>>>>>> are there errors in the log?
>>>>>>>>>>>>>>> what OM version are you using?
>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>> On 17 September 2014 16:02, ARI HENDIAWAN <
>>>>>>>>>>>>>>> ari.hendiawan@ocbcnisp.com> wrote:
>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>> Dear all,
>>>>>>>>>>>>>>>> please we need extra information how to integrate
>>>>>>>>>>>>>>>> openmeetings 3.0.3 with AD?
>>>>>>>>>>>>>>>> we already setting on ldap.conf and still problem.. if we
>>>>>>>>>>>>>>>> saw on AD , user that want sign-in openmeetings success, but on login menu
>>>>>>>>>>>>>>>> openmeetings shown error "invalid password"
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>> Tks
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>> --
>>>>>>>>>>>>>>>> Disclaimer :
>>>>>>>>>>>>>>>> Confidential information may be contained in this message.
>>>>>>>>>>>>>>>> If you are not the intended recipient, you are strictly prohibited and may
>>>>>>>>>>>>>>>> be unlawful to use, copy, store, distribute, disclose or communicate any
>>>>>>>>>>>>>>>> part of it to others and you are obliged to return it immediately to sender
>>>>>>>>>>>>>>>> or notify us and delete the e-mail and any attachments from your system.
>>>>>>>>>>>>>>>> Opinions, conclusions and other information in this e-mail that do not
>>>>>>>>>>>>>>>> relate to the official business of any PT Bank OCBC NISP Tbk shall be
>>>>>>>>>>>>>>>> understood as neither given nor endorsed by it. No assumption of
>>>>>>>>>>>>>>>> responsibility or liability whatsoever is undertaken by PT Bank OCBC NISP
>>>>>>>>>>>>>>>> Tbk in respect of prohibited and unauthorised use by any other person.
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>> --
>>>>>>>>>>>>>>> WBR
>>>>>>>>>>>>>>> Maxim aka solomax
>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>> --
>>>>>>>>>>>>>>> Disclaimer :
>>>>>>>>>>>>>>> Confidential information may be contained in this message.
>>>>>>>>>>>>>>> If you are not the intended recipient, you are strictly prohibited and may
>>>>>>>>>>>>>>> be unlawful to use, copy, store, distribute, disclose or communicate any
>>>>>>>>>>>>>>> part of it to others and you are obliged to return it immediately to sender
>>>>>>>>>>>>>>> or notify us and delete the e-mail and any attachments from your system.
>>>>>>>>>>>>>>> Opinions, conclusions and other information in this e-mail that do not
>>>>>>>>>>>>>>> relate to the official business of any PT Bank OCBC NISP Tbk shall be
>>>>>>>>>>>>>>> understood as neither given nor endorsed by it. No assumption of
>>>>>>>>>>>>>>> responsibility or liability whatsoever is undertaken by PT Bank OCBC NISP
>>>>>>>>>>>>>>> Tbk in respect of prohibited and unauthorised use by any other person.
>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>
>>>>>>>>>>>>>>
>>>>>>>>>>>>>>
>>>>>>>>>>>>>> --
>>>>>>>>>>>>>> WBR
>>>>>>>>>>>>>> Maxim aka solomax
>>>>>>>>>>>>>>
>>>>>>>>>>>>>
>>>>>>>>>>>>>
>>>>>>>>>>>>
>>>>>>>>>>>>
>>>>>>>>>>>> --
>>>>>>>>>>>> WBR
>>>>>>>>>>>> Maxim aka solomax
>>>>>>>>>>>>
>>>>>>>>>>>
>>>>>>>>>>>
>>>>>>>>>>
>>>>>>>>>>
>>>>>>>>>> --
>>>>>>>>>> WBR
>>>>>>>>>> Maxim aka solomax
>>>>>>>>>>
>>>>>>>>>
>>>>>>>>>
>>>>>>>>
>>>>>>>
>>>>>>>
>>>>>>> --
>>>>>>> WBR
>>>>>>> Maxim aka solomax
>>>>>>>
>>>>>>
>>>>>>
>>>>>
>>>>>
>>>>> --
>>>>> WBR
>>>>> Maxim aka solomax
>>>>>
>>>>
>>>>
>>>
>>>
>>> --
>>> WBR
>>> Maxim aka solomax
>>>
>>
>>
Re: need info about problem when integration AD
Posted by Maxim Solodovnik <so...@gmail.com>.
You have these Paramaribo in your configuration:
ldap_search_base=DC=mycompany,DC=priv
# Fieldnames (can differ between Ldap servers)
ldap_search_query=(uid=%s)
I guess nothing is found. Not sure I never saw error like yours.
Will create 3.0.4 nightly fly you later today (with updated ldap library)
if error will be the same I'll ask ldap library developers for the help
On Sep 22, 2014 9:05 PM, "Grégory Mangeney" <ma...@gmail.com> wrote:
> a bad search query?
>
> In this case, the loging error message shouldn't be somthing like :
> "Login/password do not exist" ?
>
> How could I check this point...
> I do not modified the source code!
>
> 2014-09-22 11:25 GMT+02:00 Maxim Solodovnik <so...@gmail.com>:
>
>> it seems like nothing was found
>> Maybe bad search query?
>>
>> On 22 September 2014 15:55, Grégory Mangeney <ma...@gmail.com> wrote:
>>
>>> Hello Maxim.
>>> Thanks a lot for your answer.
>>> You're helpfull...
>>>
>>> I had ever try with SEARCHANDBIND but it still not working...
>>> So I set it again to give you my logs...
>>> The error is quite different but I could not understand what is the
>>> problem...
>>>
>>> In the login screen I have the following message in red : "Unknown
>>> error. Please report this to the administrator."
>>>
>>>
>>>
>>>
>>> Here is my logs :
>>>
>>> ERROR 09-22 10:34:34.814 o.a.o.l.LdapLoginManagement:356
>>> [http-nio-0.0.0.0-5080-exec-4] - Unexpected exception.
>>> org.apache.directory.api.ldap.model.cursor.CursorLdapReferralException:
>>> null
>>> at
>>> org.apache.directory.ldap.client.api.EntryCursorImpl.get(EntryCursorImpl.java:164)
>>> ~[api-all-jar-1.0.0-M23.jar:1.0.0-M23]
>>> at
>>> org.apache.directory.ldap.client.api.EntryCursorImpl.get(EntryCursorImpl.java:50)
>>> ~[api-all-jar-1.0.0-M23.jar:1.0.0-M23]
>>> at
>>> org.apache.openmeetings.ldap.LdapLoginManagement.login(LdapLoginManagement.java:258)
>>> ~[openmeetings-core-3.0.3-RELEASE.jar:na]
>>> at
>>> org.apache.openmeetings.web.app.WebSession.signIn(WebSession.java:257)
>>> [openmeetings-web-3.0.3-RELEASE.jar:na]
>>> at
>>> org.apache.openmeetings.web.pages.auth.SignInDialog.onSubmit(SignInDialog.java:190)
>>> [openmeetings-web-3.0.3-RELEASE.jar:na]
>>> at
>>> com.googlecode.wicket.jquery.ui.widget.dialog.AbstractFormDialog$DialogFormSubmitter.onSubmit(AbstractFormDialog.java:279)
>>> [wicket-jquery-ui-jar-6.16.0.jar:na]
>>> at
>>> org.apache.wicket.markup.html.form.Form.delegateSubmit(Form.java:1266)
>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>> at org.apache.wicket.markup.html.form.Form.process(Form.java:938)
>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>> at
>>> org.apache.wicket.markup.html.form.StatelessForm.process(StatelessForm.java:96)
>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>> at
>>> org.apache.wicket.markup.html.form.Form.onFormSubmitted(Form.java:770)
>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>> at
>>> com.googlecode.wicket.jquery.ui.widget.dialog.AbstractFormDialog.internalOnClick(AbstractFormDialog.java:200)
>>> [wicket-jquery-ui-jar-6.16.0.jar:na]
>>> at
>>> com.googlecode.wicket.jquery.ui.widget.dialog.AbstractDialog$1.onClick(AbstractDialog.java:439)
>>> [wicket-jquery-ui-jar-6.16.0.jar:na]
>>> at
>>> com.googlecode.wicket.jquery.ui.widget.dialog.DialogBehavior.onAjax(DialogBehavior.java:175)
>>> [wicket-jquery-ui-jar-6.16.0.jar:na]
>>> at
>>> com.googlecode.wicket.jquery.core.ajax.JQueryAjaxBehavior.respond(JQueryAjaxBehavior.java:171)
>>> [wicket-jquery-ui-core-jar-6.16.0.jar:na]
>>> at
>>> org.apache.wicket.ajax.AbstractDefaultAjaxBehavior.onRequest(AbstractDefaultAjaxBehavior.java:633)
>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>> at sun.reflect.GeneratedMethodAccessor91.invoke(Unknown Source)
>>> ~[na:na]
>>> at
>>> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
>>> ~[na:1.7.0_65]
>>> at java.lang.reflect.Method.invoke(Method.java:606) ~[na:1.7.0_65]
>>> at
>>> org.apache.wicket.RequestListenerInterface.internalInvoke(RequestListenerInterface.java:258)
>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>> at
>>> org.apache.wicket.RequestListenerInterface.invoke(RequestListenerInterface.java:241)
>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>> at
>>> org.apache.wicket.core.request.handler.ListenerInterfaceRequestHandler.invokeListener(ListenerInterfaceRequestHandler.java:250)
>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>> at
>>> org.apache.wicket.core.request.handler.ListenerInterfaceRequestHandler.respond(ListenerInterfaceRequestHandler.java:236)
>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>> at
>>> org.apache.wicket.request.cycle.RequestCycle$HandlerExecutor.respond(RequestCycle.java:862)
>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>> at
>>> org.apache.wicket.request.RequestHandlerStack.execute(RequestHandlerStack.java:64)
>>> [wicket-request-jar-6.16.0.jar:6.16.0]
>>> at
>>> org.apache.wicket.request.cycle.RequestCycle.execute(RequestCycle.java:261)
>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>> at
>>> org.apache.wicket.request.cycle.RequestCycle.processRequest(RequestCycle.java:218)
>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>> at
>>> org.apache.wicket.request.cycle.RequestCycle.processRequestAndDetach(RequestCycle.java:289)
>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>> at
>>> org.apache.wicket.protocol.ws.AbstractUpgradeFilter.processRequestCycle(AbstractUpgradeFilter.java:59)
>>> [wicket-native-websocket-core-jar-6.16.0.jar:6.16.0]
>>> at
>>> org.apache.wicket.protocol.http.WicketFilter.processRequest(WicketFilter.java:201)
>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>> at
>>> org.apache.wicket.protocol.http.WicketFilter.doFilter(WicketFilter.java:282)
>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>> at
>>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:241)
>>> [tomcat-embed-core.jar:7.0.55]
>>> at
>>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:208)
>>> [tomcat-embed-core.jar:7.0.55]
>>> at
>>> org.red5.logging.LoggerContextFilter.doFilter(LoggerContextFilter.java:77)
>>> [red5-server.jar:na]
>>> at
>>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:241)
>>> [tomcat-embed-core.jar:7.0.55]
>>> at
>>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:208)
>>> [tomcat-embed-core.jar:7.0.55]
>>> at
>>> org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:220)
>>> [tomcat-embed-core.jar:7.0.55]
>>> at
>>> org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:122)
>>> [tomcat-embed-core.jar:7.0.55]
>>> at
>>> org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:501)
>>> [tomcat-embed-core.jar:7.0.55]
>>> at
>>> org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:171)
>>> [tomcat-embed-core.jar:7.0.55]
>>> at
>>> org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:103)
>>> [tomcat-embed-core.jar:7.0.55]
>>> at
>>> org.apache.catalina.valves.AccessLogValve.invoke(AccessLogValve.java:950)
>>> [tomcat-embed-core.jar:7.0.55]
>>> at
>>> org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:116)
>>> [tomcat-embed-core.jar:7.0.55]
>>> at
>>> org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:408)
>>> [tomcat-embed-core.jar:7.0.55]
>>> at
>>> org.apache.coyote.http11.AbstractHttp11Processor.process(AbstractHttp11Processor.java:1070)
>>> [tomcat-embed-core.jar:7.0.55]
>>> at
>>> org.apache.coyote.AbstractProtocol$AbstractConnectionHandler.process(AbstractProtocol.java:611)
>>> [tomcat-embed-core.jar:7.0.55]
>>> at
>>> org.apache.tomcat.util.net.NioEndpoint$SocketProcessor.doRun(NioEndpoint.java:1736)
>>> [tomcat-embed-core.jar:7.0.55]
>>> at
>>> org.apache.tomcat.util.net.NioEndpoint$SocketProcessor.run(NioEndpoint.java:1695)
>>> [tomcat-embed-core.jar:7.0.55]
>>> at
>>> java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1145)
>>> [na:1.7.0_65]
>>> at
>>> java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:615)
>>> [na:1.7.0_65]
>>> at
>>> org.apache.tomcat.util.threads.TaskThread$WrappingRunnable.run(TaskThread.java:61)
>>> [tomcat-embed-core.jar:7.0.55]
>>> at java.lang.Thread.run(Thread.java:745) [na:1.7.0_65]
>>> DEBUG 09-22 10:34:34.817 o.a.w.u.c.CookieUtils:266
>>> [http-nio-0.0.0.0-5080-exec-4] - Unable to find Cookie with name=LoggedIn
>>> and request URI=signin?1-1.IBehaviorListener.1-signin
>>> DEBUG 09-22 10:34:34.820 o.a.w.f.FeedbackMessages:69
>>> [http-nio-0.0.0.0-5080-exec-4] - Adding feedback message '[FeedbackMessage
>>> message = "Unknown error. Please report this to the administrator.",
>>> reporter = signin, level = ERROR]'
>>> DEBUG 09-22 10:34:34.821 o.a.w.u.c.CookieUtils:266
>>> [http-nio-0.0.0.0-5080-exec-4] - Unable to find Cookie with name=LoggedIn
>>> and request URI=signin?1-1.IBehaviorListener.1-signin
>>> DEBUG 09-22 10:34:34.822 o.a.wicket.Page:871
>>> [http-nio-0.0.0.0-5080-exec-4] - ending request for page [Page class =
>>> org.apache.openmeetings.web.pages.auth.SignInPage, id = 1, render count =
>>> 1], request
>>> org.apache.wicket.protocol.http.servlet.ServletWebRequest@16618f3
>>> DEBUG 09-22 10:34:34.822 o.a.wicket.Page:871
>>> [http-nio-0.0.0.0-5080-exec-4] - ending request for page [Page class =
>>> org.apache.openmeetings.web.pages.auth.SignInPage, id = 1, render count =
>>> 1], request
>>> org.apache.wicket.protocol.http.servlet.ServletWebRequest@16618f3
>>> DEBUG 09-22 10:34:34.823 o.a.wicket.Page:871
>>> [http-nio-0.0.0.0-5080-exec-4] - ending request for page [Page class =
>>> org.apache.openmeetings.web.pages.auth.SignInPage, id = 1, render count =
>>> 1], request
>>> org.apache.wicket.protocol.http.servlet.ServletWebRequest@16618f3
>>> DEBUG 09-22 10:34:34.828
>>> o.a.w.p.AsynchronousDataStore$PageSavingRunnable:354
>>> [Wicket-PageSavingThread] - Saving asynchronously: Entry
>>> [sessionId=907ABBB232B18743F2A67024DA18F185, pageId=1]...
>>> DEBUG 09-22 10:34:34.828 o.a.w.p.DiskDataStore:186
>>> [Wicket-PageSavingThread] - Storing data for page with id '1' in session
>>> with id '907ABBB232B18743F2A67024DA18F185'
>>> DEBUG 09-22 10:34:34.828 o.a.w.p.PageAccessSynchronizer:195
>>> [http-nio-0.0.0.0-5080-exec-4] - 'http-nio-0.0.0.0-5080-exec-4' released
>>> lock to page with id '1'
>>> DEBUG 09-22 10:34:34.828 o.a.w.p.PageAccessSynchronizer:346
>>> [http-nio-0.0.0.0-5080-exec-4] - 'http-nio-0.0.0.0-5080-exec-4' notifying
>>> blocked threads
>>> DEBUG 09-22 10:34:36.341 o.a.o.m.MailHandler:249
>>> [org.springframework.scheduling.quartz.SchedulerFactoryBean#0_Worker-1] -
>>> resetSendingStatus enter ...
>>>
>>>
>>>
>>> Thank you for your time.
>>>
>>> Greg.
>>>
>>> 2014-09-20 8:59 GMT+02:00 Maxim Solodovnik <so...@gmail.com>:
>>>
>>>> According to the logs and config SIMPLEBIND failed for the user
>>>> specified
>>>> please try SEARCHANDBIND
>>>>
>>>> On 19 September 2014 17:09, Grégory Mangeney <ma...@gmail.com>
>>>> wrote:
>>>>
>>>>> Hello.
>>>>> Thank you for your link.
>>>>> It appeare that I have a 525 error (user not found).
>>>>>
>>>>> I think the problem must be in my config file because I'm sure that my
>>>>> user is good because I use it for an other app witch use it to connect with
>>>>> AD.
>>>>>
>>>>> As you ask me i give you more line of my log file, after that I would
>>>>> like to show you my conf file...
>>>>> Maybe you will find a setting withch is not good!
>>>>>
>>>>>
>>>>> So here is my log file whene I try to connect :
>>>>> DEBUG 09-19 11:47:01.337 o.a.o.q.s.MeetingReminderJob:34
>>>>> [org.springframework.scheduling.quartz.SchedulerFactoryBean#0_Worker-2] -
>>>>> MeetingReminderJob.execute
>>>>> DEBUG 09-19 11:47:25.760 o.a.w.p.h.s.ServletWebRequest:189
>>>>> [http-nio-0.0.0.0-5080-exec-10] - Calculating context relative path from:
>>>>> context path '/openmeetings', filterPrefix '', uri '/openmeetings/signin'
>>>>> DEBUG 09-19 11:47:25.761 o.a.w.p.PageAccessSynchronizer:100
>>>>> [http-nio-0.0.0.0-5080-exec-10] - 'http-nio-0.0.0.0-5080-exec-10'
>>>>> attempting to acquire lock to page with id '1'
>>>>> DEBUG 09-19 11:47:25.761 o.a.w.p.PageAccessSynchronizer:125
>>>>> [http-nio-0.0.0.0-5080-exec-10] - http-nio-0.0.0.0-5080-exec-10 acquired
>>>>> lock to page 1
>>>>> DEBUG 09-19 11:47:25.762 o.a.o.d.d.s.SessiondataDao:68
>>>>> [http-nio-0.0.0.0-5080-exec-10] - startsession :: startsession
>>>>> DEBUG 09-19 11:47:25.763 o.a.o.u.c.ManageCryptStyle:32
>>>>> [http-nio-0.0.0.0-5080-exec-10] - getInstanceOfCrypt::
>>>>> configKeyCryptClassName:
>>>>> org.apache.openmeetings.util.crypt.MD5Implementation
>>>>> DEBUG 09-19 11:47:25.788 o.a.o.l.LdapLoginManagement:165
>>>>> [http-nio-0.0.0.0-5080-exec-10] - LdapLoginmanagement.doLdapLogin
>>>>> ERROR 09-19 11:47:25.924 o.a.o.l.LdapLoginManagement:351
>>>>> [http-nio-0.0.0.0-5080-exec-10] - Not authenticated.
>>>>> org.apache.directory.api.ldap.model.exception.LdapAuthenticationException:
>>>>> 80090308: LdapErr: DSID-0C090334, comment: AcceptSecurityContext error,
>>>>> data 525, vece\00
>>>>> at
>>>>> org.apache.directory.api.ldap.model.message.ResultCodeEnum.processResponse(ResultCodeEnum.java:2021)
>>>>> ~[api-all-jar-1.0.0-M23.jar:1.0.0-M23]
>>>>> at
>>>>> org.apache.directory.ldap.client.api.AbstractLdapConnection.bind(AbstractLdapConnection.java:129)
>>>>> ~[api-all-jar-1.0.0-M23.jar:1.0.0-M23]
>>>>> at
>>>>> org.apache.openmeetings.ldap.LdapLoginManagement.login(LdapLoginManagement.java:275)
>>>>> ~[openmeetings-core-3.0.3-RELEASE.jar:na]
>>>>> at
>>>>> org.apache.openmeetings.web.app.WebSession.signIn(WebSession.java:257)
>>>>> [openmeetings-web-3.0.3-RELEASE.jar:na]
>>>>> at
>>>>> org.apache.openmeetings.web.pages.auth.SignInDialog.onSubmit(SignInDialog.java:190)
>>>>> [openmeetings-web-3.0.3-RELEASE.jar:na]
>>>>> at
>>>>> com.googlecode.wicket.jquery.ui.widget.dialog.AbstractFormDialog$DialogFormSubmitter.onSubmit(AbstractFormDialog.java:279)
>>>>> [wicket-jquery-ui-jar-6.16.0.jar:na]
>>>>> at
>>>>> org.apache.wicket.markup.html.form.Form.delegateSubmit(Form.java:1266)
>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>> at org.apache.wicket.markup.html.form.Form.process(Form.java:938)
>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>> at
>>>>> org.apache.wicket.markup.html.form.StatelessForm.process(StatelessForm.java:96)
>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>> at
>>>>> org.apache.wicket.markup.html.form.Form.onFormSubmitted(Form.java:770)
>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>> at
>>>>> com.googlecode.wicket.jquery.ui.widget.dialog.AbstractFormDialog.internalOnClick(AbstractFormDialog.java:200)
>>>>> [wicket-jquery-ui-jar-6.16.0.jar:na]
>>>>> at
>>>>> com.googlecode.wicket.jquery.ui.widget.dialog.AbstractDialog$1.onClick(AbstractDialog.java:439)
>>>>> [wicket-jquery-ui-jar-6.16.0.jar:na]
>>>>> at
>>>>> com.googlecode.wicket.jquery.ui.widget.dialog.DialogBehavior.onAjax(DialogBehavior.java:175)
>>>>> [wicket-jquery-ui-jar-6.16.0.jar:na]
>>>>> at
>>>>> com.googlecode.wicket.jquery.core.ajax.JQueryAjaxBehavior.respond(JQueryAjaxBehavior.java:171)
>>>>> [wicket-jquery-ui-core-jar-6.16.0.jar:na]
>>>>> at
>>>>> org.apache.wicket.ajax.AbstractDefaultAjaxBehavior.onRequest(AbstractDefaultAjaxBehavior.java:633)
>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>> at sun.reflect.GeneratedMethodAccessor91.invoke(Unknown Source)
>>>>> ~[na:na]
>>>>> at
>>>>> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
>>>>> ~[na:1.7.0_65]
>>>>> at java.lang.reflect.Method.invoke(Method.java:606) ~[na:1.7.0_65]
>>>>> at
>>>>> org.apache.wicket.RequestListenerInterface.internalInvoke(RequestListenerInterface.java:258)
>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>> at
>>>>> org.apache.wicket.RequestListenerInterface.invoke(RequestListenerInterface.java:241)
>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>> at
>>>>> org.apache.wicket.core.request.handler.ListenerInterfaceRequestHandler.invokeListener(ListenerInterfaceRequestHandler.java:250)
>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>> at
>>>>> org.apache.wicket.core.request.handler.ListenerInterfaceRequestHandler.respond(ListenerInterfaceRequestHandler.java:236)
>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>> at
>>>>> org.apache.wicket.request.cycle.RequestCycle$HandlerExecutor.respond(RequestCycle.java:862)
>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>> at
>>>>> org.apache.wicket.request.RequestHandlerStack.execute(RequestHandlerStack.java:64)
>>>>> [wicket-request-jar-6.16.0.jar:6.16.0]
>>>>> at
>>>>> org.apache.wicket.request.cycle.RequestCycle.execute(RequestCycle.java:261)
>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>> at
>>>>> org.apache.wicket.request.cycle.RequestCycle.processRequest(RequestCycle.java:218)
>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>> at
>>>>> org.apache.wicket.request.cycle.RequestCycle.processRequestAndDetach(RequestCycle.java:289)
>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>> at
>>>>> org.apache.wicket.protocol.ws.AbstractUpgradeFilter.processRequestCycle(AbstractUpgradeFilter.java:59)
>>>>> [wicket-native-websocket-core-jar-6.16.0.jar:6.16.0]
>>>>> at
>>>>> org.apache.wicket.protocol.http.WicketFilter.processRequest(WicketFilter.java:201)
>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>> at
>>>>> org.apache.wicket.protocol.http.WicketFilter.doFilter(WicketFilter.java:282)
>>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>>> at
>>>>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:241)
>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>> at
>>>>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:208)
>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>> at
>>>>> org.red5.logging.LoggerContextFilter.doFilter(LoggerContextFilter.java:77)
>>>>> [red5-server.jar:na]
>>>>> at
>>>>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:241)
>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>> at
>>>>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:208)
>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>> at
>>>>> org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:220)
>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>> at
>>>>> org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:122)
>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>> at
>>>>> org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:501)
>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>> at
>>>>> org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:171)
>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>> at
>>>>> org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:103)
>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>> at
>>>>> org.apache.catalina.valves.AccessLogValve.invoke(AccessLogValve.java:950)
>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>> at
>>>>> org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:116)
>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>> at
>>>>> org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:408)
>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>> at
>>>>> org.apache.coyote.http11.AbstractHttp11Processor.process(AbstractHttp11Processor.java:1070)
>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>> at
>>>>> org.apache.coyote.AbstractProtocol$AbstractConnectionHandler.process(AbstractProtocol.java:611)
>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>> at
>>>>> org.apache.tomcat.util.net.NioEndpoint$SocketProcessor.doRun(NioEndpoint.java:1736)
>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>> at
>>>>> org.apache.tomcat.util.net.NioEndpoint$SocketProcessor.run(NioEndpoint.java:1695)
>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>> at
>>>>> java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1145)
>>>>> [na:1.7.0_65]
>>>>> at
>>>>> java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:615)
>>>>> [na:1.7.0_65]
>>>>> at
>>>>> org.apache.tomcat.util.threads.TaskThread$WrappingRunnable.run(TaskThread.java:61)
>>>>> [tomcat-embed-core.jar:7.0.55]
>>>>> at java.lang.Thread.run(Thread.java:745) [na:1.7.0_65]
>>>>> DEBUG 09-19 11:47:25.927 o.a.w.u.c.CookieUtils:266
>>>>> [http-nio-0.0.0.0-5080-exec-10] - Unable to find Cookie with name=LoggedIn
>>>>> and request URI=signin?1-1.IBehaviorListener.1-signin
>>>>> DEBUG 09-19 11:47:25.929 o.a.w.f.FeedbackMessages:69
>>>>> [http-nio-0.0.0.0-5080-exec-10] - Adding feedback message '[FeedbackMessage
>>>>> message = "Invalid password", reporter = signin, level = ERROR]'
>>>>> DEBUG 09-19 11:47:25.929 o.a.w.u.c.CookieUtils:266
>>>>> [http-nio-0.0.0.0-5080-exec-10] - Unable to find Cookie with name=LoggedIn
>>>>> and request URI=signin?1-1.IBehaviorListener.1-signin
>>>>> DEBUG 09-19 11:47:25.930 o.a.wicket.Page:871
>>>>> [http-nio-0.0.0.0-5080-exec-10] - ending request for page [Page class =
>>>>> org.apache.openmeetings.web.pages.auth.SignInPage, id = 1, render count =
>>>>> 1], request
>>>>> org.apache.wicket.protocol.http.servlet.ServletWebRequest@a6e74b
>>>>> DEBUG 09-19 11:47:25.930 o.a.wicket.Page:871
>>>>> [http-nio-0.0.0.0-5080-exec-10] - ending request for page [Page class =
>>>>> org.apache.openmeetings.web.pages.auth.SignInPage, id = 1, render count =
>>>>> 1], request
>>>>> org.apache.wicket.protocol.http.servlet.ServletWebRequest@a6e74b
>>>>> DEBUG 09-19 11:47:25.930 o.a.wicket.Page:871
>>>>> [http-nio-0.0.0.0-5080-exec-10] - ending request for page [Page class =
>>>>> org.apache.openmeetings.web.pages.auth.SignInPage, id = 1, render count =
>>>>> 1], request
>>>>> org.apache.wicket.protocol.http.servlet.ServletWebRequest@a6e74b
>>>>> DEBUG 09-19 11:47:25.988
>>>>> o.a.w.p.AsynchronousDataStore$PageSavingRunnable:354
>>>>> [Wicket-PageSavingThread] - Saving asynchronously: Entry
>>>>> [sessionId=2A10AA69C3E771FF51FABD4D26A20559, pageId=1]...
>>>>> DEBUG 09-19 11:47:25.988 o.a.w.p.DiskDataStore:186
>>>>> [Wicket-PageSavingThread] - Storing data for page with id '1' in session
>>>>> with id '2A10AA69C3E771FF51FABD4D26A20559'
>>>>> DEBUG 09-19 11:47:25.988 o.a.w.p.PageAccessSynchronizer:195
>>>>> [http-nio-0.0.0.0-5080-exec-10] - 'http-nio-0.0.0.0-5080-exec-10' released
>>>>> lock to page with id '1'
>>>>> DEBUG 09-19 11:47:25.988 o.a.w.p.PageAccessSynchronizer:346
>>>>> [http-nio-0.0.0.0-5080-exec-10] - 'http-nio-0.0.0.0-5080-exec-10' notifying
>>>>> blocked threads
>>>>>
>>>>>
>>>>>
>>>>>
>>>>>
>>>>>
>>>>>
>>>>>
>>>>>
>>>>> And here is my conf file :
>>>>>
>>>>> #
>>>>> # Licensed to the Apache Software Foundation (ASF) under one
>>>>> # or more contributor license agreements. See the NOTICE file
>>>>> # distributed with this work for additional information
>>>>> # regarding copyright ownership. The ASF licenses this file
>>>>> # to you under the Apache License, Version 2.0 (the
>>>>> # "License"); you may not use this file except in compliance
>>>>> # with the License. You may obtain a copy of the License at
>>>>> #
>>>>> # http://www.apache.org/licenses/LICENSE-2.0
>>>>> #
>>>>> # Unless required by applicable law or agreed to in writing,
>>>>> # software distributed under the License is distributed on an
>>>>> # "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
>>>>> # KIND, either express or implied. See the License for the
>>>>> # specific language governing permissions and limitations
>>>>> # under the License.
>>>>> #
>>>>> #ConfigurationFile for LDAP Auth
>>>>> #ConfigKey 'ldap_config_path' must be set in DataBase Configration of
>>>>> OM and point to this file
>>>>> #o.becherer,14.01.2009
>>>>> #LDAP URL
>>>>> # This is the URL used to access your LDAP server.
>>>>> # if you want to use "ldaps://" links, please be aware that you need
>>>>> to import your CA certificate
>>>>> # to a java keystore and add the -Djavax.net.ssl.keyStore,
>>>>> -Djavax.net.ssl.keyStorePassword,
>>>>> # -Djavax.net.ssl.trustStore and -Djavax.net.ssl.trustStorePassword
>>>>> parameters to your
>>>>> # JAVA_OPT environment
>>>>> ldap_conn_host=@IP_of_my_AD
>>>>> ldap_conn_port=389
>>>>> ldap_conn_secure=false
>>>>> # Login distinguished name (DN) for Authentication on LDAP Server -
>>>>> keep empty if not required
>>>>> # Use full qualified LDAP DN
>>>>>
>>>>> ldap_admin_dn=CN=adconnect,OU=Comptes,OU=SI,OU=Services,OU=COMPANY,DC=mycompany,DC=priv
>>>>> # Loginpass for Authentication on LDAP Server - keep empty if not
>>>>> required
>>>>> ldap_passwd=pass_for_user_adconnect
>>>>> # base to search for userdata(of user, that wants to login)
>>>>> ldap_search_base=DC=mycompany,DC=priv
>>>>> # Fieldnames (can differ between Ldap servers)
>>>>> ldap_search_query=(uid=%s)
>>>>> # the scope of the search might be: OBJECT, ONELEVEL, SUBTREE
>>>>> ldap_search_scope=ONELEVEL
>>>>> # Ldap auth type(NONE, SEARCHANDBIND, SIMPLEBIND)
>>>>> # When using SIMPLEBIND a simple bind is performed on the LDAP server
>>>>> to check user authentication
>>>>> # When using NONE, the Ldap server is not used for authentication
>>>>> ldap_auth_type=SIMPLEBIND
>>>>> # userDN format, will be used to bind if ldap_auth_type=SIMPLEBIND
>>>>> # might be used to get provisionningDn in case ldap_auth_type=NONE
>>>>> ldap_userdn_format=uid=%s,OU=COMPANY,DC=mycompany,DC=priv
>>>>> # Ldap provisioning type(NONE, AUTOCREATE, AUTOUPDATE)
>>>>> ldap_provisionning=AUTOCREATE
>>>>> # Set this to 'true' if you want to use admin_dn to get user
>>>>> attributes
>>>>> # If any other value is set, user_dn will be used
>>>>> ldap_use_admin_to_get_attrs=true
>>>>> # Ldap-password synchronization to OM DB
>>>>> # Set this to 'true' if you want OM to synchronize the user
>>>>> Ldap-password to OM's internal DB
>>>>> # If you want to disable the feature, set this to any other string.
>>>>> # Defautl value is 'true'
>>>>> ldap_sync_password_to_om=true
>>>>> # Ldap user attributes mapping
>>>>> # Set the following internal OM user attributes to their corresponding
>>>>> Ldap-attribute
>>>>> ldap_user_attr_lastname=sn
>>>>> ldap_user_attr_firstname=givenName
>>>>> ldap_user_attr_mail=mail
>>>>> ldap_user_attr_street=streetAddress
>>>>> ldap_user_attr_additionalname=description
>>>>> ldap_user_attr_fax=facsimileTelephoneNumber
>>>>> ldap_user_attr_zip=postalCode
>>>>> ldap_user_attr_country=co
>>>>> ldap_user_attr_town=l
>>>>> ldap_user_attr_phone=telephoneNumber
>>>>> # optional, only absolute URLs make sense
>>>>> #ldap_user_picture_uri=picture_uri
>>>>> # optional
>>>>> # the timezone has to match any timezone available in Java, otherwise
>>>>> the timezone defined in the value of
>>>>> # the conf_key "default.timezone" in OpenMeetings "configurations"
>>>>> table
>>>>> #ldap_user_timezone=timezone
>>>>> # Ldap ignore upper/lower case, convert all input to lower case
>>>>> ldap_use_lower_case=false
>>>>>
>>>>>
>>>>>
>>>>> Thanks a lot for your help.
>>>>>
>>>>> Greg.
>>>>>
>>>>>
>>>>>
>>>>>
>>>>> 2014-09-18 17:52 GMT+02:00 Maxim Solodovnik <so...@gmail.com>:
>>>>>
>>>>>> please check this URL:
>>>>>> http://kb.juniper.net/InfoCenter/index?page=content&id=KB17098
>>>>>> According to it you have "User not found"
>>>>>>
>>>>>> could you provide more ldap related logs?
>>>>>> it might be Admin not found or user entered in login form not found
>>>>>> depending on your settings
>>>>>>
>>>>>> On 18 September 2014 21:43, Grégory Mangeney <ma...@gmail.com>
>>>>>> wrote:
>>>>>>
>>>>>>> Hello, It's me again...
>>>>>>> I'm back.
>>>>>>> Now I have a new problem to connect to my AD...
>>>>>>> In log file it is write : *ERROR ......... Not authenticated*
>>>>>>> witch is a quite better message than before but after that it is
>>>>>>> write : *LdapErr: DSID-0C090334, comment: AcceptSecurityContext
>>>>>>> error, data 525, vece\00 at........*
>>>>>>>
>>>>>>> I try to understand my problem but "AcceptSecurityContext error"
>>>>>>> seems to speack about a security problem.
>>>>>>> I have set my ldap_conn_secure=false in om_ldap.conf.
>>>>>>> I don't understand what could be my problem.
>>>>>>>
>>>>>>> thanks a lot for your ideas.
>>>>>>>
>>>>>>> Greg.
>>>>>>> 2014-09-18 15:37 GMT+02:00 Grégory Mangeney <ma...@gmail.com>:
>>>>>>>
>>>>>>>> Ok, I finally understand that I have to put the filename and only
>>>>>>>> the filename without */usr/lib/red5/webapps/openmeetings/conf/*
>>>>>>>>
>>>>>>>> Now I have a new message whitch said me invalid password...
>>>>>>>> It's quite better...
>>>>>>>> Thank you...
>>>>>>>> I could continue to try to set it now.
>>>>>>>> bye
>>>>>>>>
>>>>>>>> Greg.
>>>>>>>>
>>>>>>>>
>>>>>>>>
>>>>>>>> 2014-09-18 15:06 GMT+02:00 Maxim Solodovnik <so...@gmail.com>:
>>>>>>>>
>>>>>>>>> you need to write file name relative to webapps/openmeetings/conf
>>>>>>>>> folder
>>>>>>>>> in your case *om_ldap.cfg *should be specified
>>>>>>>>>
>>>>>>>>> On 18 September 2014 20:04, Grégory Mangeney <ma...@gmail.com>
>>>>>>>>> wrote:
>>>>>>>>>
>>>>>>>>>> Thank you very much but I don't understand very well.
>>>>>>>>>> I think I put the right information...
>>>>>>>>>> Do you want to say that I have to write :
>>>>>>>>>> */usr/lib/red5/webapps/openmeetings/conf/* without the filename
>>>>>>>>>> *om_ldap.cfg* at the end?
>>>>>>>>>> Thanks for your help
>>>>>>>>>> Greg
>>>>>>>>>>
>>>>>>>>>>
>>>>>>>>>> 2014-09-18 14:52 GMT+02:00 Maxim Solodovnik <solomax666@gmail.com
>>>>>>>>>> >:
>>>>>>>>>>
>>>>>>>>>>> AFAIK the path should be relative to /usr/lib/red5/webapps/
>>>>>>>>>>> openmeetings/conf
>>>>>>>>>>> Please change this path
>>>>>>>>>>>
>>>>>>>>>>> Additionally you can file JIRA issue to add check to the Admin
>>>>>>>>>>> screen (so path will be validated on enter)
>>>>>>>>>>>
>>>>>>>>>>> On 18 September 2014 19:44, Grégory Mangeney <mangeney@gmail.com
>>>>>>>>>>> > wrote:
>>>>>>>>>>>
>>>>>>>>>>>> Hello,
>>>>>>>>>>>> I have the same problem: I could not connect with AD.
>>>>>>>>>>>> I have the domain at the login screen,
>>>>>>>>>>>> I am using the 3.0.3.
>>>>>>>>>>>> I found this line in my log file :* ERROR 09-18 14:28:33.994
>>>>>>>>>>>> o.a.o.l.LdapLoginManagement:147 [http-nio-0.0.0.0-5080-exec-4] - Error on
>>>>>>>>>>>> LdapLogin : Configurationdata couldnt be retrieved!*
>>>>>>>>>>>>
>>>>>>>>>>>> This seem strange because in my LDAP config (in openmeetings
>>>>>>>>>>>> Administration/LDAP menu), I put the correct path in the "Config file name"
>>>>>>>>>>>> : /usr/lib/red5/webapps/openmeetings/conf/om_ldap.cfg
>>>>>>>>>>>>
>>>>>>>>>>>> Why is this error appeared : *Configurationdata couldnt be
>>>>>>>>>>>> retrieved! *???
>>>>>>>>>>>>
>>>>>>>>>>>>
>>>>>>>>>>>> Thanks a lot
>>>>>>>>>>>>
>>>>>>>>>>>> Greg
>>>>>>>>>>>>
>>>>>>>>>>>>
>>>>>>>>>>>> 2014-09-17 12:52 GMT+02:00 Maxim Solodovnik <
>>>>>>>>>>>> solomax666@gmail.com>:
>>>>>>>>>>>>
>>>>>>>>>>>>> great :)
>>>>>>>>>>>>>
>>>>>>>>>>>>> On 17 September 2014 17:46, Teddy Jayasaputra <
>>>>>>>>>>>>> teddy.jayasaputra@ocbcnisp.com> wrote:
>>>>>>>>>>>>>
>>>>>>>>>>>>>> Dear Maxim,
>>>>>>>>>>>>>>
>>>>>>>>>>>>>> After close look to console log.
>>>>>>>>>>>>>> We found this error :
>>>>>>>>>>>>>> ERROR 09-17 17:28:33.278 LdapLoginManagement.java 135070 285
>>>>>>>>>>>>>> org.apache.openmeetings.ldap.LdapLoginManagement
>>>>>>>>>>>>>> [http-nio-0.0.0.0-5080-exec-6] - User not found in OM DB and
>>>>>>>>>>>>>> Provisionning.AUTOCREATE was not set
>>>>>>>>>>>>>>
>>>>>>>>>>>>>> After we change ldapconfiguration file from
>>>>>>>>>>>>>> ldap_provisionning=NONE to AUTOCREATE we can login using AD.
>>>>>>>>>>>>>>
>>>>>>>>>>>>>> thanks.
>>>>>>>>>>>>>>
>>>>>>>>>>>>>> Best Regards,
>>>>>>>>>>>>>>
>>>>>>>>>>>>>>
>>>>>>>>>>>>>> -Teddy Jayasaputra-
>>>>>>>>>>>>>>
>>>>>>>>>>>>>>
>>>>>>>>>>>>>> On 9/17/2014 4:25 PM, Maxim Solodovnik wrote:
>>>>>>>>>>>>>>
>>>>>>>>>>>>>> do you have your AD domain on the login screen?
>>>>>>>>>>>>>> are there errors in the log?
>>>>>>>>>>>>>> what OM version are you using?
>>>>>>>>>>>>>>
>>>>>>>>>>>>>> On 17 September 2014 16:02, ARI HENDIAWAN <
>>>>>>>>>>>>>> ari.hendiawan@ocbcnisp.com> wrote:
>>>>>>>>>>>>>>
>>>>>>>>>>>>>>> Dear all,
>>>>>>>>>>>>>>> please we need extra information how to integrate
>>>>>>>>>>>>>>> openmeetings 3.0.3 with AD?
>>>>>>>>>>>>>>> we already setting on ldap.conf and still problem.. if we
>>>>>>>>>>>>>>> saw on AD , user that want sign-in openmeetings success, but on login menu
>>>>>>>>>>>>>>> openmeetings shown error "invalid password"
>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>> Tks
>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>> --
>>>>>>>>>>>>>>> Disclaimer :
>>>>>>>>>>>>>>> Confidential information may be contained in this message.
>>>>>>>>>>>>>>> If you are not the intended recipient, you are strictly prohibited and may
>>>>>>>>>>>>>>> be unlawful to use, copy, store, distribute, disclose or communicate any
>>>>>>>>>>>>>>> part of it to others and you are obliged to return it immediately to sender
>>>>>>>>>>>>>>> or notify us and delete the e-mail and any attachments from your system.
>>>>>>>>>>>>>>> Opinions, conclusions and other information in this e-mail that do not
>>>>>>>>>>>>>>> relate to the official business of any PT Bank OCBC NISP Tbk shall be
>>>>>>>>>>>>>>> understood as neither given nor endorsed by it. No assumption of
>>>>>>>>>>>>>>> responsibility or liability whatsoever is undertaken by PT Bank OCBC NISP
>>>>>>>>>>>>>>> Tbk in respect of prohibited and unauthorised use by any other person.
>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>>
>>>>>>>>>>>>>>
>>>>>>>>>>>>>>
>>>>>>>>>>>>>> --
>>>>>>>>>>>>>> WBR
>>>>>>>>>>>>>> Maxim aka solomax
>>>>>>>>>>>>>>
>>>>>>>>>>>>>>
>>>>>>>>>>>>>>
>>>>>>>>>>>>>>
>>>>>>>>>>>>>> --
>>>>>>>>>>>>>> Disclaimer :
>>>>>>>>>>>>>> Confidential information may be contained in this message. If
>>>>>>>>>>>>>> you are not the intended recipient, you are strictly prohibited and may be
>>>>>>>>>>>>>> unlawful to use, copy, store, distribute, disclose or communicate any part
>>>>>>>>>>>>>> of it to others and you are obliged to return it immediately to sender or
>>>>>>>>>>>>>> notify us and delete the e-mail and any attachments from your system.
>>>>>>>>>>>>>> Opinions, conclusions and other information in this e-mail that do not
>>>>>>>>>>>>>> relate to the official business of any PT Bank OCBC NISP Tbk shall be
>>>>>>>>>>>>>> understood as neither given nor endorsed by it. No assumption of
>>>>>>>>>>>>>> responsibility or liability whatsoever is undertaken by PT Bank OCBC NISP
>>>>>>>>>>>>>> Tbk in respect of prohibited and unauthorised use by any other person.
>>>>>>>>>>>>>>
>>>>>>>>>>>>>
>>>>>>>>>>>>>
>>>>>>>>>>>>>
>>>>>>>>>>>>> --
>>>>>>>>>>>>> WBR
>>>>>>>>>>>>> Maxim aka solomax
>>>>>>>>>>>>>
>>>>>>>>>>>>
>>>>>>>>>>>>
>>>>>>>>>>>
>>>>>>>>>>>
>>>>>>>>>>> --
>>>>>>>>>>> WBR
>>>>>>>>>>> Maxim aka solomax
>>>>>>>>>>>
>>>>>>>>>>
>>>>>>>>>>
>>>>>>>>>
>>>>>>>>>
>>>>>>>>> --
>>>>>>>>> WBR
>>>>>>>>> Maxim aka solomax
>>>>>>>>>
>>>>>>>>
>>>>>>>>
>>>>>>>
>>>>>>
>>>>>>
>>>>>> --
>>>>>> WBR
>>>>>> Maxim aka solomax
>>>>>>
>>>>>
>>>>>
>>>>
>>>>
>>>> --
>>>> WBR
>>>> Maxim aka solomax
>>>>
>>>
>>>
>>
>>
>> --
>> WBR
>> Maxim aka solomax
>>
>
>
Re: need info about problem when integration AD
Posted by Grégory Mangeney <ma...@gmail.com>.
a bad search query?
In this case, the loging error message shouldn't be somthing like :
"Login/password do not exist" ?
How could I check this point...
I do not modified the source code!
2014-09-22 11:25 GMT+02:00 Maxim Solodovnik <so...@gmail.com>:
> it seems like nothing was found
> Maybe bad search query?
>
> On 22 September 2014 15:55, Grégory Mangeney <ma...@gmail.com> wrote:
>
>> Hello Maxim.
>> Thanks a lot for your answer.
>> You're helpfull...
>>
>> I had ever try with SEARCHANDBIND but it still not working...
>> So I set it again to give you my logs...
>> The error is quite different but I could not understand what is the
>> problem...
>>
>> In the login screen I have the following message in red : "Unknown
>> error. Please report this to the administrator."
>>
>>
>>
>>
>> Here is my logs :
>>
>> ERROR 09-22 10:34:34.814 o.a.o.l.LdapLoginManagement:356
>> [http-nio-0.0.0.0-5080-exec-4] - Unexpected exception.
>> org.apache.directory.api.ldap.model.cursor.CursorLdapReferralException:
>> null
>> at
>> org.apache.directory.ldap.client.api.EntryCursorImpl.get(EntryCursorImpl.java:164)
>> ~[api-all-jar-1.0.0-M23.jar:1.0.0-M23]
>> at
>> org.apache.directory.ldap.client.api.EntryCursorImpl.get(EntryCursorImpl.java:50)
>> ~[api-all-jar-1.0.0-M23.jar:1.0.0-M23]
>> at
>> org.apache.openmeetings.ldap.LdapLoginManagement.login(LdapLoginManagement.java:258)
>> ~[openmeetings-core-3.0.3-RELEASE.jar:na]
>> at
>> org.apache.openmeetings.web.app.WebSession.signIn(WebSession.java:257)
>> [openmeetings-web-3.0.3-RELEASE.jar:na]
>> at
>> org.apache.openmeetings.web.pages.auth.SignInDialog.onSubmit(SignInDialog.java:190)
>> [openmeetings-web-3.0.3-RELEASE.jar:na]
>> at
>> com.googlecode.wicket.jquery.ui.widget.dialog.AbstractFormDialog$DialogFormSubmitter.onSubmit(AbstractFormDialog.java:279)
>> [wicket-jquery-ui-jar-6.16.0.jar:na]
>> at
>> org.apache.wicket.markup.html.form.Form.delegateSubmit(Form.java:1266)
>> [wicket-core-jar-6.16.0.jar:6.16.0]
>> at org.apache.wicket.markup.html.form.Form.process(Form.java:938)
>> [wicket-core-jar-6.16.0.jar:6.16.0]
>> at
>> org.apache.wicket.markup.html.form.StatelessForm.process(StatelessForm.java:96)
>> [wicket-core-jar-6.16.0.jar:6.16.0]
>> at
>> org.apache.wicket.markup.html.form.Form.onFormSubmitted(Form.java:770)
>> [wicket-core-jar-6.16.0.jar:6.16.0]
>> at
>> com.googlecode.wicket.jquery.ui.widget.dialog.AbstractFormDialog.internalOnClick(AbstractFormDialog.java:200)
>> [wicket-jquery-ui-jar-6.16.0.jar:na]
>> at
>> com.googlecode.wicket.jquery.ui.widget.dialog.AbstractDialog$1.onClick(AbstractDialog.java:439)
>> [wicket-jquery-ui-jar-6.16.0.jar:na]
>> at
>> com.googlecode.wicket.jquery.ui.widget.dialog.DialogBehavior.onAjax(DialogBehavior.java:175)
>> [wicket-jquery-ui-jar-6.16.0.jar:na]
>> at
>> com.googlecode.wicket.jquery.core.ajax.JQueryAjaxBehavior.respond(JQueryAjaxBehavior.java:171)
>> [wicket-jquery-ui-core-jar-6.16.0.jar:na]
>> at
>> org.apache.wicket.ajax.AbstractDefaultAjaxBehavior.onRequest(AbstractDefaultAjaxBehavior.java:633)
>> [wicket-core-jar-6.16.0.jar:6.16.0]
>> at sun.reflect.GeneratedMethodAccessor91.invoke(Unknown Source)
>> ~[na:na]
>> at
>> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
>> ~[na:1.7.0_65]
>> at java.lang.reflect.Method.invoke(Method.java:606) ~[na:1.7.0_65]
>> at
>> org.apache.wicket.RequestListenerInterface.internalInvoke(RequestListenerInterface.java:258)
>> [wicket-core-jar-6.16.0.jar:6.16.0]
>> at
>> org.apache.wicket.RequestListenerInterface.invoke(RequestListenerInterface.java:241)
>> [wicket-core-jar-6.16.0.jar:6.16.0]
>> at
>> org.apache.wicket.core.request.handler.ListenerInterfaceRequestHandler.invokeListener(ListenerInterfaceRequestHandler.java:250)
>> [wicket-core-jar-6.16.0.jar:6.16.0]
>> at
>> org.apache.wicket.core.request.handler.ListenerInterfaceRequestHandler.respond(ListenerInterfaceRequestHandler.java:236)
>> [wicket-core-jar-6.16.0.jar:6.16.0]
>> at
>> org.apache.wicket.request.cycle.RequestCycle$HandlerExecutor.respond(RequestCycle.java:862)
>> [wicket-core-jar-6.16.0.jar:6.16.0]
>> at
>> org.apache.wicket.request.RequestHandlerStack.execute(RequestHandlerStack.java:64)
>> [wicket-request-jar-6.16.0.jar:6.16.0]
>> at
>> org.apache.wicket.request.cycle.RequestCycle.execute(RequestCycle.java:261)
>> [wicket-core-jar-6.16.0.jar:6.16.0]
>> at
>> org.apache.wicket.request.cycle.RequestCycle.processRequest(RequestCycle.java:218)
>> [wicket-core-jar-6.16.0.jar:6.16.0]
>> at
>> org.apache.wicket.request.cycle.RequestCycle.processRequestAndDetach(RequestCycle.java:289)
>> [wicket-core-jar-6.16.0.jar:6.16.0]
>> at
>> org.apache.wicket.protocol.ws.AbstractUpgradeFilter.processRequestCycle(AbstractUpgradeFilter.java:59)
>> [wicket-native-websocket-core-jar-6.16.0.jar:6.16.0]
>> at
>> org.apache.wicket.protocol.http.WicketFilter.processRequest(WicketFilter.java:201)
>> [wicket-core-jar-6.16.0.jar:6.16.0]
>> at
>> org.apache.wicket.protocol.http.WicketFilter.doFilter(WicketFilter.java:282)
>> [wicket-core-jar-6.16.0.jar:6.16.0]
>> at
>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:241)
>> [tomcat-embed-core.jar:7.0.55]
>> at
>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:208)
>> [tomcat-embed-core.jar:7.0.55]
>> at
>> org.red5.logging.LoggerContextFilter.doFilter(LoggerContextFilter.java:77)
>> [red5-server.jar:na]
>> at
>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:241)
>> [tomcat-embed-core.jar:7.0.55]
>> at
>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:208)
>> [tomcat-embed-core.jar:7.0.55]
>> at
>> org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:220)
>> [tomcat-embed-core.jar:7.0.55]
>> at
>> org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:122)
>> [tomcat-embed-core.jar:7.0.55]
>> at
>> org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:501)
>> [tomcat-embed-core.jar:7.0.55]
>> at
>> org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:171)
>> [tomcat-embed-core.jar:7.0.55]
>> at
>> org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:103)
>> [tomcat-embed-core.jar:7.0.55]
>> at
>> org.apache.catalina.valves.AccessLogValve.invoke(AccessLogValve.java:950)
>> [tomcat-embed-core.jar:7.0.55]
>> at
>> org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:116)
>> [tomcat-embed-core.jar:7.0.55]
>> at
>> org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:408)
>> [tomcat-embed-core.jar:7.0.55]
>> at
>> org.apache.coyote.http11.AbstractHttp11Processor.process(AbstractHttp11Processor.java:1070)
>> [tomcat-embed-core.jar:7.0.55]
>> at
>> org.apache.coyote.AbstractProtocol$AbstractConnectionHandler.process(AbstractProtocol.java:611)
>> [tomcat-embed-core.jar:7.0.55]
>> at
>> org.apache.tomcat.util.net.NioEndpoint$SocketProcessor.doRun(NioEndpoint.java:1736)
>> [tomcat-embed-core.jar:7.0.55]
>> at
>> org.apache.tomcat.util.net.NioEndpoint$SocketProcessor.run(NioEndpoint.java:1695)
>> [tomcat-embed-core.jar:7.0.55]
>> at
>> java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1145)
>> [na:1.7.0_65]
>> at
>> java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:615)
>> [na:1.7.0_65]
>> at
>> org.apache.tomcat.util.threads.TaskThread$WrappingRunnable.run(TaskThread.java:61)
>> [tomcat-embed-core.jar:7.0.55]
>> at java.lang.Thread.run(Thread.java:745) [na:1.7.0_65]
>> DEBUG 09-22 10:34:34.817 o.a.w.u.c.CookieUtils:266
>> [http-nio-0.0.0.0-5080-exec-4] - Unable to find Cookie with name=LoggedIn
>> and request URI=signin?1-1.IBehaviorListener.1-signin
>> DEBUG 09-22 10:34:34.820 o.a.w.f.FeedbackMessages:69
>> [http-nio-0.0.0.0-5080-exec-4] - Adding feedback message '[FeedbackMessage
>> message = "Unknown error. Please report this to the administrator.",
>> reporter = signin, level = ERROR]'
>> DEBUG 09-22 10:34:34.821 o.a.w.u.c.CookieUtils:266
>> [http-nio-0.0.0.0-5080-exec-4] - Unable to find Cookie with name=LoggedIn
>> and request URI=signin?1-1.IBehaviorListener.1-signin
>> DEBUG 09-22 10:34:34.822 o.a.wicket.Page:871
>> [http-nio-0.0.0.0-5080-exec-4] - ending request for page [Page class =
>> org.apache.openmeetings.web.pages.auth.SignInPage, id = 1, render count =
>> 1], request
>> org.apache.wicket.protocol.http.servlet.ServletWebRequest@16618f3
>> DEBUG 09-22 10:34:34.822 o.a.wicket.Page:871
>> [http-nio-0.0.0.0-5080-exec-4] - ending request for page [Page class =
>> org.apache.openmeetings.web.pages.auth.SignInPage, id = 1, render count =
>> 1], request
>> org.apache.wicket.protocol.http.servlet.ServletWebRequest@16618f3
>> DEBUG 09-22 10:34:34.823 o.a.wicket.Page:871
>> [http-nio-0.0.0.0-5080-exec-4] - ending request for page [Page class =
>> org.apache.openmeetings.web.pages.auth.SignInPage, id = 1, render count =
>> 1], request
>> org.apache.wicket.protocol.http.servlet.ServletWebRequest@16618f3
>> DEBUG 09-22 10:34:34.828
>> o.a.w.p.AsynchronousDataStore$PageSavingRunnable:354
>> [Wicket-PageSavingThread] - Saving asynchronously: Entry
>> [sessionId=907ABBB232B18743F2A67024DA18F185, pageId=1]...
>> DEBUG 09-22 10:34:34.828 o.a.w.p.DiskDataStore:186
>> [Wicket-PageSavingThread] - Storing data for page with id '1' in session
>> with id '907ABBB232B18743F2A67024DA18F185'
>> DEBUG 09-22 10:34:34.828 o.a.w.p.PageAccessSynchronizer:195
>> [http-nio-0.0.0.0-5080-exec-4] - 'http-nio-0.0.0.0-5080-exec-4' released
>> lock to page with id '1'
>> DEBUG 09-22 10:34:34.828 o.a.w.p.PageAccessSynchronizer:346
>> [http-nio-0.0.0.0-5080-exec-4] - 'http-nio-0.0.0.0-5080-exec-4' notifying
>> blocked threads
>> DEBUG 09-22 10:34:36.341 o.a.o.m.MailHandler:249
>> [org.springframework.scheduling.quartz.SchedulerFactoryBean#0_Worker-1] -
>> resetSendingStatus enter ...
>>
>>
>>
>> Thank you for your time.
>>
>> Greg.
>>
>> 2014-09-20 8:59 GMT+02:00 Maxim Solodovnik <so...@gmail.com>:
>>
>>> According to the logs and config SIMPLEBIND failed for the user specified
>>> please try SEARCHANDBIND
>>>
>>> On 19 September 2014 17:09, Grégory Mangeney <ma...@gmail.com> wrote:
>>>
>>>> Hello.
>>>> Thank you for your link.
>>>> It appeare that I have a 525 error (user not found).
>>>>
>>>> I think the problem must be in my config file because I'm sure that my
>>>> user is good because I use it for an other app witch use it to connect with
>>>> AD.
>>>>
>>>> As you ask me i give you more line of my log file, after that I would
>>>> like to show you my conf file...
>>>> Maybe you will find a setting withch is not good!
>>>>
>>>>
>>>> So here is my log file whene I try to connect :
>>>> DEBUG 09-19 11:47:01.337 o.a.o.q.s.MeetingReminderJob:34
>>>> [org.springframework.scheduling.quartz.SchedulerFactoryBean#0_Worker-2] -
>>>> MeetingReminderJob.execute
>>>> DEBUG 09-19 11:47:25.760 o.a.w.p.h.s.ServletWebRequest:189
>>>> [http-nio-0.0.0.0-5080-exec-10] - Calculating context relative path from:
>>>> context path '/openmeetings', filterPrefix '', uri '/openmeetings/signin'
>>>> DEBUG 09-19 11:47:25.761 o.a.w.p.PageAccessSynchronizer:100
>>>> [http-nio-0.0.0.0-5080-exec-10] - 'http-nio-0.0.0.0-5080-exec-10'
>>>> attempting to acquire lock to page with id '1'
>>>> DEBUG 09-19 11:47:25.761 o.a.w.p.PageAccessSynchronizer:125
>>>> [http-nio-0.0.0.0-5080-exec-10] - http-nio-0.0.0.0-5080-exec-10 acquired
>>>> lock to page 1
>>>> DEBUG 09-19 11:47:25.762 o.a.o.d.d.s.SessiondataDao:68
>>>> [http-nio-0.0.0.0-5080-exec-10] - startsession :: startsession
>>>> DEBUG 09-19 11:47:25.763 o.a.o.u.c.ManageCryptStyle:32
>>>> [http-nio-0.0.0.0-5080-exec-10] - getInstanceOfCrypt::
>>>> configKeyCryptClassName:
>>>> org.apache.openmeetings.util.crypt.MD5Implementation
>>>> DEBUG 09-19 11:47:25.788 o.a.o.l.LdapLoginManagement:165
>>>> [http-nio-0.0.0.0-5080-exec-10] - LdapLoginmanagement.doLdapLogin
>>>> ERROR 09-19 11:47:25.924 o.a.o.l.LdapLoginManagement:351
>>>> [http-nio-0.0.0.0-5080-exec-10] - Not authenticated.
>>>> org.apache.directory.api.ldap.model.exception.LdapAuthenticationException:
>>>> 80090308: LdapErr: DSID-0C090334, comment: AcceptSecurityContext error,
>>>> data 525, vece\00
>>>> at
>>>> org.apache.directory.api.ldap.model.message.ResultCodeEnum.processResponse(ResultCodeEnum.java:2021)
>>>> ~[api-all-jar-1.0.0-M23.jar:1.0.0-M23]
>>>> at
>>>> org.apache.directory.ldap.client.api.AbstractLdapConnection.bind(AbstractLdapConnection.java:129)
>>>> ~[api-all-jar-1.0.0-M23.jar:1.0.0-M23]
>>>> at
>>>> org.apache.openmeetings.ldap.LdapLoginManagement.login(LdapLoginManagement.java:275)
>>>> ~[openmeetings-core-3.0.3-RELEASE.jar:na]
>>>> at
>>>> org.apache.openmeetings.web.app.WebSession.signIn(WebSession.java:257)
>>>> [openmeetings-web-3.0.3-RELEASE.jar:na]
>>>> at
>>>> org.apache.openmeetings.web.pages.auth.SignInDialog.onSubmit(SignInDialog.java:190)
>>>> [openmeetings-web-3.0.3-RELEASE.jar:na]
>>>> at
>>>> com.googlecode.wicket.jquery.ui.widget.dialog.AbstractFormDialog$DialogFormSubmitter.onSubmit(AbstractFormDialog.java:279)
>>>> [wicket-jquery-ui-jar-6.16.0.jar:na]
>>>> at
>>>> org.apache.wicket.markup.html.form.Form.delegateSubmit(Form.java:1266)
>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>> at org.apache.wicket.markup.html.form.Form.process(Form.java:938)
>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>> at
>>>> org.apache.wicket.markup.html.form.StatelessForm.process(StatelessForm.java:96)
>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>> at
>>>> org.apache.wicket.markup.html.form.Form.onFormSubmitted(Form.java:770)
>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>> at
>>>> com.googlecode.wicket.jquery.ui.widget.dialog.AbstractFormDialog.internalOnClick(AbstractFormDialog.java:200)
>>>> [wicket-jquery-ui-jar-6.16.0.jar:na]
>>>> at
>>>> com.googlecode.wicket.jquery.ui.widget.dialog.AbstractDialog$1.onClick(AbstractDialog.java:439)
>>>> [wicket-jquery-ui-jar-6.16.0.jar:na]
>>>> at
>>>> com.googlecode.wicket.jquery.ui.widget.dialog.DialogBehavior.onAjax(DialogBehavior.java:175)
>>>> [wicket-jquery-ui-jar-6.16.0.jar:na]
>>>> at
>>>> com.googlecode.wicket.jquery.core.ajax.JQueryAjaxBehavior.respond(JQueryAjaxBehavior.java:171)
>>>> [wicket-jquery-ui-core-jar-6.16.0.jar:na]
>>>> at
>>>> org.apache.wicket.ajax.AbstractDefaultAjaxBehavior.onRequest(AbstractDefaultAjaxBehavior.java:633)
>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>> at sun.reflect.GeneratedMethodAccessor91.invoke(Unknown Source)
>>>> ~[na:na]
>>>> at
>>>> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
>>>> ~[na:1.7.0_65]
>>>> at java.lang.reflect.Method.invoke(Method.java:606) ~[na:1.7.0_65]
>>>> at
>>>> org.apache.wicket.RequestListenerInterface.internalInvoke(RequestListenerInterface.java:258)
>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>> at
>>>> org.apache.wicket.RequestListenerInterface.invoke(RequestListenerInterface.java:241)
>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>> at
>>>> org.apache.wicket.core.request.handler.ListenerInterfaceRequestHandler.invokeListener(ListenerInterfaceRequestHandler.java:250)
>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>> at
>>>> org.apache.wicket.core.request.handler.ListenerInterfaceRequestHandler.respond(ListenerInterfaceRequestHandler.java:236)
>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>> at
>>>> org.apache.wicket.request.cycle.RequestCycle$HandlerExecutor.respond(RequestCycle.java:862)
>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>> at
>>>> org.apache.wicket.request.RequestHandlerStack.execute(RequestHandlerStack.java:64)
>>>> [wicket-request-jar-6.16.0.jar:6.16.0]
>>>> at
>>>> org.apache.wicket.request.cycle.RequestCycle.execute(RequestCycle.java:261)
>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>> at
>>>> org.apache.wicket.request.cycle.RequestCycle.processRequest(RequestCycle.java:218)
>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>> at
>>>> org.apache.wicket.request.cycle.RequestCycle.processRequestAndDetach(RequestCycle.java:289)
>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>> at
>>>> org.apache.wicket.protocol.ws.AbstractUpgradeFilter.processRequestCycle(AbstractUpgradeFilter.java:59)
>>>> [wicket-native-websocket-core-jar-6.16.0.jar:6.16.0]
>>>> at
>>>> org.apache.wicket.protocol.http.WicketFilter.processRequest(WicketFilter.java:201)
>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>> at
>>>> org.apache.wicket.protocol.http.WicketFilter.doFilter(WicketFilter.java:282)
>>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>>> at
>>>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:241)
>>>> [tomcat-embed-core.jar:7.0.55]
>>>> at
>>>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:208)
>>>> [tomcat-embed-core.jar:7.0.55]
>>>> at
>>>> org.red5.logging.LoggerContextFilter.doFilter(LoggerContextFilter.java:77)
>>>> [red5-server.jar:na]
>>>> at
>>>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:241)
>>>> [tomcat-embed-core.jar:7.0.55]
>>>> at
>>>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:208)
>>>> [tomcat-embed-core.jar:7.0.55]
>>>> at
>>>> org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:220)
>>>> [tomcat-embed-core.jar:7.0.55]
>>>> at
>>>> org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:122)
>>>> [tomcat-embed-core.jar:7.0.55]
>>>> at
>>>> org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:501)
>>>> [tomcat-embed-core.jar:7.0.55]
>>>> at
>>>> org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:171)
>>>> [tomcat-embed-core.jar:7.0.55]
>>>> at
>>>> org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:103)
>>>> [tomcat-embed-core.jar:7.0.55]
>>>> at
>>>> org.apache.catalina.valves.AccessLogValve.invoke(AccessLogValve.java:950)
>>>> [tomcat-embed-core.jar:7.0.55]
>>>> at
>>>> org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:116)
>>>> [tomcat-embed-core.jar:7.0.55]
>>>> at
>>>> org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:408)
>>>> [tomcat-embed-core.jar:7.0.55]
>>>> at
>>>> org.apache.coyote.http11.AbstractHttp11Processor.process(AbstractHttp11Processor.java:1070)
>>>> [tomcat-embed-core.jar:7.0.55]
>>>> at
>>>> org.apache.coyote.AbstractProtocol$AbstractConnectionHandler.process(AbstractProtocol.java:611)
>>>> [tomcat-embed-core.jar:7.0.55]
>>>> at
>>>> org.apache.tomcat.util.net.NioEndpoint$SocketProcessor.doRun(NioEndpoint.java:1736)
>>>> [tomcat-embed-core.jar:7.0.55]
>>>> at
>>>> org.apache.tomcat.util.net.NioEndpoint$SocketProcessor.run(NioEndpoint.java:1695)
>>>> [tomcat-embed-core.jar:7.0.55]
>>>> at
>>>> java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1145)
>>>> [na:1.7.0_65]
>>>> at
>>>> java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:615)
>>>> [na:1.7.0_65]
>>>> at
>>>> org.apache.tomcat.util.threads.TaskThread$WrappingRunnable.run(TaskThread.java:61)
>>>> [tomcat-embed-core.jar:7.0.55]
>>>> at java.lang.Thread.run(Thread.java:745) [na:1.7.0_65]
>>>> DEBUG 09-19 11:47:25.927 o.a.w.u.c.CookieUtils:266
>>>> [http-nio-0.0.0.0-5080-exec-10] - Unable to find Cookie with name=LoggedIn
>>>> and request URI=signin?1-1.IBehaviorListener.1-signin
>>>> DEBUG 09-19 11:47:25.929 o.a.w.f.FeedbackMessages:69
>>>> [http-nio-0.0.0.0-5080-exec-10] - Adding feedback message '[FeedbackMessage
>>>> message = "Invalid password", reporter = signin, level = ERROR]'
>>>> DEBUG 09-19 11:47:25.929 o.a.w.u.c.CookieUtils:266
>>>> [http-nio-0.0.0.0-5080-exec-10] - Unable to find Cookie with name=LoggedIn
>>>> and request URI=signin?1-1.IBehaviorListener.1-signin
>>>> DEBUG 09-19 11:47:25.930 o.a.wicket.Page:871
>>>> [http-nio-0.0.0.0-5080-exec-10] - ending request for page [Page class =
>>>> org.apache.openmeetings.web.pages.auth.SignInPage, id = 1, render count =
>>>> 1], request
>>>> org.apache.wicket.protocol.http.servlet.ServletWebRequest@a6e74b
>>>> DEBUG 09-19 11:47:25.930 o.a.wicket.Page:871
>>>> [http-nio-0.0.0.0-5080-exec-10] - ending request for page [Page class =
>>>> org.apache.openmeetings.web.pages.auth.SignInPage, id = 1, render count =
>>>> 1], request
>>>> org.apache.wicket.protocol.http.servlet.ServletWebRequest@a6e74b
>>>> DEBUG 09-19 11:47:25.930 o.a.wicket.Page:871
>>>> [http-nio-0.0.0.0-5080-exec-10] - ending request for page [Page class =
>>>> org.apache.openmeetings.web.pages.auth.SignInPage, id = 1, render count =
>>>> 1], request
>>>> org.apache.wicket.protocol.http.servlet.ServletWebRequest@a6e74b
>>>> DEBUG 09-19 11:47:25.988
>>>> o.a.w.p.AsynchronousDataStore$PageSavingRunnable:354
>>>> [Wicket-PageSavingThread] - Saving asynchronously: Entry
>>>> [sessionId=2A10AA69C3E771FF51FABD4D26A20559, pageId=1]...
>>>> DEBUG 09-19 11:47:25.988 o.a.w.p.DiskDataStore:186
>>>> [Wicket-PageSavingThread] - Storing data for page with id '1' in session
>>>> with id '2A10AA69C3E771FF51FABD4D26A20559'
>>>> DEBUG 09-19 11:47:25.988 o.a.w.p.PageAccessSynchronizer:195
>>>> [http-nio-0.0.0.0-5080-exec-10] - 'http-nio-0.0.0.0-5080-exec-10' released
>>>> lock to page with id '1'
>>>> DEBUG 09-19 11:47:25.988 o.a.w.p.PageAccessSynchronizer:346
>>>> [http-nio-0.0.0.0-5080-exec-10] - 'http-nio-0.0.0.0-5080-exec-10' notifying
>>>> blocked threads
>>>>
>>>>
>>>>
>>>>
>>>>
>>>>
>>>>
>>>>
>>>>
>>>> And here is my conf file :
>>>>
>>>> #
>>>> # Licensed to the Apache Software Foundation (ASF) under one
>>>> # or more contributor license agreements. See the NOTICE file
>>>> # distributed with this work for additional information
>>>> # regarding copyright ownership. The ASF licenses this file
>>>> # to you under the Apache License, Version 2.0 (the
>>>> # "License"); you may not use this file except in compliance
>>>> # with the License. You may obtain a copy of the License at
>>>> #
>>>> # http://www.apache.org/licenses/LICENSE-2.0
>>>> #
>>>> # Unless required by applicable law or agreed to in writing,
>>>> # software distributed under the License is distributed on an
>>>> # "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
>>>> # KIND, either express or implied. See the License for the
>>>> # specific language governing permissions and limitations
>>>> # under the License.
>>>> #
>>>> #ConfigurationFile for LDAP Auth
>>>> #ConfigKey 'ldap_config_path' must be set in DataBase Configration of
>>>> OM and point to this file
>>>> #o.becherer,14.01.2009
>>>> #LDAP URL
>>>> # This is the URL used to access your LDAP server.
>>>> # if you want to use "ldaps://" links, please be aware that you need to
>>>> import your CA certificate
>>>> # to a java keystore and add the -Djavax.net.ssl.keyStore,
>>>> -Djavax.net.ssl.keyStorePassword,
>>>> # -Djavax.net.ssl.trustStore and -Djavax.net.ssl.trustStorePassword
>>>> parameters to your
>>>> # JAVA_OPT environment
>>>> ldap_conn_host=@IP_of_my_AD
>>>> ldap_conn_port=389
>>>> ldap_conn_secure=false
>>>> # Login distinguished name (DN) for Authentication on LDAP Server -
>>>> keep empty if not required
>>>> # Use full qualified LDAP DN
>>>>
>>>> ldap_admin_dn=CN=adconnect,OU=Comptes,OU=SI,OU=Services,OU=COMPANY,DC=mycompany,DC=priv
>>>> # Loginpass for Authentication on LDAP Server - keep empty if not
>>>> required
>>>> ldap_passwd=pass_for_user_adconnect
>>>> # base to search for userdata(of user, that wants to login)
>>>> ldap_search_base=DC=mycompany,DC=priv
>>>> # Fieldnames (can differ between Ldap servers)
>>>> ldap_search_query=(uid=%s)
>>>> # the scope of the search might be: OBJECT, ONELEVEL, SUBTREE
>>>> ldap_search_scope=ONELEVEL
>>>> # Ldap auth type(NONE, SEARCHANDBIND, SIMPLEBIND)
>>>> # When using SIMPLEBIND a simple bind is performed on the LDAP server
>>>> to check user authentication
>>>> # When using NONE, the Ldap server is not used for authentication
>>>> ldap_auth_type=SIMPLEBIND
>>>> # userDN format, will be used to bind if ldap_auth_type=SIMPLEBIND
>>>> # might be used to get provisionningDn in case ldap_auth_type=NONE
>>>> ldap_userdn_format=uid=%s,OU=COMPANY,DC=mycompany,DC=priv
>>>> # Ldap provisioning type(NONE, AUTOCREATE, AUTOUPDATE)
>>>> ldap_provisionning=AUTOCREATE
>>>> # Set this to 'true' if you want to use admin_dn to get user attributes
>>>> # If any other value is set, user_dn will be used
>>>> ldap_use_admin_to_get_attrs=true
>>>> # Ldap-password synchronization to OM DB
>>>> # Set this to 'true' if you want OM to synchronize the user
>>>> Ldap-password to OM's internal DB
>>>> # If you want to disable the feature, set this to any other string.
>>>> # Defautl value is 'true'
>>>> ldap_sync_password_to_om=true
>>>> # Ldap user attributes mapping
>>>> # Set the following internal OM user attributes to their corresponding
>>>> Ldap-attribute
>>>> ldap_user_attr_lastname=sn
>>>> ldap_user_attr_firstname=givenName
>>>> ldap_user_attr_mail=mail
>>>> ldap_user_attr_street=streetAddress
>>>> ldap_user_attr_additionalname=description
>>>> ldap_user_attr_fax=facsimileTelephoneNumber
>>>> ldap_user_attr_zip=postalCode
>>>> ldap_user_attr_country=co
>>>> ldap_user_attr_town=l
>>>> ldap_user_attr_phone=telephoneNumber
>>>> # optional, only absolute URLs make sense
>>>> #ldap_user_picture_uri=picture_uri
>>>> # optional
>>>> # the timezone has to match any timezone available in Java, otherwise
>>>> the timezone defined in the value of
>>>> # the conf_key "default.timezone" in OpenMeetings "configurations" table
>>>> #ldap_user_timezone=timezone
>>>> # Ldap ignore upper/lower case, convert all input to lower case
>>>> ldap_use_lower_case=false
>>>>
>>>>
>>>>
>>>> Thanks a lot for your help.
>>>>
>>>> Greg.
>>>>
>>>>
>>>>
>>>>
>>>> 2014-09-18 17:52 GMT+02:00 Maxim Solodovnik <so...@gmail.com>:
>>>>
>>>>> please check this URL:
>>>>> http://kb.juniper.net/InfoCenter/index?page=content&id=KB17098
>>>>> According to it you have "User not found"
>>>>>
>>>>> could you provide more ldap related logs?
>>>>> it might be Admin not found or user entered in login form not found
>>>>> depending on your settings
>>>>>
>>>>> On 18 September 2014 21:43, Grégory Mangeney <ma...@gmail.com>
>>>>> wrote:
>>>>>
>>>>>> Hello, It's me again...
>>>>>> I'm back.
>>>>>> Now I have a new problem to connect to my AD...
>>>>>> In log file it is write : *ERROR ......... Not authenticated*
>>>>>> witch is a quite better message than before but after that it is
>>>>>> write : *LdapErr: DSID-0C090334, comment: AcceptSecurityContext
>>>>>> error, data 525, vece\00 at........*
>>>>>>
>>>>>> I try to understand my problem but "AcceptSecurityContext error"
>>>>>> seems to speack about a security problem.
>>>>>> I have set my ldap_conn_secure=false in om_ldap.conf.
>>>>>> I don't understand what could be my problem.
>>>>>>
>>>>>> thanks a lot for your ideas.
>>>>>>
>>>>>> Greg.
>>>>>> 2014-09-18 15:37 GMT+02:00 Grégory Mangeney <ma...@gmail.com>:
>>>>>>
>>>>>>> Ok, I finally understand that I have to put the filename and only
>>>>>>> the filename without */usr/lib/red5/webapps/openmeetings/conf/*
>>>>>>>
>>>>>>> Now I have a new message whitch said me invalid password...
>>>>>>> It's quite better...
>>>>>>> Thank you...
>>>>>>> I could continue to try to set it now.
>>>>>>> bye
>>>>>>>
>>>>>>> Greg.
>>>>>>>
>>>>>>>
>>>>>>>
>>>>>>> 2014-09-18 15:06 GMT+02:00 Maxim Solodovnik <so...@gmail.com>:
>>>>>>>
>>>>>>>> you need to write file name relative to webapps/openmeetings/conf
>>>>>>>> folder
>>>>>>>> in your case *om_ldap.cfg *should be specified
>>>>>>>>
>>>>>>>> On 18 September 2014 20:04, Grégory Mangeney <ma...@gmail.com>
>>>>>>>> wrote:
>>>>>>>>
>>>>>>>>> Thank you very much but I don't understand very well.
>>>>>>>>> I think I put the right information...
>>>>>>>>> Do you want to say that I have to write :
>>>>>>>>> */usr/lib/red5/webapps/openmeetings/conf/* without the filename
>>>>>>>>> *om_ldap.cfg* at the end?
>>>>>>>>> Thanks for your help
>>>>>>>>> Greg
>>>>>>>>>
>>>>>>>>>
>>>>>>>>> 2014-09-18 14:52 GMT+02:00 Maxim Solodovnik <so...@gmail.com>
>>>>>>>>> :
>>>>>>>>>
>>>>>>>>>> AFAIK the path should be relative to /usr/lib/red5/webapps/
>>>>>>>>>> openmeetings/conf
>>>>>>>>>> Please change this path
>>>>>>>>>>
>>>>>>>>>> Additionally you can file JIRA issue to add check to the Admin
>>>>>>>>>> screen (so path will be validated on enter)
>>>>>>>>>>
>>>>>>>>>> On 18 September 2014 19:44, Grégory Mangeney <ma...@gmail.com>
>>>>>>>>>> wrote:
>>>>>>>>>>
>>>>>>>>>>> Hello,
>>>>>>>>>>> I have the same problem: I could not connect with AD.
>>>>>>>>>>> I have the domain at the login screen,
>>>>>>>>>>> I am using the 3.0.3.
>>>>>>>>>>> I found this line in my log file :* ERROR 09-18 14:28:33.994
>>>>>>>>>>> o.a.o.l.LdapLoginManagement:147 [http-nio-0.0.0.0-5080-exec-4] - Error on
>>>>>>>>>>> LdapLogin : Configurationdata couldnt be retrieved!*
>>>>>>>>>>>
>>>>>>>>>>> This seem strange because in my LDAP config (in openmeetings
>>>>>>>>>>> Administration/LDAP menu), I put the correct path in the "Config file name"
>>>>>>>>>>> : /usr/lib/red5/webapps/openmeetings/conf/om_ldap.cfg
>>>>>>>>>>>
>>>>>>>>>>> Why is this error appeared : *Configurationdata couldnt be
>>>>>>>>>>> retrieved! *???
>>>>>>>>>>>
>>>>>>>>>>>
>>>>>>>>>>> Thanks a lot
>>>>>>>>>>>
>>>>>>>>>>> Greg
>>>>>>>>>>>
>>>>>>>>>>>
>>>>>>>>>>> 2014-09-17 12:52 GMT+02:00 Maxim Solodovnik <
>>>>>>>>>>> solomax666@gmail.com>:
>>>>>>>>>>>
>>>>>>>>>>>> great :)
>>>>>>>>>>>>
>>>>>>>>>>>> On 17 September 2014 17:46, Teddy Jayasaputra <
>>>>>>>>>>>> teddy.jayasaputra@ocbcnisp.com> wrote:
>>>>>>>>>>>>
>>>>>>>>>>>>> Dear Maxim,
>>>>>>>>>>>>>
>>>>>>>>>>>>> After close look to console log.
>>>>>>>>>>>>> We found this error :
>>>>>>>>>>>>> ERROR 09-17 17:28:33.278 LdapLoginManagement.java 135070 285
>>>>>>>>>>>>> org.apache.openmeetings.ldap.LdapLoginManagement
>>>>>>>>>>>>> [http-nio-0.0.0.0-5080-exec-6] - User not found in OM DB and
>>>>>>>>>>>>> Provisionning.AUTOCREATE was not set
>>>>>>>>>>>>>
>>>>>>>>>>>>> After we change ldapconfiguration file from
>>>>>>>>>>>>> ldap_provisionning=NONE to AUTOCREATE we can login using AD.
>>>>>>>>>>>>>
>>>>>>>>>>>>> thanks.
>>>>>>>>>>>>>
>>>>>>>>>>>>> Best Regards,
>>>>>>>>>>>>>
>>>>>>>>>>>>>
>>>>>>>>>>>>> -Teddy Jayasaputra-
>>>>>>>>>>>>>
>>>>>>>>>>>>>
>>>>>>>>>>>>> On 9/17/2014 4:25 PM, Maxim Solodovnik wrote:
>>>>>>>>>>>>>
>>>>>>>>>>>>> do you have your AD domain on the login screen?
>>>>>>>>>>>>> are there errors in the log?
>>>>>>>>>>>>> what OM version are you using?
>>>>>>>>>>>>>
>>>>>>>>>>>>> On 17 September 2014 16:02, ARI HENDIAWAN <
>>>>>>>>>>>>> ari.hendiawan@ocbcnisp.com> wrote:
>>>>>>>>>>>>>
>>>>>>>>>>>>>> Dear all,
>>>>>>>>>>>>>> please we need extra information how to integrate
>>>>>>>>>>>>>> openmeetings 3.0.3 with AD?
>>>>>>>>>>>>>> we already setting on ldap.conf and still problem.. if we saw
>>>>>>>>>>>>>> on AD , user that want sign-in openmeetings success, but on login menu
>>>>>>>>>>>>>> openmeetings shown error "invalid password"
>>>>>>>>>>>>>>
>>>>>>>>>>>>>>
>>>>>>>>>>>>>> Tks
>>>>>>>>>>>>>>
>>>>>>>>>>>>>>
>>>>>>>>>>>>>> --
>>>>>>>>>>>>>> Disclaimer :
>>>>>>>>>>>>>> Confidential information may be contained in this message. If
>>>>>>>>>>>>>> you are not the intended recipient, you are strictly prohibited and may be
>>>>>>>>>>>>>> unlawful to use, copy, store, distribute, disclose or communicate any part
>>>>>>>>>>>>>> of it to others and you are obliged to return it immediately to sender or
>>>>>>>>>>>>>> notify us and delete the e-mail and any attachments from your system.
>>>>>>>>>>>>>> Opinions, conclusions and other information in this e-mail that do not
>>>>>>>>>>>>>> relate to the official business of any PT Bank OCBC NISP Tbk shall be
>>>>>>>>>>>>>> understood as neither given nor endorsed by it. No assumption of
>>>>>>>>>>>>>> responsibility or liability whatsoever is undertaken by PT Bank OCBC NISP
>>>>>>>>>>>>>> Tbk in respect of prohibited and unauthorised use by any other person.
>>>>>>>>>>>>>>
>>>>>>>>>>>>>>
>>>>>>>>>>>>>
>>>>>>>>>>>>>
>>>>>>>>>>>>> --
>>>>>>>>>>>>> WBR
>>>>>>>>>>>>> Maxim aka solomax
>>>>>>>>>>>>>
>>>>>>>>>>>>>
>>>>>>>>>>>>>
>>>>>>>>>>>>>
>>>>>>>>>>>>> --
>>>>>>>>>>>>> Disclaimer :
>>>>>>>>>>>>> Confidential information may be contained in this message. If
>>>>>>>>>>>>> you are not the intended recipient, you are strictly prohibited and may be
>>>>>>>>>>>>> unlawful to use, copy, store, distribute, disclose or communicate any part
>>>>>>>>>>>>> of it to others and you are obliged to return it immediately to sender or
>>>>>>>>>>>>> notify us and delete the e-mail and any attachments from your system.
>>>>>>>>>>>>> Opinions, conclusions and other information in this e-mail that do not
>>>>>>>>>>>>> relate to the official business of any PT Bank OCBC NISP Tbk shall be
>>>>>>>>>>>>> understood as neither given nor endorsed by it. No assumption of
>>>>>>>>>>>>> responsibility or liability whatsoever is undertaken by PT Bank OCBC NISP
>>>>>>>>>>>>> Tbk in respect of prohibited and unauthorised use by any other person.
>>>>>>>>>>>>>
>>>>>>>>>>>>
>>>>>>>>>>>>
>>>>>>>>>>>>
>>>>>>>>>>>> --
>>>>>>>>>>>> WBR
>>>>>>>>>>>> Maxim aka solomax
>>>>>>>>>>>>
>>>>>>>>>>>
>>>>>>>>>>>
>>>>>>>>>>
>>>>>>>>>>
>>>>>>>>>> --
>>>>>>>>>> WBR
>>>>>>>>>> Maxim aka solomax
>>>>>>>>>>
>>>>>>>>>
>>>>>>>>>
>>>>>>>>
>>>>>>>>
>>>>>>>> --
>>>>>>>> WBR
>>>>>>>> Maxim aka solomax
>>>>>>>>
>>>>>>>
>>>>>>>
>>>>>>
>>>>>
>>>>>
>>>>> --
>>>>> WBR
>>>>> Maxim aka solomax
>>>>>
>>>>
>>>>
>>>
>>>
>>> --
>>> WBR
>>> Maxim aka solomax
>>>
>>
>>
>
>
> --
> WBR
> Maxim aka solomax
>
Re: need info about problem when integration AD
Posted by Maxim Solodovnik <so...@gmail.com>.
it seems like nothing was found
Maybe bad search query?
On 22 September 2014 15:55, Grégory Mangeney <ma...@gmail.com> wrote:
> Hello Maxim.
> Thanks a lot for your answer.
> You're helpfull...
>
> I had ever try with SEARCHANDBIND but it still not working...
> So I set it again to give you my logs...
> The error is quite different but I could not understand what is the
> problem...
>
> In the login screen I have the following message in red : "Unknown error.
> Please report this to the administrator."
>
>
>
>
> Here is my logs :
>
> ERROR 09-22 10:34:34.814 o.a.o.l.LdapLoginManagement:356
> [http-nio-0.0.0.0-5080-exec-4] - Unexpected exception.
> org.apache.directory.api.ldap.model.cursor.CursorLdapReferralException:
> null
> at
> org.apache.directory.ldap.client.api.EntryCursorImpl.get(EntryCursorImpl.java:164)
> ~[api-all-jar-1.0.0-M23.jar:1.0.0-M23]
> at
> org.apache.directory.ldap.client.api.EntryCursorImpl.get(EntryCursorImpl.java:50)
> ~[api-all-jar-1.0.0-M23.jar:1.0.0-M23]
> at
> org.apache.openmeetings.ldap.LdapLoginManagement.login(LdapLoginManagement.java:258)
> ~[openmeetings-core-3.0.3-RELEASE.jar:na]
> at
> org.apache.openmeetings.web.app.WebSession.signIn(WebSession.java:257)
> [openmeetings-web-3.0.3-RELEASE.jar:na]
> at
> org.apache.openmeetings.web.pages.auth.SignInDialog.onSubmit(SignInDialog.java:190)
> [openmeetings-web-3.0.3-RELEASE.jar:na]
> at
> com.googlecode.wicket.jquery.ui.widget.dialog.AbstractFormDialog$DialogFormSubmitter.onSubmit(AbstractFormDialog.java:279)
> [wicket-jquery-ui-jar-6.16.0.jar:na]
> at
> org.apache.wicket.markup.html.form.Form.delegateSubmit(Form.java:1266)
> [wicket-core-jar-6.16.0.jar:6.16.0]
> at org.apache.wicket.markup.html.form.Form.process(Form.java:938)
> [wicket-core-jar-6.16.0.jar:6.16.0]
> at
> org.apache.wicket.markup.html.form.StatelessForm.process(StatelessForm.java:96)
> [wicket-core-jar-6.16.0.jar:6.16.0]
> at
> org.apache.wicket.markup.html.form.Form.onFormSubmitted(Form.java:770)
> [wicket-core-jar-6.16.0.jar:6.16.0]
> at
> com.googlecode.wicket.jquery.ui.widget.dialog.AbstractFormDialog.internalOnClick(AbstractFormDialog.java:200)
> [wicket-jquery-ui-jar-6.16.0.jar:na]
> at
> com.googlecode.wicket.jquery.ui.widget.dialog.AbstractDialog$1.onClick(AbstractDialog.java:439)
> [wicket-jquery-ui-jar-6.16.0.jar:na]
> at
> com.googlecode.wicket.jquery.ui.widget.dialog.DialogBehavior.onAjax(DialogBehavior.java:175)
> [wicket-jquery-ui-jar-6.16.0.jar:na]
> at
> com.googlecode.wicket.jquery.core.ajax.JQueryAjaxBehavior.respond(JQueryAjaxBehavior.java:171)
> [wicket-jquery-ui-core-jar-6.16.0.jar:na]
> at
> org.apache.wicket.ajax.AbstractDefaultAjaxBehavior.onRequest(AbstractDefaultAjaxBehavior.java:633)
> [wicket-core-jar-6.16.0.jar:6.16.0]
> at sun.reflect.GeneratedMethodAccessor91.invoke(Unknown Source)
> ~[na:na]
> at
> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
> ~[na:1.7.0_65]
> at java.lang.reflect.Method.invoke(Method.java:606) ~[na:1.7.0_65]
> at
> org.apache.wicket.RequestListenerInterface.internalInvoke(RequestListenerInterface.java:258)
> [wicket-core-jar-6.16.0.jar:6.16.0]
> at
> org.apache.wicket.RequestListenerInterface.invoke(RequestListenerInterface.java:241)
> [wicket-core-jar-6.16.0.jar:6.16.0]
> at
> org.apache.wicket.core.request.handler.ListenerInterfaceRequestHandler.invokeListener(ListenerInterfaceRequestHandler.java:250)
> [wicket-core-jar-6.16.0.jar:6.16.0]
> at
> org.apache.wicket.core.request.handler.ListenerInterfaceRequestHandler.respond(ListenerInterfaceRequestHandler.java:236)
> [wicket-core-jar-6.16.0.jar:6.16.0]
> at
> org.apache.wicket.request.cycle.RequestCycle$HandlerExecutor.respond(RequestCycle.java:862)
> [wicket-core-jar-6.16.0.jar:6.16.0]
> at
> org.apache.wicket.request.RequestHandlerStack.execute(RequestHandlerStack.java:64)
> [wicket-request-jar-6.16.0.jar:6.16.0]
> at
> org.apache.wicket.request.cycle.RequestCycle.execute(RequestCycle.java:261)
> [wicket-core-jar-6.16.0.jar:6.16.0]
> at
> org.apache.wicket.request.cycle.RequestCycle.processRequest(RequestCycle.java:218)
> [wicket-core-jar-6.16.0.jar:6.16.0]
> at
> org.apache.wicket.request.cycle.RequestCycle.processRequestAndDetach(RequestCycle.java:289)
> [wicket-core-jar-6.16.0.jar:6.16.0]
> at
> org.apache.wicket.protocol.ws.AbstractUpgradeFilter.processRequestCycle(AbstractUpgradeFilter.java:59)
> [wicket-native-websocket-core-jar-6.16.0.jar:6.16.0]
> at
> org.apache.wicket.protocol.http.WicketFilter.processRequest(WicketFilter.java:201)
> [wicket-core-jar-6.16.0.jar:6.16.0]
> at
> org.apache.wicket.protocol.http.WicketFilter.doFilter(WicketFilter.java:282)
> [wicket-core-jar-6.16.0.jar:6.16.0]
> at
> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:241)
> [tomcat-embed-core.jar:7.0.55]
> at
> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:208)
> [tomcat-embed-core.jar:7.0.55]
> at
> org.red5.logging.LoggerContextFilter.doFilter(LoggerContextFilter.java:77)
> [red5-server.jar:na]
> at
> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:241)
> [tomcat-embed-core.jar:7.0.55]
> at
> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:208)
> [tomcat-embed-core.jar:7.0.55]
> at
> org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:220)
> [tomcat-embed-core.jar:7.0.55]
> at
> org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:122)
> [tomcat-embed-core.jar:7.0.55]
> at
> org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:501)
> [tomcat-embed-core.jar:7.0.55]
> at
> org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:171)
> [tomcat-embed-core.jar:7.0.55]
> at
> org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:103)
> [tomcat-embed-core.jar:7.0.55]
> at
> org.apache.catalina.valves.AccessLogValve.invoke(AccessLogValve.java:950)
> [tomcat-embed-core.jar:7.0.55]
> at
> org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:116)
> [tomcat-embed-core.jar:7.0.55]
> at
> org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:408)
> [tomcat-embed-core.jar:7.0.55]
> at
> org.apache.coyote.http11.AbstractHttp11Processor.process(AbstractHttp11Processor.java:1070)
> [tomcat-embed-core.jar:7.0.55]
> at
> org.apache.coyote.AbstractProtocol$AbstractConnectionHandler.process(AbstractProtocol.java:611)
> [tomcat-embed-core.jar:7.0.55]
> at
> org.apache.tomcat.util.net.NioEndpoint$SocketProcessor.doRun(NioEndpoint.java:1736)
> [tomcat-embed-core.jar:7.0.55]
> at
> org.apache.tomcat.util.net.NioEndpoint$SocketProcessor.run(NioEndpoint.java:1695)
> [tomcat-embed-core.jar:7.0.55]
> at
> java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1145)
> [na:1.7.0_65]
> at
> java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:615)
> [na:1.7.0_65]
> at
> org.apache.tomcat.util.threads.TaskThread$WrappingRunnable.run(TaskThread.java:61)
> [tomcat-embed-core.jar:7.0.55]
> at java.lang.Thread.run(Thread.java:745) [na:1.7.0_65]
> DEBUG 09-22 10:34:34.817 o.a.w.u.c.CookieUtils:266
> [http-nio-0.0.0.0-5080-exec-4] - Unable to find Cookie with name=LoggedIn
> and request URI=signin?1-1.IBehaviorListener.1-signin
> DEBUG 09-22 10:34:34.820 o.a.w.f.FeedbackMessages:69
> [http-nio-0.0.0.0-5080-exec-4] - Adding feedback message '[FeedbackMessage
> message = "Unknown error. Please report this to the administrator.",
> reporter = signin, level = ERROR]'
> DEBUG 09-22 10:34:34.821 o.a.w.u.c.CookieUtils:266
> [http-nio-0.0.0.0-5080-exec-4] - Unable to find Cookie with name=LoggedIn
> and request URI=signin?1-1.IBehaviorListener.1-signin
> DEBUG 09-22 10:34:34.822 o.a.wicket.Page:871
> [http-nio-0.0.0.0-5080-exec-4] - ending request for page [Page class =
> org.apache.openmeetings.web.pages.auth.SignInPage, id = 1, render count =
> 1], request
> org.apache.wicket.protocol.http.servlet.ServletWebRequest@16618f3
> DEBUG 09-22 10:34:34.822 o.a.wicket.Page:871
> [http-nio-0.0.0.0-5080-exec-4] - ending request for page [Page class =
> org.apache.openmeetings.web.pages.auth.SignInPage, id = 1, render count =
> 1], request
> org.apache.wicket.protocol.http.servlet.ServletWebRequest@16618f3
> DEBUG 09-22 10:34:34.823 o.a.wicket.Page:871
> [http-nio-0.0.0.0-5080-exec-4] - ending request for page [Page class =
> org.apache.openmeetings.web.pages.auth.SignInPage, id = 1, render count =
> 1], request
> org.apache.wicket.protocol.http.servlet.ServletWebRequest@16618f3
> DEBUG 09-22 10:34:34.828
> o.a.w.p.AsynchronousDataStore$PageSavingRunnable:354
> [Wicket-PageSavingThread] - Saving asynchronously: Entry
> [sessionId=907ABBB232B18743F2A67024DA18F185, pageId=1]...
> DEBUG 09-22 10:34:34.828 o.a.w.p.DiskDataStore:186
> [Wicket-PageSavingThread] - Storing data for page with id '1' in session
> with id '907ABBB232B18743F2A67024DA18F185'
> DEBUG 09-22 10:34:34.828 o.a.w.p.PageAccessSynchronizer:195
> [http-nio-0.0.0.0-5080-exec-4] - 'http-nio-0.0.0.0-5080-exec-4' released
> lock to page with id '1'
> DEBUG 09-22 10:34:34.828 o.a.w.p.PageAccessSynchronizer:346
> [http-nio-0.0.0.0-5080-exec-4] - 'http-nio-0.0.0.0-5080-exec-4' notifying
> blocked threads
> DEBUG 09-22 10:34:36.341 o.a.o.m.MailHandler:249
> [org.springframework.scheduling.quartz.SchedulerFactoryBean#0_Worker-1] -
> resetSendingStatus enter ...
>
>
>
> Thank you for your time.
>
> Greg.
>
> 2014-09-20 8:59 GMT+02:00 Maxim Solodovnik <so...@gmail.com>:
>
>> According to the logs and config SIMPLEBIND failed for the user specified
>> please try SEARCHANDBIND
>>
>> On 19 September 2014 17:09, Grégory Mangeney <ma...@gmail.com> wrote:
>>
>>> Hello.
>>> Thank you for your link.
>>> It appeare that I have a 525 error (user not found).
>>>
>>> I think the problem must be in my config file because I'm sure that my
>>> user is good because I use it for an other app witch use it to connect with
>>> AD.
>>>
>>> As you ask me i give you more line of my log file, after that I would
>>> like to show you my conf file...
>>> Maybe you will find a setting withch is not good!
>>>
>>>
>>> So here is my log file whene I try to connect :
>>> DEBUG 09-19 11:47:01.337 o.a.o.q.s.MeetingReminderJob:34
>>> [org.springframework.scheduling.quartz.SchedulerFactoryBean#0_Worker-2] -
>>> MeetingReminderJob.execute
>>> DEBUG 09-19 11:47:25.760 o.a.w.p.h.s.ServletWebRequest:189
>>> [http-nio-0.0.0.0-5080-exec-10] - Calculating context relative path from:
>>> context path '/openmeetings', filterPrefix '', uri '/openmeetings/signin'
>>> DEBUG 09-19 11:47:25.761 o.a.w.p.PageAccessSynchronizer:100
>>> [http-nio-0.0.0.0-5080-exec-10] - 'http-nio-0.0.0.0-5080-exec-10'
>>> attempting to acquire lock to page with id '1'
>>> DEBUG 09-19 11:47:25.761 o.a.w.p.PageAccessSynchronizer:125
>>> [http-nio-0.0.0.0-5080-exec-10] - http-nio-0.0.0.0-5080-exec-10 acquired
>>> lock to page 1
>>> DEBUG 09-19 11:47:25.762 o.a.o.d.d.s.SessiondataDao:68
>>> [http-nio-0.0.0.0-5080-exec-10] - startsession :: startsession
>>> DEBUG 09-19 11:47:25.763 o.a.o.u.c.ManageCryptStyle:32
>>> [http-nio-0.0.0.0-5080-exec-10] - getInstanceOfCrypt::
>>> configKeyCryptClassName:
>>> org.apache.openmeetings.util.crypt.MD5Implementation
>>> DEBUG 09-19 11:47:25.788 o.a.o.l.LdapLoginManagement:165
>>> [http-nio-0.0.0.0-5080-exec-10] - LdapLoginmanagement.doLdapLogin
>>> ERROR 09-19 11:47:25.924 o.a.o.l.LdapLoginManagement:351
>>> [http-nio-0.0.0.0-5080-exec-10] - Not authenticated.
>>> org.apache.directory.api.ldap.model.exception.LdapAuthenticationException:
>>> 80090308: LdapErr: DSID-0C090334, comment: AcceptSecurityContext error,
>>> data 525, vece\00
>>> at
>>> org.apache.directory.api.ldap.model.message.ResultCodeEnum.processResponse(ResultCodeEnum.java:2021)
>>> ~[api-all-jar-1.0.0-M23.jar:1.0.0-M23]
>>> at
>>> org.apache.directory.ldap.client.api.AbstractLdapConnection.bind(AbstractLdapConnection.java:129)
>>> ~[api-all-jar-1.0.0-M23.jar:1.0.0-M23]
>>> at
>>> org.apache.openmeetings.ldap.LdapLoginManagement.login(LdapLoginManagement.java:275)
>>> ~[openmeetings-core-3.0.3-RELEASE.jar:na]
>>> at
>>> org.apache.openmeetings.web.app.WebSession.signIn(WebSession.java:257)
>>> [openmeetings-web-3.0.3-RELEASE.jar:na]
>>> at
>>> org.apache.openmeetings.web.pages.auth.SignInDialog.onSubmit(SignInDialog.java:190)
>>> [openmeetings-web-3.0.3-RELEASE.jar:na]
>>> at
>>> com.googlecode.wicket.jquery.ui.widget.dialog.AbstractFormDialog$DialogFormSubmitter.onSubmit(AbstractFormDialog.java:279)
>>> [wicket-jquery-ui-jar-6.16.0.jar:na]
>>> at
>>> org.apache.wicket.markup.html.form.Form.delegateSubmit(Form.java:1266)
>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>> at org.apache.wicket.markup.html.form.Form.process(Form.java:938)
>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>> at
>>> org.apache.wicket.markup.html.form.StatelessForm.process(StatelessForm.java:96)
>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>> at
>>> org.apache.wicket.markup.html.form.Form.onFormSubmitted(Form.java:770)
>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>> at
>>> com.googlecode.wicket.jquery.ui.widget.dialog.AbstractFormDialog.internalOnClick(AbstractFormDialog.java:200)
>>> [wicket-jquery-ui-jar-6.16.0.jar:na]
>>> at
>>> com.googlecode.wicket.jquery.ui.widget.dialog.AbstractDialog$1.onClick(AbstractDialog.java:439)
>>> [wicket-jquery-ui-jar-6.16.0.jar:na]
>>> at
>>> com.googlecode.wicket.jquery.ui.widget.dialog.DialogBehavior.onAjax(DialogBehavior.java:175)
>>> [wicket-jquery-ui-jar-6.16.0.jar:na]
>>> at
>>> com.googlecode.wicket.jquery.core.ajax.JQueryAjaxBehavior.respond(JQueryAjaxBehavior.java:171)
>>> [wicket-jquery-ui-core-jar-6.16.0.jar:na]
>>> at
>>> org.apache.wicket.ajax.AbstractDefaultAjaxBehavior.onRequest(AbstractDefaultAjaxBehavior.java:633)
>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>> at sun.reflect.GeneratedMethodAccessor91.invoke(Unknown Source) ~[na:na]
>>> at
>>> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
>>> ~[na:1.7.0_65]
>>> at java.lang.reflect.Method.invoke(Method.java:606) ~[na:1.7.0_65]
>>> at
>>> org.apache.wicket.RequestListenerInterface.internalInvoke(RequestListenerInterface.java:258)
>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>> at
>>> org.apache.wicket.RequestListenerInterface.invoke(RequestListenerInterface.java:241)
>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>> at
>>> org.apache.wicket.core.request.handler.ListenerInterfaceRequestHandler.invokeListener(ListenerInterfaceRequestHandler.java:250)
>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>> at
>>> org.apache.wicket.core.request.handler.ListenerInterfaceRequestHandler.respond(ListenerInterfaceRequestHandler.java:236)
>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>> at
>>> org.apache.wicket.request.cycle.RequestCycle$HandlerExecutor.respond(RequestCycle.java:862)
>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>> at
>>> org.apache.wicket.request.RequestHandlerStack.execute(RequestHandlerStack.java:64)
>>> [wicket-request-jar-6.16.0.jar:6.16.0]
>>> at
>>> org.apache.wicket.request.cycle.RequestCycle.execute(RequestCycle.java:261)
>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>> at
>>> org.apache.wicket.request.cycle.RequestCycle.processRequest(RequestCycle.java:218)
>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>> at
>>> org.apache.wicket.request.cycle.RequestCycle.processRequestAndDetach(RequestCycle.java:289)
>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>> at
>>> org.apache.wicket.protocol.ws.AbstractUpgradeFilter.processRequestCycle(AbstractUpgradeFilter.java:59)
>>> [wicket-native-websocket-core-jar-6.16.0.jar:6.16.0]
>>> at
>>> org.apache.wicket.protocol.http.WicketFilter.processRequest(WicketFilter.java:201)
>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>> at
>>> org.apache.wicket.protocol.http.WicketFilter.doFilter(WicketFilter.java:282)
>>> [wicket-core-jar-6.16.0.jar:6.16.0]
>>> at
>>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:241)
>>> [tomcat-embed-core.jar:7.0.55]
>>> at
>>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:208)
>>> [tomcat-embed-core.jar:7.0.55]
>>> at
>>> org.red5.logging.LoggerContextFilter.doFilter(LoggerContextFilter.java:77)
>>> [red5-server.jar:na]
>>> at
>>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:241)
>>> [tomcat-embed-core.jar:7.0.55]
>>> at
>>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:208)
>>> [tomcat-embed-core.jar:7.0.55]
>>> at
>>> org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:220)
>>> [tomcat-embed-core.jar:7.0.55]
>>> at
>>> org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:122)
>>> [tomcat-embed-core.jar:7.0.55]
>>> at
>>> org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:501)
>>> [tomcat-embed-core.jar:7.0.55]
>>> at
>>> org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:171)
>>> [tomcat-embed-core.jar:7.0.55]
>>> at
>>> org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:103)
>>> [tomcat-embed-core.jar:7.0.55]
>>> at
>>> org.apache.catalina.valves.AccessLogValve.invoke(AccessLogValve.java:950)
>>> [tomcat-embed-core.jar:7.0.55]
>>> at
>>> org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:116)
>>> [tomcat-embed-core.jar:7.0.55]
>>> at
>>> org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:408)
>>> [tomcat-embed-core.jar:7.0.55]
>>> at
>>> org.apache.coyote.http11.AbstractHttp11Processor.process(AbstractHttp11Processor.java:1070)
>>> [tomcat-embed-core.jar:7.0.55]
>>> at
>>> org.apache.coyote.AbstractProtocol$AbstractConnectionHandler.process(AbstractProtocol.java:611)
>>> [tomcat-embed-core.jar:7.0.55]
>>> at
>>> org.apache.tomcat.util.net.NioEndpoint$SocketProcessor.doRun(NioEndpoint.java:1736)
>>> [tomcat-embed-core.jar:7.0.55]
>>> at
>>> org.apache.tomcat.util.net.NioEndpoint$SocketProcessor.run(NioEndpoint.java:1695)
>>> [tomcat-embed-core.jar:7.0.55]
>>> at
>>> java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1145)
>>> [na:1.7.0_65]
>>> at
>>> java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:615)
>>> [na:1.7.0_65]
>>> at
>>> org.apache.tomcat.util.threads.TaskThread$WrappingRunnable.run(TaskThread.java:61)
>>> [tomcat-embed-core.jar:7.0.55]
>>> at java.lang.Thread.run(Thread.java:745) [na:1.7.0_65]
>>> DEBUG 09-19 11:47:25.927 o.a.w.u.c.CookieUtils:266
>>> [http-nio-0.0.0.0-5080-exec-10] - Unable to find Cookie with name=LoggedIn
>>> and request URI=signin?1-1.IBehaviorListener.1-signin
>>> DEBUG 09-19 11:47:25.929 o.a.w.f.FeedbackMessages:69
>>> [http-nio-0.0.0.0-5080-exec-10] - Adding feedback message '[FeedbackMessage
>>> message = "Invalid password", reporter = signin, level = ERROR]'
>>> DEBUG 09-19 11:47:25.929 o.a.w.u.c.CookieUtils:266
>>> [http-nio-0.0.0.0-5080-exec-10] - Unable to find Cookie with name=LoggedIn
>>> and request URI=signin?1-1.IBehaviorListener.1-signin
>>> DEBUG 09-19 11:47:25.930 o.a.wicket.Page:871
>>> [http-nio-0.0.0.0-5080-exec-10] - ending request for page [Page class =
>>> org.apache.openmeetings.web.pages.auth.SignInPage, id = 1, render count =
>>> 1], request
>>> org.apache.wicket.protocol.http.servlet.ServletWebRequest@a6e74b
>>> DEBUG 09-19 11:47:25.930 o.a.wicket.Page:871
>>> [http-nio-0.0.0.0-5080-exec-10] - ending request for page [Page class =
>>> org.apache.openmeetings.web.pages.auth.SignInPage, id = 1, render count =
>>> 1], request
>>> org.apache.wicket.protocol.http.servlet.ServletWebRequest@a6e74b
>>> DEBUG 09-19 11:47:25.930 o.a.wicket.Page:871
>>> [http-nio-0.0.0.0-5080-exec-10] - ending request for page [Page class =
>>> org.apache.openmeetings.web.pages.auth.SignInPage, id = 1, render count =
>>> 1], request
>>> org.apache.wicket.protocol.http.servlet.ServletWebRequest@a6e74b
>>> DEBUG 09-19 11:47:25.988
>>> o.a.w.p.AsynchronousDataStore$PageSavingRunnable:354
>>> [Wicket-PageSavingThread] - Saving asynchronously: Entry
>>> [sessionId=2A10AA69C3E771FF51FABD4D26A20559, pageId=1]...
>>> DEBUG 09-19 11:47:25.988 o.a.w.p.DiskDataStore:186
>>> [Wicket-PageSavingThread] - Storing data for page with id '1' in session
>>> with id '2A10AA69C3E771FF51FABD4D26A20559'
>>> DEBUG 09-19 11:47:25.988 o.a.w.p.PageAccessSynchronizer:195
>>> [http-nio-0.0.0.0-5080-exec-10] - 'http-nio-0.0.0.0-5080-exec-10' released
>>> lock to page with id '1'
>>> DEBUG 09-19 11:47:25.988 o.a.w.p.PageAccessSynchronizer:346
>>> [http-nio-0.0.0.0-5080-exec-10] - 'http-nio-0.0.0.0-5080-exec-10' notifying
>>> blocked threads
>>>
>>>
>>>
>>>
>>>
>>>
>>>
>>>
>>>
>>> And here is my conf file :
>>>
>>> #
>>> # Licensed to the Apache Software Foundation (ASF) under one
>>> # or more contributor license agreements. See the NOTICE file
>>> # distributed with this work for additional information
>>> # regarding copyright ownership. The ASF licenses this file
>>> # to you under the Apache License, Version 2.0 (the
>>> # "License"); you may not use this file except in compliance
>>> # with the License. You may obtain a copy of the License at
>>> #
>>> # http://www.apache.org/licenses/LICENSE-2.0
>>> #
>>> # Unless required by applicable law or agreed to in writing,
>>> # software distributed under the License is distributed on an
>>> # "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
>>> # KIND, either express or implied. See the License for the
>>> # specific language governing permissions and limitations
>>> # under the License.
>>> #
>>> #ConfigurationFile for LDAP Auth
>>> #ConfigKey 'ldap_config_path' must be set in DataBase Configration of OM
>>> and point to this file
>>> #o.becherer,14.01.2009
>>> #LDAP URL
>>> # This is the URL used to access your LDAP server.
>>> # if you want to use "ldaps://" links, please be aware that you need to
>>> import your CA certificate
>>> # to a java keystore and add the -Djavax.net.ssl.keyStore,
>>> -Djavax.net.ssl.keyStorePassword,
>>> # -Djavax.net.ssl.trustStore and -Djavax.net.ssl.trustStorePassword
>>> parameters to your
>>> # JAVA_OPT environment
>>> ldap_conn_host=@IP_of_my_AD
>>> ldap_conn_port=389
>>> ldap_conn_secure=false
>>> # Login distinguished name (DN) for Authentication on LDAP Server - keep
>>> empty if not required
>>> # Use full qualified LDAP DN
>>>
>>> ldap_admin_dn=CN=adconnect,OU=Comptes,OU=SI,OU=Services,OU=COMPANY,DC=mycompany,DC=priv
>>> # Loginpass for Authentication on LDAP Server - keep empty if not
>>> required
>>> ldap_passwd=pass_for_user_adconnect
>>> # base to search for userdata(of user, that wants to login)
>>> ldap_search_base=DC=mycompany,DC=priv
>>> # Fieldnames (can differ between Ldap servers)
>>> ldap_search_query=(uid=%s)
>>> # the scope of the search might be: OBJECT, ONELEVEL, SUBTREE
>>> ldap_search_scope=ONELEVEL
>>> # Ldap auth type(NONE, SEARCHANDBIND, SIMPLEBIND)
>>> # When using SIMPLEBIND a simple bind is performed on the LDAP server
>>> to check user authentication
>>> # When using NONE, the Ldap server is not used for authentication
>>> ldap_auth_type=SIMPLEBIND
>>> # userDN format, will be used to bind if ldap_auth_type=SIMPLEBIND
>>> # might be used to get provisionningDn in case ldap_auth_type=NONE
>>> ldap_userdn_format=uid=%s,OU=COMPANY,DC=mycompany,DC=priv
>>> # Ldap provisioning type(NONE, AUTOCREATE, AUTOUPDATE)
>>> ldap_provisionning=AUTOCREATE
>>> # Set this to 'true' if you want to use admin_dn to get user attributes
>>> # If any other value is set, user_dn will be used
>>> ldap_use_admin_to_get_attrs=true
>>> # Ldap-password synchronization to OM DB
>>> # Set this to 'true' if you want OM to synchronize the user
>>> Ldap-password to OM's internal DB
>>> # If you want to disable the feature, set this to any other string.
>>> # Defautl value is 'true'
>>> ldap_sync_password_to_om=true
>>> # Ldap user attributes mapping
>>> # Set the following internal OM user attributes to their corresponding
>>> Ldap-attribute
>>> ldap_user_attr_lastname=sn
>>> ldap_user_attr_firstname=givenName
>>> ldap_user_attr_mail=mail
>>> ldap_user_attr_street=streetAddress
>>> ldap_user_attr_additionalname=description
>>> ldap_user_attr_fax=facsimileTelephoneNumber
>>> ldap_user_attr_zip=postalCode
>>> ldap_user_attr_country=co
>>> ldap_user_attr_town=l
>>> ldap_user_attr_phone=telephoneNumber
>>> # optional, only absolute URLs make sense
>>> #ldap_user_picture_uri=picture_uri
>>> # optional
>>> # the timezone has to match any timezone available in Java, otherwise
>>> the timezone defined in the value of
>>> # the conf_key "default.timezone" in OpenMeetings "configurations" table
>>> #ldap_user_timezone=timezone
>>> # Ldap ignore upper/lower case, convert all input to lower case
>>> ldap_use_lower_case=false
>>>
>>>
>>>
>>> Thanks a lot for your help.
>>>
>>> Greg.
>>>
>>>
>>>
>>>
>>> 2014-09-18 17:52 GMT+02:00 Maxim Solodovnik <so...@gmail.com>:
>>>
>>>> please check this URL:
>>>> http://kb.juniper.net/InfoCenter/index?page=content&id=KB17098
>>>> According to it you have "User not found"
>>>>
>>>> could you provide more ldap related logs?
>>>> it might be Admin not found or user entered in login form not found
>>>> depending on your settings
>>>>
>>>> On 18 September 2014 21:43, Grégory Mangeney <ma...@gmail.com>
>>>> wrote:
>>>>
>>>>> Hello, It's me again...
>>>>> I'm back.
>>>>> Now I have a new problem to connect to my AD...
>>>>> In log file it is write : *ERROR ......... Not authenticated*
>>>>> witch is a quite better message than before but after that it is write
>>>>> : *LdapErr: DSID-0C090334, comment: AcceptSecurityContext error, data
>>>>> 525, vece\00 at........*
>>>>>
>>>>> I try to understand my problem but "AcceptSecurityContext error" seems
>>>>> to speack about a security problem.
>>>>> I have set my ldap_conn_secure=false in om_ldap.conf.
>>>>> I don't understand what could be my problem.
>>>>>
>>>>> thanks a lot for your ideas.
>>>>>
>>>>> Greg.
>>>>> 2014-09-18 15:37 GMT+02:00 Grégory Mangeney <ma...@gmail.com>:
>>>>>
>>>>>> Ok, I finally understand that I have to put the filename and only the
>>>>>> filename without */usr/lib/red5/webapps/openmeetings/conf/*
>>>>>>
>>>>>> Now I have a new message whitch said me invalid password...
>>>>>> It's quite better...
>>>>>> Thank you...
>>>>>> I could continue to try to set it now.
>>>>>> bye
>>>>>>
>>>>>> Greg.
>>>>>>
>>>>>>
>>>>>>
>>>>>> 2014-09-18 15:06 GMT+02:00 Maxim Solodovnik <so...@gmail.com>:
>>>>>>
>>>>>>> you need to write file name relative to webapps/openmeetings/conf
>>>>>>> folder
>>>>>>> in your case *om_ldap.cfg *should be specified
>>>>>>>
>>>>>>> On 18 September 2014 20:04, Grégory Mangeney <ma...@gmail.com>
>>>>>>> wrote:
>>>>>>>
>>>>>>>> Thank you very much but I don't understand very well.
>>>>>>>> I think I put the right information...
>>>>>>>> Do you want to say that I have to write :
>>>>>>>> */usr/lib/red5/webapps/openmeetings/conf/* without the filename
>>>>>>>> *om_ldap.cfg* at the end?
>>>>>>>> Thanks for your help
>>>>>>>> Greg
>>>>>>>>
>>>>>>>>
>>>>>>>> 2014-09-18 14:52 GMT+02:00 Maxim Solodovnik <so...@gmail.com>:
>>>>>>>>
>>>>>>>>> AFAIK the path should be relative to /usr/lib/red5/webapps/
>>>>>>>>> openmeetings/conf
>>>>>>>>> Please change this path
>>>>>>>>>
>>>>>>>>> Additionally you can file JIRA issue to add check to the Admin
>>>>>>>>> screen (so path will be validated on enter)
>>>>>>>>>
>>>>>>>>> On 18 September 2014 19:44, Grégory Mangeney <ma...@gmail.com>
>>>>>>>>> wrote:
>>>>>>>>>
>>>>>>>>>> Hello,
>>>>>>>>>> I have the same problem: I could not connect with AD.
>>>>>>>>>> I have the domain at the login screen,
>>>>>>>>>> I am using the 3.0.3.
>>>>>>>>>> I found this line in my log file :* ERROR 09-18 14:28:33.994
>>>>>>>>>> o.a.o.l.LdapLoginManagement:147 [http-nio-0.0.0.0-5080-exec-4] - Error on
>>>>>>>>>> LdapLogin : Configurationdata couldnt be retrieved!*
>>>>>>>>>>
>>>>>>>>>> This seem strange because in my LDAP config (in openmeetings
>>>>>>>>>> Administration/LDAP menu), I put the correct path in the "Config file name"
>>>>>>>>>> : /usr/lib/red5/webapps/openmeetings/conf/om_ldap.cfg
>>>>>>>>>>
>>>>>>>>>> Why is this error appeared : *Configurationdata couldnt be
>>>>>>>>>> retrieved! *???
>>>>>>>>>>
>>>>>>>>>>
>>>>>>>>>> Thanks a lot
>>>>>>>>>>
>>>>>>>>>> Greg
>>>>>>>>>>
>>>>>>>>>>
>>>>>>>>>> 2014-09-17 12:52 GMT+02:00 Maxim Solodovnik <solomax666@gmail.com
>>>>>>>>>> >:
>>>>>>>>>>
>>>>>>>>>>> great :)
>>>>>>>>>>>
>>>>>>>>>>> On 17 September 2014 17:46, Teddy Jayasaputra <
>>>>>>>>>>> teddy.jayasaputra@ocbcnisp.com> wrote:
>>>>>>>>>>>
>>>>>>>>>>>> Dear Maxim,
>>>>>>>>>>>>
>>>>>>>>>>>> After close look to console log.
>>>>>>>>>>>> We found this error :
>>>>>>>>>>>> ERROR 09-17 17:28:33.278 LdapLoginManagement.java 135070 285
>>>>>>>>>>>> org.apache.openmeetings.ldap.LdapLoginManagement
>>>>>>>>>>>> [http-nio-0.0.0.0-5080-exec-6] - User not found in OM DB and
>>>>>>>>>>>> Provisionning.AUTOCREATE was not set
>>>>>>>>>>>>
>>>>>>>>>>>> After we change ldapconfiguration file from
>>>>>>>>>>>> ldap_provisionning=NONE to AUTOCREATE we can login using AD.
>>>>>>>>>>>>
>>>>>>>>>>>> thanks.
>>>>>>>>>>>>
>>>>>>>>>>>> Best Regards,
>>>>>>>>>>>>
>>>>>>>>>>>>
>>>>>>>>>>>> -Teddy Jayasaputra-
>>>>>>>>>>>>
>>>>>>>>>>>>
>>>>>>>>>>>> On 9/17/2014 4:25 PM, Maxim Solodovnik wrote:
>>>>>>>>>>>>
>>>>>>>>>>>> do you have your AD domain on the login screen?
>>>>>>>>>>>> are there errors in the log?
>>>>>>>>>>>> what OM version are you using?
>>>>>>>>>>>>
>>>>>>>>>>>> On 17 September 2014 16:02, ARI HENDIAWAN <
>>>>>>>>>>>> ari.hendiawan@ocbcnisp.com> wrote:
>>>>>>>>>>>>
>>>>>>>>>>>>> Dear all,
>>>>>>>>>>>>> please we need extra information how to integrate openmeetings
>>>>>>>>>>>>> 3.0.3 with AD?
>>>>>>>>>>>>> we already setting on ldap.conf and still problem.. if we saw
>>>>>>>>>>>>> on AD , user that want sign-in openmeetings success, but on login menu
>>>>>>>>>>>>> openmeetings shown error "invalid password"
>>>>>>>>>>>>>
>>>>>>>>>>>>>
>>>>>>>>>>>>> Tks
>>>>>>>>>>>>>
>>>>>>>>>>>>>
>>>>>>>>>>>>> --
>>>>>>>>>>>>> Disclaimer :
>>>>>>>>>>>>> Confidential information may be contained in this message. If
>>>>>>>>>>>>> you are not the intended recipient, you are strictly prohibited and may be
>>>>>>>>>>>>> unlawful to use, copy, store, distribute, disclose or communicate any part
>>>>>>>>>>>>> of it to others and you are obliged to return it immediately to sender or
>>>>>>>>>>>>> notify us and delete the e-mail and any attachments from your system.
>>>>>>>>>>>>> Opinions, conclusions and other information in this e-mail that do not
>>>>>>>>>>>>> relate to the official business of any PT Bank OCBC NISP Tbk shall be
>>>>>>>>>>>>> understood as neither given nor endorsed by it. No assumption of
>>>>>>>>>>>>> responsibility or liability whatsoever is undertaken by PT Bank OCBC NISP
>>>>>>>>>>>>> Tbk in respect of prohibited and unauthorised use by any other person.
>>>>>>>>>>>>>
>>>>>>>>>>>>>
>>>>>>>>>>>>
>>>>>>>>>>>>
>>>>>>>>>>>> --
>>>>>>>>>>>> WBR
>>>>>>>>>>>> Maxim aka solomax
>>>>>>>>>>>>
>>>>>>>>>>>>
>>>>>>>>>>>>
>>>>>>>>>>>>
>>>>>>>>>>>> --
>>>>>>>>>>>> Disclaimer :
>>>>>>>>>>>> Confidential information may be contained in this message. If
>>>>>>>>>>>> you are not the intended recipient, you are strictly prohibited and may be
>>>>>>>>>>>> unlawful to use, copy, store, distribute, disclose or communicate any part
>>>>>>>>>>>> of it to others and you are obliged to return it immediately to sender or
>>>>>>>>>>>> notify us and delete the e-mail and any attachments from your system.
>>>>>>>>>>>> Opinions, conclusions and other information in this e-mail that do not
>>>>>>>>>>>> relate to the official business of any PT Bank OCBC NISP Tbk shall be
>>>>>>>>>>>> understood as neither given nor endorsed by it. No assumption of
>>>>>>>>>>>> responsibility or liability whatsoever is undertaken by PT Bank OCBC NISP
>>>>>>>>>>>> Tbk in respect of prohibited and unauthorised use by any other person.
>>>>>>>>>>>>
>>>>>>>>>>>
>>>>>>>>>>>
>>>>>>>>>>>
>>>>>>>>>>> --
>>>>>>>>>>> WBR
>>>>>>>>>>> Maxim aka solomax
>>>>>>>>>>>
>>>>>>>>>>
>>>>>>>>>>
>>>>>>>>>
>>>>>>>>>
>>>>>>>>> --
>>>>>>>>> WBR
>>>>>>>>> Maxim aka solomax
>>>>>>>>>
>>>>>>>>
>>>>>>>>
>>>>>>>
>>>>>>>
>>>>>>> --
>>>>>>> WBR
>>>>>>> Maxim aka solomax
>>>>>>>
>>>>>>
>>>>>>
>>>>>
>>>>
>>>>
>>>> --
>>>> WBR
>>>> Maxim aka solomax
>>>>
>>>
>>>
>>
>>
>> --
>> WBR
>> Maxim aka solomax
>>
>
>
--
WBR
Maxim aka solomax
Re: need info about problem when integration AD
Posted by Grégory Mangeney <ma...@gmail.com>.
Hello Maxim.
Thanks a lot for your answer.
You're helpfull...
I had ever try with SEARCHANDBIND but it still not working...
So I set it again to give you my logs...
The error is quite different but I could not understand what is the
problem...
In the login screen I have the following message in red : "Unknown error.
Please report this to the administrator."
Here is my logs :
ERROR 09-22 10:34:34.814 o.a.o.l.LdapLoginManagement:356
[http-nio-0.0.0.0-5080-exec-4] - Unexpected exception.
org.apache.directory.api.ldap.model.cursor.CursorLdapReferralException: null
at
org.apache.directory.ldap.client.api.EntryCursorImpl.get(EntryCursorImpl.java:164)
~[api-all-jar-1.0.0-M23.jar:1.0.0-M23]
at
org.apache.directory.ldap.client.api.EntryCursorImpl.get(EntryCursorImpl.java:50)
~[api-all-jar-1.0.0-M23.jar:1.0.0-M23]
at
org.apache.openmeetings.ldap.LdapLoginManagement.login(LdapLoginManagement.java:258)
~[openmeetings-core-3.0.3-RELEASE.jar:na]
at
org.apache.openmeetings.web.app.WebSession.signIn(WebSession.java:257)
[openmeetings-web-3.0.3-RELEASE.jar:na]
at
org.apache.openmeetings.web.pages.auth.SignInDialog.onSubmit(SignInDialog.java:190)
[openmeetings-web-3.0.3-RELEASE.jar:na]
at
com.googlecode.wicket.jquery.ui.widget.dialog.AbstractFormDialog$DialogFormSubmitter.onSubmit(AbstractFormDialog.java:279)
[wicket-jquery-ui-jar-6.16.0.jar:na]
at
org.apache.wicket.markup.html.form.Form.delegateSubmit(Form.java:1266)
[wicket-core-jar-6.16.0.jar:6.16.0]
at org.apache.wicket.markup.html.form.Form.process(Form.java:938)
[wicket-core-jar-6.16.0.jar:6.16.0]
at
org.apache.wicket.markup.html.form.StatelessForm.process(StatelessForm.java:96)
[wicket-core-jar-6.16.0.jar:6.16.0]
at
org.apache.wicket.markup.html.form.Form.onFormSubmitted(Form.java:770)
[wicket-core-jar-6.16.0.jar:6.16.0]
at
com.googlecode.wicket.jquery.ui.widget.dialog.AbstractFormDialog.internalOnClick(AbstractFormDialog.java:200)
[wicket-jquery-ui-jar-6.16.0.jar:na]
at
com.googlecode.wicket.jquery.ui.widget.dialog.AbstractDialog$1.onClick(AbstractDialog.java:439)
[wicket-jquery-ui-jar-6.16.0.jar:na]
at
com.googlecode.wicket.jquery.ui.widget.dialog.DialogBehavior.onAjax(DialogBehavior.java:175)
[wicket-jquery-ui-jar-6.16.0.jar:na]
at
com.googlecode.wicket.jquery.core.ajax.JQueryAjaxBehavior.respond(JQueryAjaxBehavior.java:171)
[wicket-jquery-ui-core-jar-6.16.0.jar:na]
at
org.apache.wicket.ajax.AbstractDefaultAjaxBehavior.onRequest(AbstractDefaultAjaxBehavior.java:633)
[wicket-core-jar-6.16.0.jar:6.16.0]
at sun.reflect.GeneratedMethodAccessor91.invoke(Unknown Source) ~[na:na]
at
sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
~[na:1.7.0_65]
at java.lang.reflect.Method.invoke(Method.java:606) ~[na:1.7.0_65]
at
org.apache.wicket.RequestListenerInterface.internalInvoke(RequestListenerInterface.java:258)
[wicket-core-jar-6.16.0.jar:6.16.0]
at
org.apache.wicket.RequestListenerInterface.invoke(RequestListenerInterface.java:241)
[wicket-core-jar-6.16.0.jar:6.16.0]
at
org.apache.wicket.core.request.handler.ListenerInterfaceRequestHandler.invokeListener(ListenerInterfaceRequestHandler.java:250)
[wicket-core-jar-6.16.0.jar:6.16.0]
at
org.apache.wicket.core.request.handler.ListenerInterfaceRequestHandler.respond(ListenerInterfaceRequestHandler.java:236)
[wicket-core-jar-6.16.0.jar:6.16.0]
at
org.apache.wicket.request.cycle.RequestCycle$HandlerExecutor.respond(RequestCycle.java:862)
[wicket-core-jar-6.16.0.jar:6.16.0]
at
org.apache.wicket.request.RequestHandlerStack.execute(RequestHandlerStack.java:64)
[wicket-request-jar-6.16.0.jar:6.16.0]
at
org.apache.wicket.request.cycle.RequestCycle.execute(RequestCycle.java:261)
[wicket-core-jar-6.16.0.jar:6.16.0]
at
org.apache.wicket.request.cycle.RequestCycle.processRequest(RequestCycle.java:218)
[wicket-core-jar-6.16.0.jar:6.16.0]
at
org.apache.wicket.request.cycle.RequestCycle.processRequestAndDetach(RequestCycle.java:289)
[wicket-core-jar-6.16.0.jar:6.16.0]
at
org.apache.wicket.protocol.ws.AbstractUpgradeFilter.processRequestCycle(AbstractUpgradeFilter.java:59)
[wicket-native-websocket-core-jar-6.16.0.jar:6.16.0]
at
org.apache.wicket.protocol.http.WicketFilter.processRequest(WicketFilter.java:201)
[wicket-core-jar-6.16.0.jar:6.16.0]
at
org.apache.wicket.protocol.http.WicketFilter.doFilter(WicketFilter.java:282)
[wicket-core-jar-6.16.0.jar:6.16.0]
at
org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:241)
[tomcat-embed-core.jar:7.0.55]
at
org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:208)
[tomcat-embed-core.jar:7.0.55]
at
org.red5.logging.LoggerContextFilter.doFilter(LoggerContextFilter.java:77)
[red5-server.jar:na]
at
org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:241)
[tomcat-embed-core.jar:7.0.55]
at
org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:208)
[tomcat-embed-core.jar:7.0.55]
at
org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:220)
[tomcat-embed-core.jar:7.0.55]
at
org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:122)
[tomcat-embed-core.jar:7.0.55]
at
org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:501)
[tomcat-embed-core.jar:7.0.55]
at
org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:171)
[tomcat-embed-core.jar:7.0.55]
at
org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:103)
[tomcat-embed-core.jar:7.0.55]
at
org.apache.catalina.valves.AccessLogValve.invoke(AccessLogValve.java:950)
[tomcat-embed-core.jar:7.0.55]
at
org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:116)
[tomcat-embed-core.jar:7.0.55]
at
org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:408)
[tomcat-embed-core.jar:7.0.55]
at
org.apache.coyote.http11.AbstractHttp11Processor.process(AbstractHttp11Processor.java:1070)
[tomcat-embed-core.jar:7.0.55]
at
org.apache.coyote.AbstractProtocol$AbstractConnectionHandler.process(AbstractProtocol.java:611)
[tomcat-embed-core.jar:7.0.55]
at
org.apache.tomcat.util.net.NioEndpoint$SocketProcessor.doRun(NioEndpoint.java:1736)
[tomcat-embed-core.jar:7.0.55]
at
org.apache.tomcat.util.net.NioEndpoint$SocketProcessor.run(NioEndpoint.java:1695)
[tomcat-embed-core.jar:7.0.55]
at
java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1145)
[na:1.7.0_65]
at
java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:615)
[na:1.7.0_65]
at
org.apache.tomcat.util.threads.TaskThread$WrappingRunnable.run(TaskThread.java:61)
[tomcat-embed-core.jar:7.0.55]
at java.lang.Thread.run(Thread.java:745) [na:1.7.0_65]
DEBUG 09-22 10:34:34.817 o.a.w.u.c.CookieUtils:266
[http-nio-0.0.0.0-5080-exec-4] - Unable to find Cookie with name=LoggedIn
and request URI=signin?1-1.IBehaviorListener.1-signin
DEBUG 09-22 10:34:34.820 o.a.w.f.FeedbackMessages:69
[http-nio-0.0.0.0-5080-exec-4] - Adding feedback message '[FeedbackMessage
message = "Unknown error. Please report this to the administrator.",
reporter = signin, level = ERROR]'
DEBUG 09-22 10:34:34.821 o.a.w.u.c.CookieUtils:266
[http-nio-0.0.0.0-5080-exec-4] - Unable to find Cookie with name=LoggedIn
and request URI=signin?1-1.IBehaviorListener.1-signin
DEBUG 09-22 10:34:34.822 o.a.wicket.Page:871 [http-nio-0.0.0.0-5080-exec-4]
- ending request for page [Page class =
org.apache.openmeetings.web.pages.auth.SignInPage, id = 1, render count =
1], request
org.apache.wicket.protocol.http.servlet.ServletWebRequest@16618f3
DEBUG 09-22 10:34:34.822 o.a.wicket.Page:871 [http-nio-0.0.0.0-5080-exec-4]
- ending request for page [Page class =
org.apache.openmeetings.web.pages.auth.SignInPage, id = 1, render count =
1], request
org.apache.wicket.protocol.http.servlet.ServletWebRequest@16618f3
DEBUG 09-22 10:34:34.823 o.a.wicket.Page:871 [http-nio-0.0.0.0-5080-exec-4]
- ending request for page [Page class =
org.apache.openmeetings.web.pages.auth.SignInPage, id = 1, render count =
1], request
org.apache.wicket.protocol.http.servlet.ServletWebRequest@16618f3
DEBUG 09-22 10:34:34.828
o.a.w.p.AsynchronousDataStore$PageSavingRunnable:354
[Wicket-PageSavingThread] - Saving asynchronously: Entry
[sessionId=907ABBB232B18743F2A67024DA18F185, pageId=1]...
DEBUG 09-22 10:34:34.828 o.a.w.p.DiskDataStore:186
[Wicket-PageSavingThread] - Storing data for page with id '1' in session
with id '907ABBB232B18743F2A67024DA18F185'
DEBUG 09-22 10:34:34.828 o.a.w.p.PageAccessSynchronizer:195
[http-nio-0.0.0.0-5080-exec-4] - 'http-nio-0.0.0.0-5080-exec-4' released
lock to page with id '1'
DEBUG 09-22 10:34:34.828 o.a.w.p.PageAccessSynchronizer:346
[http-nio-0.0.0.0-5080-exec-4] - 'http-nio-0.0.0.0-5080-exec-4' notifying
blocked threads
DEBUG 09-22 10:34:36.341 o.a.o.m.MailHandler:249
[org.springframework.scheduling.quartz.SchedulerFactoryBean#0_Worker-1] -
resetSendingStatus enter ...
Thank you for your time.
Greg.
2014-09-20 8:59 GMT+02:00 Maxim Solodovnik <so...@gmail.com>:
> According to the logs and config SIMPLEBIND failed for the user specified
> please try SEARCHANDBIND
>
> On 19 September 2014 17:09, Grégory Mangeney <ma...@gmail.com> wrote:
>
>> Hello.
>> Thank you for your link.
>> It appeare that I have a 525 error (user not found).
>>
>> I think the problem must be in my config file because I'm sure that my
>> user is good because I use it for an other app witch use it to connect with
>> AD.
>>
>> As you ask me i give you more line of my log file, after that I would
>> like to show you my conf file...
>> Maybe you will find a setting withch is not good!
>>
>>
>> So here is my log file whene I try to connect :
>> DEBUG 09-19 11:47:01.337 o.a.o.q.s.MeetingReminderJob:34
>> [org.springframework.scheduling.quartz.SchedulerFactoryBean#0_Worker-2] -
>> MeetingReminderJob.execute
>> DEBUG 09-19 11:47:25.760 o.a.w.p.h.s.ServletWebRequest:189
>> [http-nio-0.0.0.0-5080-exec-10] - Calculating context relative path from:
>> context path '/openmeetings', filterPrefix '', uri '/openmeetings/signin'
>> DEBUG 09-19 11:47:25.761 o.a.w.p.PageAccessSynchronizer:100
>> [http-nio-0.0.0.0-5080-exec-10] - 'http-nio-0.0.0.0-5080-exec-10'
>> attempting to acquire lock to page with id '1'
>> DEBUG 09-19 11:47:25.761 o.a.w.p.PageAccessSynchronizer:125
>> [http-nio-0.0.0.0-5080-exec-10] - http-nio-0.0.0.0-5080-exec-10 acquired
>> lock to page 1
>> DEBUG 09-19 11:47:25.762 o.a.o.d.d.s.SessiondataDao:68
>> [http-nio-0.0.0.0-5080-exec-10] - startsession :: startsession
>> DEBUG 09-19 11:47:25.763 o.a.o.u.c.ManageCryptStyle:32
>> [http-nio-0.0.0.0-5080-exec-10] - getInstanceOfCrypt::
>> configKeyCryptClassName:
>> org.apache.openmeetings.util.crypt.MD5Implementation
>> DEBUG 09-19 11:47:25.788 o.a.o.l.LdapLoginManagement:165
>> [http-nio-0.0.0.0-5080-exec-10] - LdapLoginmanagement.doLdapLogin
>> ERROR 09-19 11:47:25.924 o.a.o.l.LdapLoginManagement:351
>> [http-nio-0.0.0.0-5080-exec-10] - Not authenticated.
>> org.apache.directory.api.ldap.model.exception.LdapAuthenticationException:
>> 80090308: LdapErr: DSID-0C090334, comment: AcceptSecurityContext error,
>> data 525, vece\00
>> at
>> org.apache.directory.api.ldap.model.message.ResultCodeEnum.processResponse(ResultCodeEnum.java:2021)
>> ~[api-all-jar-1.0.0-M23.jar:1.0.0-M23]
>> at
>> org.apache.directory.ldap.client.api.AbstractLdapConnection.bind(AbstractLdapConnection.java:129)
>> ~[api-all-jar-1.0.0-M23.jar:1.0.0-M23]
>> at
>> org.apache.openmeetings.ldap.LdapLoginManagement.login(LdapLoginManagement.java:275)
>> ~[openmeetings-core-3.0.3-RELEASE.jar:na]
>> at
>> org.apache.openmeetings.web.app.WebSession.signIn(WebSession.java:257)
>> [openmeetings-web-3.0.3-RELEASE.jar:na]
>> at
>> org.apache.openmeetings.web.pages.auth.SignInDialog.onSubmit(SignInDialog.java:190)
>> [openmeetings-web-3.0.3-RELEASE.jar:na]
>> at
>> com.googlecode.wicket.jquery.ui.widget.dialog.AbstractFormDialog$DialogFormSubmitter.onSubmit(AbstractFormDialog.java:279)
>> [wicket-jquery-ui-jar-6.16.0.jar:na]
>> at
>> org.apache.wicket.markup.html.form.Form.delegateSubmit(Form.java:1266)
>> [wicket-core-jar-6.16.0.jar:6.16.0]
>> at org.apache.wicket.markup.html.form.Form.process(Form.java:938)
>> [wicket-core-jar-6.16.0.jar:6.16.0]
>> at
>> org.apache.wicket.markup.html.form.StatelessForm.process(StatelessForm.java:96)
>> [wicket-core-jar-6.16.0.jar:6.16.0]
>> at
>> org.apache.wicket.markup.html.form.Form.onFormSubmitted(Form.java:770)
>> [wicket-core-jar-6.16.0.jar:6.16.0]
>> at
>> com.googlecode.wicket.jquery.ui.widget.dialog.AbstractFormDialog.internalOnClick(AbstractFormDialog.java:200)
>> [wicket-jquery-ui-jar-6.16.0.jar:na]
>> at
>> com.googlecode.wicket.jquery.ui.widget.dialog.AbstractDialog$1.onClick(AbstractDialog.java:439)
>> [wicket-jquery-ui-jar-6.16.0.jar:na]
>> at
>> com.googlecode.wicket.jquery.ui.widget.dialog.DialogBehavior.onAjax(DialogBehavior.java:175)
>> [wicket-jquery-ui-jar-6.16.0.jar:na]
>> at
>> com.googlecode.wicket.jquery.core.ajax.JQueryAjaxBehavior.respond(JQueryAjaxBehavior.java:171)
>> [wicket-jquery-ui-core-jar-6.16.0.jar:na]
>> at
>> org.apache.wicket.ajax.AbstractDefaultAjaxBehavior.onRequest(AbstractDefaultAjaxBehavior.java:633)
>> [wicket-core-jar-6.16.0.jar:6.16.0]
>> at sun.reflect.GeneratedMethodAccessor91.invoke(Unknown Source) ~[na:na]
>> at
>> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
>> ~[na:1.7.0_65]
>> at java.lang.reflect.Method.invoke(Method.java:606) ~[na:1.7.0_65]
>> at
>> org.apache.wicket.RequestListenerInterface.internalInvoke(RequestListenerInterface.java:258)
>> [wicket-core-jar-6.16.0.jar:6.16.0]
>> at
>> org.apache.wicket.RequestListenerInterface.invoke(RequestListenerInterface.java:241)
>> [wicket-core-jar-6.16.0.jar:6.16.0]
>> at
>> org.apache.wicket.core.request.handler.ListenerInterfaceRequestHandler.invokeListener(ListenerInterfaceRequestHandler.java:250)
>> [wicket-core-jar-6.16.0.jar:6.16.0]
>> at
>> org.apache.wicket.core.request.handler.ListenerInterfaceRequestHandler.respond(ListenerInterfaceRequestHandler.java:236)
>> [wicket-core-jar-6.16.0.jar:6.16.0]
>> at
>> org.apache.wicket.request.cycle.RequestCycle$HandlerExecutor.respond(RequestCycle.java:862)
>> [wicket-core-jar-6.16.0.jar:6.16.0]
>> at
>> org.apache.wicket.request.RequestHandlerStack.execute(RequestHandlerStack.java:64)
>> [wicket-request-jar-6.16.0.jar:6.16.0]
>> at
>> org.apache.wicket.request.cycle.RequestCycle.execute(RequestCycle.java:261)
>> [wicket-core-jar-6.16.0.jar:6.16.0]
>> at
>> org.apache.wicket.request.cycle.RequestCycle.processRequest(RequestCycle.java:218)
>> [wicket-core-jar-6.16.0.jar:6.16.0]
>> at
>> org.apache.wicket.request.cycle.RequestCycle.processRequestAndDetach(RequestCycle.java:289)
>> [wicket-core-jar-6.16.0.jar:6.16.0]
>> at
>> org.apache.wicket.protocol.ws.AbstractUpgradeFilter.processRequestCycle(AbstractUpgradeFilter.java:59)
>> [wicket-native-websocket-core-jar-6.16.0.jar:6.16.0]
>> at
>> org.apache.wicket.protocol.http.WicketFilter.processRequest(WicketFilter.java:201)
>> [wicket-core-jar-6.16.0.jar:6.16.0]
>> at
>> org.apache.wicket.protocol.http.WicketFilter.doFilter(WicketFilter.java:282)
>> [wicket-core-jar-6.16.0.jar:6.16.0]
>> at
>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:241)
>> [tomcat-embed-core.jar:7.0.55]
>> at
>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:208)
>> [tomcat-embed-core.jar:7.0.55]
>> at
>> org.red5.logging.LoggerContextFilter.doFilter(LoggerContextFilter.java:77)
>> [red5-server.jar:na]
>> at
>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:241)
>> [tomcat-embed-core.jar:7.0.55]
>> at
>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:208)
>> [tomcat-embed-core.jar:7.0.55]
>> at
>> org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:220)
>> [tomcat-embed-core.jar:7.0.55]
>> at
>> org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:122)
>> [tomcat-embed-core.jar:7.0.55]
>> at
>> org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:501)
>> [tomcat-embed-core.jar:7.0.55]
>> at
>> org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:171)
>> [tomcat-embed-core.jar:7.0.55]
>> at
>> org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:103)
>> [tomcat-embed-core.jar:7.0.55]
>> at
>> org.apache.catalina.valves.AccessLogValve.invoke(AccessLogValve.java:950)
>> [tomcat-embed-core.jar:7.0.55]
>> at
>> org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:116)
>> [tomcat-embed-core.jar:7.0.55]
>> at
>> org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:408)
>> [tomcat-embed-core.jar:7.0.55]
>> at
>> org.apache.coyote.http11.AbstractHttp11Processor.process(AbstractHttp11Processor.java:1070)
>> [tomcat-embed-core.jar:7.0.55]
>> at
>> org.apache.coyote.AbstractProtocol$AbstractConnectionHandler.process(AbstractProtocol.java:611)
>> [tomcat-embed-core.jar:7.0.55]
>> at
>> org.apache.tomcat.util.net.NioEndpoint$SocketProcessor.doRun(NioEndpoint.java:1736)
>> [tomcat-embed-core.jar:7.0.55]
>> at
>> org.apache.tomcat.util.net.NioEndpoint$SocketProcessor.run(NioEndpoint.java:1695)
>> [tomcat-embed-core.jar:7.0.55]
>> at
>> java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1145)
>> [na:1.7.0_65]
>> at
>> java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:615)
>> [na:1.7.0_65]
>> at
>> org.apache.tomcat.util.threads.TaskThread$WrappingRunnable.run(TaskThread.java:61)
>> [tomcat-embed-core.jar:7.0.55]
>> at java.lang.Thread.run(Thread.java:745) [na:1.7.0_65]
>> DEBUG 09-19 11:47:25.927 o.a.w.u.c.CookieUtils:266
>> [http-nio-0.0.0.0-5080-exec-10] - Unable to find Cookie with name=LoggedIn
>> and request URI=signin?1-1.IBehaviorListener.1-signin
>> DEBUG 09-19 11:47:25.929 o.a.w.f.FeedbackMessages:69
>> [http-nio-0.0.0.0-5080-exec-10] - Adding feedback message '[FeedbackMessage
>> message = "Invalid password", reporter = signin, level = ERROR]'
>> DEBUG 09-19 11:47:25.929 o.a.w.u.c.CookieUtils:266
>> [http-nio-0.0.0.0-5080-exec-10] - Unable to find Cookie with name=LoggedIn
>> and request URI=signin?1-1.IBehaviorListener.1-signin
>> DEBUG 09-19 11:47:25.930 o.a.wicket.Page:871
>> [http-nio-0.0.0.0-5080-exec-10] - ending request for page [Page class =
>> org.apache.openmeetings.web.pages.auth.SignInPage, id = 1, render count =
>> 1], request
>> org.apache.wicket.protocol.http.servlet.ServletWebRequest@a6e74b
>> DEBUG 09-19 11:47:25.930 o.a.wicket.Page:871
>> [http-nio-0.0.0.0-5080-exec-10] - ending request for page [Page class =
>> org.apache.openmeetings.web.pages.auth.SignInPage, id = 1, render count =
>> 1], request
>> org.apache.wicket.protocol.http.servlet.ServletWebRequest@a6e74b
>> DEBUG 09-19 11:47:25.930 o.a.wicket.Page:871
>> [http-nio-0.0.0.0-5080-exec-10] - ending request for page [Page class =
>> org.apache.openmeetings.web.pages.auth.SignInPage, id = 1, render count =
>> 1], request
>> org.apache.wicket.protocol.http.servlet.ServletWebRequest@a6e74b
>> DEBUG 09-19 11:47:25.988
>> o.a.w.p.AsynchronousDataStore$PageSavingRunnable:354
>> [Wicket-PageSavingThread] - Saving asynchronously: Entry
>> [sessionId=2A10AA69C3E771FF51FABD4D26A20559, pageId=1]...
>> DEBUG 09-19 11:47:25.988 o.a.w.p.DiskDataStore:186
>> [Wicket-PageSavingThread] - Storing data for page with id '1' in session
>> with id '2A10AA69C3E771FF51FABD4D26A20559'
>> DEBUG 09-19 11:47:25.988 o.a.w.p.PageAccessSynchronizer:195
>> [http-nio-0.0.0.0-5080-exec-10] - 'http-nio-0.0.0.0-5080-exec-10' released
>> lock to page with id '1'
>> DEBUG 09-19 11:47:25.988 o.a.w.p.PageAccessSynchronizer:346
>> [http-nio-0.0.0.0-5080-exec-10] - 'http-nio-0.0.0.0-5080-exec-10' notifying
>> blocked threads
>>
>>
>>
>>
>>
>>
>>
>>
>>
>> And here is my conf file :
>>
>> #
>> # Licensed to the Apache Software Foundation (ASF) under one
>> # or more contributor license agreements. See the NOTICE file
>> # distributed with this work for additional information
>> # regarding copyright ownership. The ASF licenses this file
>> # to you under the Apache License, Version 2.0 (the
>> # "License"); you may not use this file except in compliance
>> # with the License. You may obtain a copy of the License at
>> #
>> # http://www.apache.org/licenses/LICENSE-2.0
>> #
>> # Unless required by applicable law or agreed to in writing,
>> # software distributed under the License is distributed on an
>> # "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
>> # KIND, either express or implied. See the License for the
>> # specific language governing permissions and limitations
>> # under the License.
>> #
>> #ConfigurationFile for LDAP Auth
>> #ConfigKey 'ldap_config_path' must be set in DataBase Configration of OM
>> and point to this file
>> #o.becherer,14.01.2009
>> #LDAP URL
>> # This is the URL used to access your LDAP server.
>> # if you want to use "ldaps://" links, please be aware that you need to
>> import your CA certificate
>> # to a java keystore and add the -Djavax.net.ssl.keyStore,
>> -Djavax.net.ssl.keyStorePassword,
>> # -Djavax.net.ssl.trustStore and -Djavax.net.ssl.trustStorePassword
>> parameters to your
>> # JAVA_OPT environment
>> ldap_conn_host=@IP_of_my_AD
>> ldap_conn_port=389
>> ldap_conn_secure=false
>> # Login distinguished name (DN) for Authentication on LDAP Server - keep
>> empty if not required
>> # Use full qualified LDAP DN
>>
>> ldap_admin_dn=CN=adconnect,OU=Comptes,OU=SI,OU=Services,OU=COMPANY,DC=mycompany,DC=priv
>> # Loginpass for Authentication on LDAP Server - keep empty if not required
>> ldap_passwd=pass_for_user_adconnect
>> # base to search for userdata(of user, that wants to login)
>> ldap_search_base=DC=mycompany,DC=priv
>> # Fieldnames (can differ between Ldap servers)
>> ldap_search_query=(uid=%s)
>> # the scope of the search might be: OBJECT, ONELEVEL, SUBTREE
>> ldap_search_scope=ONELEVEL
>> # Ldap auth type(NONE, SEARCHANDBIND, SIMPLEBIND)
>> # When using SIMPLEBIND a simple bind is performed on the LDAP server to
>> check user authentication
>> # When using NONE, the Ldap server is not used for authentication
>> ldap_auth_type=SIMPLEBIND
>> # userDN format, will be used to bind if ldap_auth_type=SIMPLEBIND
>> # might be used to get provisionningDn in case ldap_auth_type=NONE
>> ldap_userdn_format=uid=%s,OU=COMPANY,DC=mycompany,DC=priv
>> # Ldap provisioning type(NONE, AUTOCREATE, AUTOUPDATE)
>> ldap_provisionning=AUTOCREATE
>> # Set this to 'true' if you want to use admin_dn to get user attributes
>> # If any other value is set, user_dn will be used
>> ldap_use_admin_to_get_attrs=true
>> # Ldap-password synchronization to OM DB
>> # Set this to 'true' if you want OM to synchronize the user
>> Ldap-password to OM's internal DB
>> # If you want to disable the feature, set this to any other string.
>> # Defautl value is 'true'
>> ldap_sync_password_to_om=true
>> # Ldap user attributes mapping
>> # Set the following internal OM user attributes to their corresponding
>> Ldap-attribute
>> ldap_user_attr_lastname=sn
>> ldap_user_attr_firstname=givenName
>> ldap_user_attr_mail=mail
>> ldap_user_attr_street=streetAddress
>> ldap_user_attr_additionalname=description
>> ldap_user_attr_fax=facsimileTelephoneNumber
>> ldap_user_attr_zip=postalCode
>> ldap_user_attr_country=co
>> ldap_user_attr_town=l
>> ldap_user_attr_phone=telephoneNumber
>> # optional, only absolute URLs make sense
>> #ldap_user_picture_uri=picture_uri
>> # optional
>> # the timezone has to match any timezone available in Java, otherwise the
>> timezone defined in the value of
>> # the conf_key "default.timezone" in OpenMeetings "configurations" table
>> #ldap_user_timezone=timezone
>> # Ldap ignore upper/lower case, convert all input to lower case
>> ldap_use_lower_case=false
>>
>>
>>
>> Thanks a lot for your help.
>>
>> Greg.
>>
>>
>>
>>
>> 2014-09-18 17:52 GMT+02:00 Maxim Solodovnik <so...@gmail.com>:
>>
>>> please check this URL:
>>> http://kb.juniper.net/InfoCenter/index?page=content&id=KB17098
>>> According to it you have "User not found"
>>>
>>> could you provide more ldap related logs?
>>> it might be Admin not found or user entered in login form not found
>>> depending on your settings
>>>
>>> On 18 September 2014 21:43, Grégory Mangeney <ma...@gmail.com> wrote:
>>>
>>>> Hello, It's me again...
>>>> I'm back.
>>>> Now I have a new problem to connect to my AD...
>>>> In log file it is write : *ERROR ......... Not authenticated*
>>>> witch is a quite better message than before but after that it is write
>>>> : *LdapErr: DSID-0C090334, comment: AcceptSecurityContext error, data
>>>> 525, vece\00 at........*
>>>>
>>>> I try to understand my problem but "AcceptSecurityContext error" seems
>>>> to speack about a security problem.
>>>> I have set my ldap_conn_secure=false in om_ldap.conf.
>>>> I don't understand what could be my problem.
>>>>
>>>> thanks a lot for your ideas.
>>>>
>>>> Greg.
>>>> 2014-09-18 15:37 GMT+02:00 Grégory Mangeney <ma...@gmail.com>:
>>>>
>>>>> Ok, I finally understand that I have to put the filename and only the
>>>>> filename without */usr/lib/red5/webapps/openmeetings/conf/*
>>>>>
>>>>> Now I have a new message whitch said me invalid password...
>>>>> It's quite better...
>>>>> Thank you...
>>>>> I could continue to try to set it now.
>>>>> bye
>>>>>
>>>>> Greg.
>>>>>
>>>>>
>>>>>
>>>>> 2014-09-18 15:06 GMT+02:00 Maxim Solodovnik <so...@gmail.com>:
>>>>>
>>>>>> you need to write file name relative to webapps/openmeetings/conf
>>>>>> folder
>>>>>> in your case *om_ldap.cfg *should be specified
>>>>>>
>>>>>> On 18 September 2014 20:04, Grégory Mangeney <ma...@gmail.com>
>>>>>> wrote:
>>>>>>
>>>>>>> Thank you very much but I don't understand very well.
>>>>>>> I think I put the right information...
>>>>>>> Do you want to say that I have to write :
>>>>>>> */usr/lib/red5/webapps/openmeetings/conf/* without the filename
>>>>>>> *om_ldap.cfg* at the end?
>>>>>>> Thanks for your help
>>>>>>> Greg
>>>>>>>
>>>>>>>
>>>>>>> 2014-09-18 14:52 GMT+02:00 Maxim Solodovnik <so...@gmail.com>:
>>>>>>>
>>>>>>>> AFAIK the path should be relative to /usr/lib/red5/webapps/
>>>>>>>> openmeetings/conf
>>>>>>>> Please change this path
>>>>>>>>
>>>>>>>> Additionally you can file JIRA issue to add check to the Admin
>>>>>>>> screen (so path will be validated on enter)
>>>>>>>>
>>>>>>>> On 18 September 2014 19:44, Grégory Mangeney <ma...@gmail.com>
>>>>>>>> wrote:
>>>>>>>>
>>>>>>>>> Hello,
>>>>>>>>> I have the same problem: I could not connect with AD.
>>>>>>>>> I have the domain at the login screen,
>>>>>>>>> I am using the 3.0.3.
>>>>>>>>> I found this line in my log file :* ERROR 09-18 14:28:33.994
>>>>>>>>> o.a.o.l.LdapLoginManagement:147 [http-nio-0.0.0.0-5080-exec-4] - Error on
>>>>>>>>> LdapLogin : Configurationdata couldnt be retrieved!*
>>>>>>>>>
>>>>>>>>> This seem strange because in my LDAP config (in openmeetings
>>>>>>>>> Administration/LDAP menu), I put the correct path in the "Config file name"
>>>>>>>>> : /usr/lib/red5/webapps/openmeetings/conf/om_ldap.cfg
>>>>>>>>>
>>>>>>>>> Why is this error appeared : *Configurationdata couldnt be
>>>>>>>>> retrieved! *???
>>>>>>>>>
>>>>>>>>>
>>>>>>>>> Thanks a lot
>>>>>>>>>
>>>>>>>>> Greg
>>>>>>>>>
>>>>>>>>>
>>>>>>>>> 2014-09-17 12:52 GMT+02:00 Maxim Solodovnik <so...@gmail.com>
>>>>>>>>> :
>>>>>>>>>
>>>>>>>>>> great :)
>>>>>>>>>>
>>>>>>>>>> On 17 September 2014 17:46, Teddy Jayasaputra <
>>>>>>>>>> teddy.jayasaputra@ocbcnisp.com> wrote:
>>>>>>>>>>
>>>>>>>>>>> Dear Maxim,
>>>>>>>>>>>
>>>>>>>>>>> After close look to console log.
>>>>>>>>>>> We found this error :
>>>>>>>>>>> ERROR 09-17 17:28:33.278 LdapLoginManagement.java 135070 285
>>>>>>>>>>> org.apache.openmeetings.ldap.LdapLoginManagement
>>>>>>>>>>> [http-nio-0.0.0.0-5080-exec-6] - User not found in OM DB and
>>>>>>>>>>> Provisionning.AUTOCREATE was not set
>>>>>>>>>>>
>>>>>>>>>>> After we change ldapconfiguration file from
>>>>>>>>>>> ldap_provisionning=NONE to AUTOCREATE we can login using AD.
>>>>>>>>>>>
>>>>>>>>>>> thanks.
>>>>>>>>>>>
>>>>>>>>>>> Best Regards,
>>>>>>>>>>>
>>>>>>>>>>>
>>>>>>>>>>> -Teddy Jayasaputra-
>>>>>>>>>>>
>>>>>>>>>>>
>>>>>>>>>>> On 9/17/2014 4:25 PM, Maxim Solodovnik wrote:
>>>>>>>>>>>
>>>>>>>>>>> do you have your AD domain on the login screen?
>>>>>>>>>>> are there errors in the log?
>>>>>>>>>>> what OM version are you using?
>>>>>>>>>>>
>>>>>>>>>>> On 17 September 2014 16:02, ARI HENDIAWAN <
>>>>>>>>>>> ari.hendiawan@ocbcnisp.com> wrote:
>>>>>>>>>>>
>>>>>>>>>>>> Dear all,
>>>>>>>>>>>> please we need extra information how to integrate openmeetings
>>>>>>>>>>>> 3.0.3 with AD?
>>>>>>>>>>>> we already setting on ldap.conf and still problem.. if we saw
>>>>>>>>>>>> on AD , user that want sign-in openmeetings success, but on login menu
>>>>>>>>>>>> openmeetings shown error "invalid password"
>>>>>>>>>>>>
>>>>>>>>>>>>
>>>>>>>>>>>> Tks
>>>>>>>>>>>>
>>>>>>>>>>>>
>>>>>>>>>>>> --
>>>>>>>>>>>> Disclaimer :
>>>>>>>>>>>> Confidential information may be contained in this message. If
>>>>>>>>>>>> you are not the intended recipient, you are strictly prohibited and may be
>>>>>>>>>>>> unlawful to use, copy, store, distribute, disclose or communicate any part
>>>>>>>>>>>> of it to others and you are obliged to return it immediately to sender or
>>>>>>>>>>>> notify us and delete the e-mail and any attachments from your system.
>>>>>>>>>>>> Opinions, conclusions and other information in this e-mail that do not
>>>>>>>>>>>> relate to the official business of any PT Bank OCBC NISP Tbk shall be
>>>>>>>>>>>> understood as neither given nor endorsed by it. No assumption of
>>>>>>>>>>>> responsibility or liability whatsoever is undertaken by PT Bank OCBC NISP
>>>>>>>>>>>> Tbk in respect of prohibited and unauthorised use by any other person.
>>>>>>>>>>>>
>>>>>>>>>>>>
>>>>>>>>>>>
>>>>>>>>>>>
>>>>>>>>>>> --
>>>>>>>>>>> WBR
>>>>>>>>>>> Maxim aka solomax
>>>>>>>>>>>
>>>>>>>>>>>
>>>>>>>>>>>
>>>>>>>>>>>
>>>>>>>>>>> --
>>>>>>>>>>> Disclaimer :
>>>>>>>>>>> Confidential information may be contained in this message. If
>>>>>>>>>>> you are not the intended recipient, you are strictly prohibited and may be
>>>>>>>>>>> unlawful to use, copy, store, distribute, disclose or communicate any part
>>>>>>>>>>> of it to others and you are obliged to return it immediately to sender or
>>>>>>>>>>> notify us and delete the e-mail and any attachments from your system.
>>>>>>>>>>> Opinions, conclusions and other information in this e-mail that do not
>>>>>>>>>>> relate to the official business of any PT Bank OCBC NISP Tbk shall be
>>>>>>>>>>> understood as neither given nor endorsed by it. No assumption of
>>>>>>>>>>> responsibility or liability whatsoever is undertaken by PT Bank OCBC NISP
>>>>>>>>>>> Tbk in respect of prohibited and unauthorised use by any other person.
>>>>>>>>>>>
>>>>>>>>>>
>>>>>>>>>>
>>>>>>>>>>
>>>>>>>>>> --
>>>>>>>>>> WBR
>>>>>>>>>> Maxim aka solomax
>>>>>>>>>>
>>>>>>>>>
>>>>>>>>>
>>>>>>>>
>>>>>>>>
>>>>>>>> --
>>>>>>>> WBR
>>>>>>>> Maxim aka solomax
>>>>>>>>
>>>>>>>
>>>>>>>
>>>>>>
>>>>>>
>>>>>> --
>>>>>> WBR
>>>>>> Maxim aka solomax
>>>>>>
>>>>>
>>>>>
>>>>
>>>
>>>
>>> --
>>> WBR
>>> Maxim aka solomax
>>>
>>
>>
>
>
> --
> WBR
> Maxim aka solomax
>
Re: need info about problem when integration AD
Posted by Maxim Solodovnik <so...@gmail.com>.
According to the logs and config SIMPLEBIND failed for the user specified
please try SEARCHANDBIND
On 19 September 2014 17:09, Grégory Mangeney <ma...@gmail.com> wrote:
> Hello.
> Thank you for your link.
> It appeare that I have a 525 error (user not found).
>
> I think the problem must be in my config file because I'm sure that my
> user is good because I use it for an other app witch use it to connect with
> AD.
>
> As you ask me i give you more line of my log file, after that I would like
> to show you my conf file...
> Maybe you will find a setting withch is not good!
>
>
> So here is my log file whene I try to connect :
> DEBUG 09-19 11:47:01.337 o.a.o.q.s.MeetingReminderJob:34
> [org.springframework.scheduling.quartz.SchedulerFactoryBean#0_Worker-2] -
> MeetingReminderJob.execute
> DEBUG 09-19 11:47:25.760 o.a.w.p.h.s.ServletWebRequest:189
> [http-nio-0.0.0.0-5080-exec-10] - Calculating context relative path from:
> context path '/openmeetings', filterPrefix '', uri '/openmeetings/signin'
> DEBUG 09-19 11:47:25.761 o.a.w.p.PageAccessSynchronizer:100
> [http-nio-0.0.0.0-5080-exec-10] - 'http-nio-0.0.0.0-5080-exec-10'
> attempting to acquire lock to page with id '1'
> DEBUG 09-19 11:47:25.761 o.a.w.p.PageAccessSynchronizer:125
> [http-nio-0.0.0.0-5080-exec-10] - http-nio-0.0.0.0-5080-exec-10 acquired
> lock to page 1
> DEBUG 09-19 11:47:25.762 o.a.o.d.d.s.SessiondataDao:68
> [http-nio-0.0.0.0-5080-exec-10] - startsession :: startsession
> DEBUG 09-19 11:47:25.763 o.a.o.u.c.ManageCryptStyle:32
> [http-nio-0.0.0.0-5080-exec-10] - getInstanceOfCrypt::
> configKeyCryptClassName:
> org.apache.openmeetings.util.crypt.MD5Implementation
> DEBUG 09-19 11:47:25.788 o.a.o.l.LdapLoginManagement:165
> [http-nio-0.0.0.0-5080-exec-10] - LdapLoginmanagement.doLdapLogin
> ERROR 09-19 11:47:25.924 o.a.o.l.LdapLoginManagement:351
> [http-nio-0.0.0.0-5080-exec-10] - Not authenticated.
> org.apache.directory.api.ldap.model.exception.LdapAuthenticationException:
> 80090308: LdapErr: DSID-0C090334, comment: AcceptSecurityContext error,
> data 525, vece\00
> at
> org.apache.directory.api.ldap.model.message.ResultCodeEnum.processResponse(ResultCodeEnum.java:2021)
> ~[api-all-jar-1.0.0-M23.jar:1.0.0-M23]
> at
> org.apache.directory.ldap.client.api.AbstractLdapConnection.bind(AbstractLdapConnection.java:129)
> ~[api-all-jar-1.0.0-M23.jar:1.0.0-M23]
> at
> org.apache.openmeetings.ldap.LdapLoginManagement.login(LdapLoginManagement.java:275)
> ~[openmeetings-core-3.0.3-RELEASE.jar:na]
> at org.apache.openmeetings.web.app.WebSession.signIn(WebSession.java:257)
> [openmeetings-web-3.0.3-RELEASE.jar:na]
> at
> org.apache.openmeetings.web.pages.auth.SignInDialog.onSubmit(SignInDialog.java:190)
> [openmeetings-web-3.0.3-RELEASE.jar:na]
> at
> com.googlecode.wicket.jquery.ui.widget.dialog.AbstractFormDialog$DialogFormSubmitter.onSubmit(AbstractFormDialog.java:279)
> [wicket-jquery-ui-jar-6.16.0.jar:na]
> at org.apache.wicket.markup.html.form.Form.delegateSubmit(Form.java:1266)
> [wicket-core-jar-6.16.0.jar:6.16.0]
> at org.apache.wicket.markup.html.form.Form.process(Form.java:938)
> [wicket-core-jar-6.16.0.jar:6.16.0]
> at
> org.apache.wicket.markup.html.form.StatelessForm.process(StatelessForm.java:96)
> [wicket-core-jar-6.16.0.jar:6.16.0]
> at org.apache.wicket.markup.html.form.Form.onFormSubmitted(Form.java:770)
> [wicket-core-jar-6.16.0.jar:6.16.0]
> at
> com.googlecode.wicket.jquery.ui.widget.dialog.AbstractFormDialog.internalOnClick(AbstractFormDialog.java:200)
> [wicket-jquery-ui-jar-6.16.0.jar:na]
> at
> com.googlecode.wicket.jquery.ui.widget.dialog.AbstractDialog$1.onClick(AbstractDialog.java:439)
> [wicket-jquery-ui-jar-6.16.0.jar:na]
> at
> com.googlecode.wicket.jquery.ui.widget.dialog.DialogBehavior.onAjax(DialogBehavior.java:175)
> [wicket-jquery-ui-jar-6.16.0.jar:na]
> at
> com.googlecode.wicket.jquery.core.ajax.JQueryAjaxBehavior.respond(JQueryAjaxBehavior.java:171)
> [wicket-jquery-ui-core-jar-6.16.0.jar:na]
> at
> org.apache.wicket.ajax.AbstractDefaultAjaxBehavior.onRequest(AbstractDefaultAjaxBehavior.java:633)
> [wicket-core-jar-6.16.0.jar:6.16.0]
> at sun.reflect.GeneratedMethodAccessor91.invoke(Unknown Source) ~[na:na]
> at
> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
> ~[na:1.7.0_65]
> at java.lang.reflect.Method.invoke(Method.java:606) ~[na:1.7.0_65]
> at
> org.apache.wicket.RequestListenerInterface.internalInvoke(RequestListenerInterface.java:258)
> [wicket-core-jar-6.16.0.jar:6.16.0]
> at
> org.apache.wicket.RequestListenerInterface.invoke(RequestListenerInterface.java:241)
> [wicket-core-jar-6.16.0.jar:6.16.0]
> at
> org.apache.wicket.core.request.handler.ListenerInterfaceRequestHandler.invokeListener(ListenerInterfaceRequestHandler.java:250)
> [wicket-core-jar-6.16.0.jar:6.16.0]
> at
> org.apache.wicket.core.request.handler.ListenerInterfaceRequestHandler.respond(ListenerInterfaceRequestHandler.java:236)
> [wicket-core-jar-6.16.0.jar:6.16.0]
> at
> org.apache.wicket.request.cycle.RequestCycle$HandlerExecutor.respond(RequestCycle.java:862)
> [wicket-core-jar-6.16.0.jar:6.16.0]
> at
> org.apache.wicket.request.RequestHandlerStack.execute(RequestHandlerStack.java:64)
> [wicket-request-jar-6.16.0.jar:6.16.0]
> at
> org.apache.wicket.request.cycle.RequestCycle.execute(RequestCycle.java:261)
> [wicket-core-jar-6.16.0.jar:6.16.0]
> at
> org.apache.wicket.request.cycle.RequestCycle.processRequest(RequestCycle.java:218)
> [wicket-core-jar-6.16.0.jar:6.16.0]
> at
> org.apache.wicket.request.cycle.RequestCycle.processRequestAndDetach(RequestCycle.java:289)
> [wicket-core-jar-6.16.0.jar:6.16.0]
> at
> org.apache.wicket.protocol.ws.AbstractUpgradeFilter.processRequestCycle(AbstractUpgradeFilter.java:59)
> [wicket-native-websocket-core-jar-6.16.0.jar:6.16.0]
> at
> org.apache.wicket.protocol.http.WicketFilter.processRequest(WicketFilter.java:201)
> [wicket-core-jar-6.16.0.jar:6.16.0]
> at
> org.apache.wicket.protocol.http.WicketFilter.doFilter(WicketFilter.java:282)
> [wicket-core-jar-6.16.0.jar:6.16.0]
> at
> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:241)
> [tomcat-embed-core.jar:7.0.55]
> at
> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:208)
> [tomcat-embed-core.jar:7.0.55]
> at
> org.red5.logging.LoggerContextFilter.doFilter(LoggerContextFilter.java:77)
> [red5-server.jar:na]
> at
> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:241)
> [tomcat-embed-core.jar:7.0.55]
> at
> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:208)
> [tomcat-embed-core.jar:7.0.55]
> at
> org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:220)
> [tomcat-embed-core.jar:7.0.55]
> at
> org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:122)
> [tomcat-embed-core.jar:7.0.55]
> at
> org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:501)
> [tomcat-embed-core.jar:7.0.55]
> at
> org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:171)
> [tomcat-embed-core.jar:7.0.55]
> at
> org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:103)
> [tomcat-embed-core.jar:7.0.55]
> at
> org.apache.catalina.valves.AccessLogValve.invoke(AccessLogValve.java:950)
> [tomcat-embed-core.jar:7.0.55]
> at
> org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:116)
> [tomcat-embed-core.jar:7.0.55]
> at
> org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:408)
> [tomcat-embed-core.jar:7.0.55]
> at
> org.apache.coyote.http11.AbstractHttp11Processor.process(AbstractHttp11Processor.java:1070)
> [tomcat-embed-core.jar:7.0.55]
> at
> org.apache.coyote.AbstractProtocol$AbstractConnectionHandler.process(AbstractProtocol.java:611)
> [tomcat-embed-core.jar:7.0.55]
> at
> org.apache.tomcat.util.net.NioEndpoint$SocketProcessor.doRun(NioEndpoint.java:1736)
> [tomcat-embed-core.jar:7.0.55]
> at
> org.apache.tomcat.util.net.NioEndpoint$SocketProcessor.run(NioEndpoint.java:1695)
> [tomcat-embed-core.jar:7.0.55]
> at
> java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1145)
> [na:1.7.0_65]
> at
> java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:615)
> [na:1.7.0_65]
> at
> org.apache.tomcat.util.threads.TaskThread$WrappingRunnable.run(TaskThread.java:61)
> [tomcat-embed-core.jar:7.0.55]
> at java.lang.Thread.run(Thread.java:745) [na:1.7.0_65]
> DEBUG 09-19 11:47:25.927 o.a.w.u.c.CookieUtils:266
> [http-nio-0.0.0.0-5080-exec-10] - Unable to find Cookie with name=LoggedIn
> and request URI=signin?1-1.IBehaviorListener.1-signin
> DEBUG 09-19 11:47:25.929 o.a.w.f.FeedbackMessages:69
> [http-nio-0.0.0.0-5080-exec-10] - Adding feedback message '[FeedbackMessage
> message = "Invalid password", reporter = signin, level = ERROR]'
> DEBUG 09-19 11:47:25.929 o.a.w.u.c.CookieUtils:266
> [http-nio-0.0.0.0-5080-exec-10] - Unable to find Cookie with name=LoggedIn
> and request URI=signin?1-1.IBehaviorListener.1-signin
> DEBUG 09-19 11:47:25.930 o.a.wicket.Page:871
> [http-nio-0.0.0.0-5080-exec-10] - ending request for page [Page class =
> org.apache.openmeetings.web.pages.auth.SignInPage, id = 1, render count =
> 1], request
> org.apache.wicket.protocol.http.servlet.ServletWebRequest@a6e74b
> DEBUG 09-19 11:47:25.930 o.a.wicket.Page:871
> [http-nio-0.0.0.0-5080-exec-10] - ending request for page [Page class =
> org.apache.openmeetings.web.pages.auth.SignInPage, id = 1, render count =
> 1], request
> org.apache.wicket.protocol.http.servlet.ServletWebRequest@a6e74b
> DEBUG 09-19 11:47:25.930 o.a.wicket.Page:871
> [http-nio-0.0.0.0-5080-exec-10] - ending request for page [Page class =
> org.apache.openmeetings.web.pages.auth.SignInPage, id = 1, render count =
> 1], request
> org.apache.wicket.protocol.http.servlet.ServletWebRequest@a6e74b
> DEBUG 09-19 11:47:25.988
> o.a.w.p.AsynchronousDataStore$PageSavingRunnable:354
> [Wicket-PageSavingThread] - Saving asynchronously: Entry
> [sessionId=2A10AA69C3E771FF51FABD4D26A20559, pageId=1]...
> DEBUG 09-19 11:47:25.988 o.a.w.p.DiskDataStore:186
> [Wicket-PageSavingThread] - Storing data for page with id '1' in session
> with id '2A10AA69C3E771FF51FABD4D26A20559'
> DEBUG 09-19 11:47:25.988 o.a.w.p.PageAccessSynchronizer:195
> [http-nio-0.0.0.0-5080-exec-10] - 'http-nio-0.0.0.0-5080-exec-10' released
> lock to page with id '1'
> DEBUG 09-19 11:47:25.988 o.a.w.p.PageAccessSynchronizer:346
> [http-nio-0.0.0.0-5080-exec-10] - 'http-nio-0.0.0.0-5080-exec-10' notifying
> blocked threads
>
>
>
>
>
>
>
>
>
> And here is my conf file :
>
> #
> # Licensed to the Apache Software Foundation (ASF) under one
> # or more contributor license agreements. See the NOTICE file
> # distributed with this work for additional information
> # regarding copyright ownership. The ASF licenses this file
> # to you under the Apache License, Version 2.0 (the
> # "License"); you may not use this file except in compliance
> # with the License. You may obtain a copy of the License at
> #
> # http://www.apache.org/licenses/LICENSE-2.0
> #
> # Unless required by applicable law or agreed to in writing,
> # software distributed under the License is distributed on an
> # "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
> # KIND, either express or implied. See the License for the
> # specific language governing permissions and limitations
> # under the License.
> #
> #ConfigurationFile for LDAP Auth
> #ConfigKey 'ldap_config_path' must be set in DataBase Configration of OM
> and point to this file
> #o.becherer,14.01.2009
> #LDAP URL
> # This is the URL used to access your LDAP server.
> # if you want to use "ldaps://" links, please be aware that you need to
> import your CA certificate
> # to a java keystore and add the -Djavax.net.ssl.keyStore,
> -Djavax.net.ssl.keyStorePassword,
> # -Djavax.net.ssl.trustStore and -Djavax.net.ssl.trustStorePassword
> parameters to your
> # JAVA_OPT environment
> ldap_conn_host=@IP_of_my_AD
> ldap_conn_port=389
> ldap_conn_secure=false
> # Login distinguished name (DN) for Authentication on LDAP Server - keep
> empty if not required
> # Use full qualified LDAP DN
>
> ldap_admin_dn=CN=adconnect,OU=Comptes,OU=SI,OU=Services,OU=COMPANY,DC=mycompany,DC=priv
> # Loginpass for Authentication on LDAP Server - keep empty if not required
> ldap_passwd=pass_for_user_adconnect
> # base to search for userdata(of user, that wants to login)
> ldap_search_base=DC=mycompany,DC=priv
> # Fieldnames (can differ between Ldap servers)
> ldap_search_query=(uid=%s)
> # the scope of the search might be: OBJECT, ONELEVEL, SUBTREE
> ldap_search_scope=ONELEVEL
> # Ldap auth type(NONE, SEARCHANDBIND, SIMPLEBIND)
> # When using SIMPLEBIND a simple bind is performed on the LDAP server to
> check user authentication
> # When using NONE, the Ldap server is not used for authentication
> ldap_auth_type=SIMPLEBIND
> # userDN format, will be used to bind if ldap_auth_type=SIMPLEBIND
> # might be used to get provisionningDn in case ldap_auth_type=NONE
> ldap_userdn_format=uid=%s,OU=COMPANY,DC=mycompany,DC=priv
> # Ldap provisioning type(NONE, AUTOCREATE, AUTOUPDATE)
> ldap_provisionning=AUTOCREATE
> # Set this to 'true' if you want to use admin_dn to get user attributes
> # If any other value is set, user_dn will be used
> ldap_use_admin_to_get_attrs=true
> # Ldap-password synchronization to OM DB
> # Set this to 'true' if you want OM to synchronize the user Ldap-password
> to OM's internal DB
> # If you want to disable the feature, set this to any other string.
> # Defautl value is 'true'
> ldap_sync_password_to_om=true
> # Ldap user attributes mapping
> # Set the following internal OM user attributes to their corresponding
> Ldap-attribute
> ldap_user_attr_lastname=sn
> ldap_user_attr_firstname=givenName
> ldap_user_attr_mail=mail
> ldap_user_attr_street=streetAddress
> ldap_user_attr_additionalname=description
> ldap_user_attr_fax=facsimileTelephoneNumber
> ldap_user_attr_zip=postalCode
> ldap_user_attr_country=co
> ldap_user_attr_town=l
> ldap_user_attr_phone=telephoneNumber
> # optional, only absolute URLs make sense
> #ldap_user_picture_uri=picture_uri
> # optional
> # the timezone has to match any timezone available in Java, otherwise the
> timezone defined in the value of
> # the conf_key "default.timezone" in OpenMeetings "configurations" table
> #ldap_user_timezone=timezone
> # Ldap ignore upper/lower case, convert all input to lower case
> ldap_use_lower_case=false
>
>
>
> Thanks a lot for your help.
>
> Greg.
>
>
>
>
> 2014-09-18 17:52 GMT+02:00 Maxim Solodovnik <so...@gmail.com>:
>
>> please check this URL:
>> http://kb.juniper.net/InfoCenter/index?page=content&id=KB17098
>> According to it you have "User not found"
>>
>> could you provide more ldap related logs?
>> it might be Admin not found or user entered in login form not found
>> depending on your settings
>>
>> On 18 September 2014 21:43, Grégory Mangeney <ma...@gmail.com> wrote:
>>
>>> Hello, It's me again...
>>> I'm back.
>>> Now I have a new problem to connect to my AD...
>>> In log file it is write : *ERROR ......... Not authenticated*
>>> witch is a quite better message than before but after that it is write : *LdapErr:
>>> DSID-0C090334, comment: AcceptSecurityContext error, data 525, vece\00
>>> at........*
>>>
>>> I try to understand my problem but "AcceptSecurityContext error" seems
>>> to speack about a security problem.
>>> I have set my ldap_conn_secure=false in om_ldap.conf.
>>> I don't understand what could be my problem.
>>>
>>> thanks a lot for your ideas.
>>>
>>> Greg.
>>> 2014-09-18 15:37 GMT+02:00 Grégory Mangeney <ma...@gmail.com>:
>>>
>>>> Ok, I finally understand that I have to put the filename and only the
>>>> filename without */usr/lib/red5/webapps/openmeetings/conf/*
>>>>
>>>> Now I have a new message whitch said me invalid password...
>>>> It's quite better...
>>>> Thank you...
>>>> I could continue to try to set it now.
>>>> bye
>>>>
>>>> Greg.
>>>>
>>>>
>>>>
>>>> 2014-09-18 15:06 GMT+02:00 Maxim Solodovnik <so...@gmail.com>:
>>>>
>>>>> you need to write file name relative to webapps/openmeetings/conf
>>>>> folder
>>>>> in your case *om_ldap.cfg *should be specified
>>>>>
>>>>> On 18 September 2014 20:04, Grégory Mangeney <ma...@gmail.com>
>>>>> wrote:
>>>>>
>>>>>> Thank you very much but I don't understand very well.
>>>>>> I think I put the right information...
>>>>>> Do you want to say that I have to write :
>>>>>> */usr/lib/red5/webapps/openmeetings/conf/* without the filename
>>>>>> *om_ldap.cfg* at the end?
>>>>>> Thanks for your help
>>>>>> Greg
>>>>>>
>>>>>>
>>>>>> 2014-09-18 14:52 GMT+02:00 Maxim Solodovnik <so...@gmail.com>:
>>>>>>
>>>>>>> AFAIK the path should be relative to /usr/lib/red5/webapps/
>>>>>>> openmeetings/conf
>>>>>>> Please change this path
>>>>>>>
>>>>>>> Additionally you can file JIRA issue to add check to the Admin
>>>>>>> screen (so path will be validated on enter)
>>>>>>>
>>>>>>> On 18 September 2014 19:44, Grégory Mangeney <ma...@gmail.com>
>>>>>>> wrote:
>>>>>>>
>>>>>>>> Hello,
>>>>>>>> I have the same problem: I could not connect with AD.
>>>>>>>> I have the domain at the login screen,
>>>>>>>> I am using the 3.0.3.
>>>>>>>> I found this line in my log file :* ERROR 09-18 14:28:33.994
>>>>>>>> o.a.o.l.LdapLoginManagement:147 [http-nio-0.0.0.0-5080-exec-4] - Error on
>>>>>>>> LdapLogin : Configurationdata couldnt be retrieved!*
>>>>>>>>
>>>>>>>> This seem strange because in my LDAP config (in openmeetings
>>>>>>>> Administration/LDAP menu), I put the correct path in the "Config file name"
>>>>>>>> : /usr/lib/red5/webapps/openmeetings/conf/om_ldap.cfg
>>>>>>>>
>>>>>>>> Why is this error appeared : *Configurationdata couldnt be
>>>>>>>> retrieved! *???
>>>>>>>>
>>>>>>>>
>>>>>>>> Thanks a lot
>>>>>>>>
>>>>>>>> Greg
>>>>>>>>
>>>>>>>>
>>>>>>>> 2014-09-17 12:52 GMT+02:00 Maxim Solodovnik <so...@gmail.com>:
>>>>>>>>
>>>>>>>>> great :)
>>>>>>>>>
>>>>>>>>> On 17 September 2014 17:46, Teddy Jayasaputra <
>>>>>>>>> teddy.jayasaputra@ocbcnisp.com> wrote:
>>>>>>>>>
>>>>>>>>>> Dear Maxim,
>>>>>>>>>>
>>>>>>>>>> After close look to console log.
>>>>>>>>>> We found this error :
>>>>>>>>>> ERROR 09-17 17:28:33.278 LdapLoginManagement.java 135070 285
>>>>>>>>>> org.apache.openmeetings.ldap.LdapLoginManagement
>>>>>>>>>> [http-nio-0.0.0.0-5080-exec-6] - User not found in OM DB and
>>>>>>>>>> Provisionning.AUTOCREATE was not set
>>>>>>>>>>
>>>>>>>>>> After we change ldapconfiguration file from
>>>>>>>>>> ldap_provisionning=NONE to AUTOCREATE we can login using AD.
>>>>>>>>>>
>>>>>>>>>> thanks.
>>>>>>>>>>
>>>>>>>>>> Best Regards,
>>>>>>>>>>
>>>>>>>>>>
>>>>>>>>>> -Teddy Jayasaputra-
>>>>>>>>>>
>>>>>>>>>>
>>>>>>>>>> On 9/17/2014 4:25 PM, Maxim Solodovnik wrote:
>>>>>>>>>>
>>>>>>>>>> do you have your AD domain on the login screen?
>>>>>>>>>> are there errors in the log?
>>>>>>>>>> what OM version are you using?
>>>>>>>>>>
>>>>>>>>>> On 17 September 2014 16:02, ARI HENDIAWAN <
>>>>>>>>>> ari.hendiawan@ocbcnisp.com> wrote:
>>>>>>>>>>
>>>>>>>>>>> Dear all,
>>>>>>>>>>> please we need extra information how to integrate openmeetings
>>>>>>>>>>> 3.0.3 with AD?
>>>>>>>>>>> we already setting on ldap.conf and still problem.. if we saw on
>>>>>>>>>>> AD , user that want sign-in openmeetings success, but on login menu
>>>>>>>>>>> openmeetings shown error "invalid password"
>>>>>>>>>>>
>>>>>>>>>>>
>>>>>>>>>>> Tks
>>>>>>>>>>>
>>>>>>>>>>>
>>>>>>>>>>> --
>>>>>>>>>>> Disclaimer :
>>>>>>>>>>> Confidential information may be contained in this message. If
>>>>>>>>>>> you are not the intended recipient, you are strictly prohibited and may be
>>>>>>>>>>> unlawful to use, copy, store, distribute, disclose or communicate any part
>>>>>>>>>>> of it to others and you are obliged to return it immediately to sender or
>>>>>>>>>>> notify us and delete the e-mail and any attachments from your system.
>>>>>>>>>>> Opinions, conclusions and other information in this e-mail that do not
>>>>>>>>>>> relate to the official business of any PT Bank OCBC NISP Tbk shall be
>>>>>>>>>>> understood as neither given nor endorsed by it. No assumption of
>>>>>>>>>>> responsibility or liability whatsoever is undertaken by PT Bank OCBC NISP
>>>>>>>>>>> Tbk in respect of prohibited and unauthorised use by any other person.
>>>>>>>>>>>
>>>>>>>>>>>
>>>>>>>>>>
>>>>>>>>>>
>>>>>>>>>> --
>>>>>>>>>> WBR
>>>>>>>>>> Maxim aka solomax
>>>>>>>>>>
>>>>>>>>>>
>>>>>>>>>>
>>>>>>>>>>
>>>>>>>>>> --
>>>>>>>>>> Disclaimer :
>>>>>>>>>> Confidential information may be contained in this message. If you
>>>>>>>>>> are not the intended recipient, you are strictly prohibited and may be
>>>>>>>>>> unlawful to use, copy, store, distribute, disclose or communicate any part
>>>>>>>>>> of it to others and you are obliged to return it immediately to sender or
>>>>>>>>>> notify us and delete the e-mail and any attachments from your system.
>>>>>>>>>> Opinions, conclusions and other information in this e-mail that do not
>>>>>>>>>> relate to the official business of any PT Bank OCBC NISP Tbk shall be
>>>>>>>>>> understood as neither given nor endorsed by it. No assumption of
>>>>>>>>>> responsibility or liability whatsoever is undertaken by PT Bank OCBC NISP
>>>>>>>>>> Tbk in respect of prohibited and unauthorised use by any other person.
>>>>>>>>>>
>>>>>>>>>
>>>>>>>>>
>>>>>>>>>
>>>>>>>>> --
>>>>>>>>> WBR
>>>>>>>>> Maxim aka solomax
>>>>>>>>>
>>>>>>>>
>>>>>>>>
>>>>>>>
>>>>>>>
>>>>>>> --
>>>>>>> WBR
>>>>>>> Maxim aka solomax
>>>>>>>
>>>>>>
>>>>>>
>>>>>
>>>>>
>>>>> --
>>>>> WBR
>>>>> Maxim aka solomax
>>>>>
>>>>
>>>>
>>>
>>
>>
>> --
>> WBR
>> Maxim aka solomax
>>
>
>
--
WBR
Maxim aka solomax
Re: need info about problem when integration AD
Posted by Grégory Mangeney <ma...@gmail.com>.
Hello.
Thank you for your link.
It appeare that I have a 525 error (user not found).
I think the problem must be in my config file because I'm sure that my user
is good because I use it for an other app witch use it to connect with AD.
As you ask me i give you more line of my log file, after that I would like
to show you my conf file...
Maybe you will find a setting withch is not good!
So here is my log file whene I try to connect :
DEBUG 09-19 11:47:01.337 o.a.o.q.s.MeetingReminderJob:34
[org.springframework.scheduling.quartz.SchedulerFactoryBean#0_Worker-2] -
MeetingReminderJob.execute
DEBUG 09-19 11:47:25.760 o.a.w.p.h.s.ServletWebRequest:189
[http-nio-0.0.0.0-5080-exec-10] - Calculating context relative path from:
context path '/openmeetings', filterPrefix '', uri '/openmeetings/signin'
DEBUG 09-19 11:47:25.761 o.a.w.p.PageAccessSynchronizer:100
[http-nio-0.0.0.0-5080-exec-10] - 'http-nio-0.0.0.0-5080-exec-10'
attempting to acquire lock to page with id '1'
DEBUG 09-19 11:47:25.761 o.a.w.p.PageAccessSynchronizer:125
[http-nio-0.0.0.0-5080-exec-10] - http-nio-0.0.0.0-5080-exec-10 acquired
lock to page 1
DEBUG 09-19 11:47:25.762 o.a.o.d.d.s.SessiondataDao:68
[http-nio-0.0.0.0-5080-exec-10] - startsession :: startsession
DEBUG 09-19 11:47:25.763 o.a.o.u.c.ManageCryptStyle:32
[http-nio-0.0.0.0-5080-exec-10] - getInstanceOfCrypt::
configKeyCryptClassName:
org.apache.openmeetings.util.crypt.MD5Implementation
DEBUG 09-19 11:47:25.788 o.a.o.l.LdapLoginManagement:165
[http-nio-0.0.0.0-5080-exec-10] - LdapLoginmanagement.doLdapLogin
ERROR 09-19 11:47:25.924 o.a.o.l.LdapLoginManagement:351
[http-nio-0.0.0.0-5080-exec-10] - Not authenticated.
org.apache.directory.api.ldap.model.exception.LdapAuthenticationException:
80090308: LdapErr: DSID-0C090334, comment: AcceptSecurityContext error,
data 525, vece\00
at
org.apache.directory.api.ldap.model.message.ResultCodeEnum.processResponse(ResultCodeEnum.java:2021)
~[api-all-jar-1.0.0-M23.jar:1.0.0-M23]
at
org.apache.directory.ldap.client.api.AbstractLdapConnection.bind(AbstractLdapConnection.java:129)
~[api-all-jar-1.0.0-M23.jar:1.0.0-M23]
at
org.apache.openmeetings.ldap.LdapLoginManagement.login(LdapLoginManagement.java:275)
~[openmeetings-core-3.0.3-RELEASE.jar:na]
at org.apache.openmeetings.web.app.WebSession.signIn(WebSession.java:257)
[openmeetings-web-3.0.3-RELEASE.jar:na]
at
org.apache.openmeetings.web.pages.auth.SignInDialog.onSubmit(SignInDialog.java:190)
[openmeetings-web-3.0.3-RELEASE.jar:na]
at
com.googlecode.wicket.jquery.ui.widget.dialog.AbstractFormDialog$DialogFormSubmitter.onSubmit(AbstractFormDialog.java:279)
[wicket-jquery-ui-jar-6.16.0.jar:na]
at org.apache.wicket.markup.html.form.Form.delegateSubmit(Form.java:1266)
[wicket-core-jar-6.16.0.jar:6.16.0]
at org.apache.wicket.markup.html.form.Form.process(Form.java:938)
[wicket-core-jar-6.16.0.jar:6.16.0]
at
org.apache.wicket.markup.html.form.StatelessForm.process(StatelessForm.java:96)
[wicket-core-jar-6.16.0.jar:6.16.0]
at org.apache.wicket.markup.html.form.Form.onFormSubmitted(Form.java:770)
[wicket-core-jar-6.16.0.jar:6.16.0]
at
com.googlecode.wicket.jquery.ui.widget.dialog.AbstractFormDialog.internalOnClick(AbstractFormDialog.java:200)
[wicket-jquery-ui-jar-6.16.0.jar:na]
at
com.googlecode.wicket.jquery.ui.widget.dialog.AbstractDialog$1.onClick(AbstractDialog.java:439)
[wicket-jquery-ui-jar-6.16.0.jar:na]
at
com.googlecode.wicket.jquery.ui.widget.dialog.DialogBehavior.onAjax(DialogBehavior.java:175)
[wicket-jquery-ui-jar-6.16.0.jar:na]
at
com.googlecode.wicket.jquery.core.ajax.JQueryAjaxBehavior.respond(JQueryAjaxBehavior.java:171)
[wicket-jquery-ui-core-jar-6.16.0.jar:na]
at
org.apache.wicket.ajax.AbstractDefaultAjaxBehavior.onRequest(AbstractDefaultAjaxBehavior.java:633)
[wicket-core-jar-6.16.0.jar:6.16.0]
at sun.reflect.GeneratedMethodAccessor91.invoke(Unknown Source) ~[na:na]
at
sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
~[na:1.7.0_65]
at java.lang.reflect.Method.invoke(Method.java:606) ~[na:1.7.0_65]
at
org.apache.wicket.RequestListenerInterface.internalInvoke(RequestListenerInterface.java:258)
[wicket-core-jar-6.16.0.jar:6.16.0]
at
org.apache.wicket.RequestListenerInterface.invoke(RequestListenerInterface.java:241)
[wicket-core-jar-6.16.0.jar:6.16.0]
at
org.apache.wicket.core.request.handler.ListenerInterfaceRequestHandler.invokeListener(ListenerInterfaceRequestHandler.java:250)
[wicket-core-jar-6.16.0.jar:6.16.0]
at
org.apache.wicket.core.request.handler.ListenerInterfaceRequestHandler.respond(ListenerInterfaceRequestHandler.java:236)
[wicket-core-jar-6.16.0.jar:6.16.0]
at
org.apache.wicket.request.cycle.RequestCycle$HandlerExecutor.respond(RequestCycle.java:862)
[wicket-core-jar-6.16.0.jar:6.16.0]
at
org.apache.wicket.request.RequestHandlerStack.execute(RequestHandlerStack.java:64)
[wicket-request-jar-6.16.0.jar:6.16.0]
at
org.apache.wicket.request.cycle.RequestCycle.execute(RequestCycle.java:261)
[wicket-core-jar-6.16.0.jar:6.16.0]
at
org.apache.wicket.request.cycle.RequestCycle.processRequest(RequestCycle.java:218)
[wicket-core-jar-6.16.0.jar:6.16.0]
at
org.apache.wicket.request.cycle.RequestCycle.processRequestAndDetach(RequestCycle.java:289)
[wicket-core-jar-6.16.0.jar:6.16.0]
at
org.apache.wicket.protocol.ws.AbstractUpgradeFilter.processRequestCycle(AbstractUpgradeFilter.java:59)
[wicket-native-websocket-core-jar-6.16.0.jar:6.16.0]
at
org.apache.wicket.protocol.http.WicketFilter.processRequest(WicketFilter.java:201)
[wicket-core-jar-6.16.0.jar:6.16.0]
at
org.apache.wicket.protocol.http.WicketFilter.doFilter(WicketFilter.java:282)
[wicket-core-jar-6.16.0.jar:6.16.0]
at
org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:241)
[tomcat-embed-core.jar:7.0.55]
at
org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:208)
[tomcat-embed-core.jar:7.0.55]
at
org.red5.logging.LoggerContextFilter.doFilter(LoggerContextFilter.java:77)
[red5-server.jar:na]
at
org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:241)
[tomcat-embed-core.jar:7.0.55]
at
org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:208)
[tomcat-embed-core.jar:7.0.55]
at
org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:220)
[tomcat-embed-core.jar:7.0.55]
at
org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:122)
[tomcat-embed-core.jar:7.0.55]
at
org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:501)
[tomcat-embed-core.jar:7.0.55]
at
org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:171)
[tomcat-embed-core.jar:7.0.55]
at
org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:103)
[tomcat-embed-core.jar:7.0.55]
at
org.apache.catalina.valves.AccessLogValve.invoke(AccessLogValve.java:950)
[tomcat-embed-core.jar:7.0.55]
at
org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:116)
[tomcat-embed-core.jar:7.0.55]
at
org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:408)
[tomcat-embed-core.jar:7.0.55]
at
org.apache.coyote.http11.AbstractHttp11Processor.process(AbstractHttp11Processor.java:1070)
[tomcat-embed-core.jar:7.0.55]
at
org.apache.coyote.AbstractProtocol$AbstractConnectionHandler.process(AbstractProtocol.java:611)
[tomcat-embed-core.jar:7.0.55]
at
org.apache.tomcat.util.net.NioEndpoint$SocketProcessor.doRun(NioEndpoint.java:1736)
[tomcat-embed-core.jar:7.0.55]
at
org.apache.tomcat.util.net.NioEndpoint$SocketProcessor.run(NioEndpoint.java:1695)
[tomcat-embed-core.jar:7.0.55]
at
java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1145)
[na:1.7.0_65]
at
java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:615)
[na:1.7.0_65]
at
org.apache.tomcat.util.threads.TaskThread$WrappingRunnable.run(TaskThread.java:61)
[tomcat-embed-core.jar:7.0.55]
at java.lang.Thread.run(Thread.java:745) [na:1.7.0_65]
DEBUG 09-19 11:47:25.927 o.a.w.u.c.CookieUtils:266
[http-nio-0.0.0.0-5080-exec-10] - Unable to find Cookie with name=LoggedIn
and request URI=signin?1-1.IBehaviorListener.1-signin
DEBUG 09-19 11:47:25.929 o.a.w.f.FeedbackMessages:69
[http-nio-0.0.0.0-5080-exec-10] - Adding feedback message '[FeedbackMessage
message = "Invalid password", reporter = signin, level = ERROR]'
DEBUG 09-19 11:47:25.929 o.a.w.u.c.CookieUtils:266
[http-nio-0.0.0.0-5080-exec-10] - Unable to find Cookie with name=LoggedIn
and request URI=signin?1-1.IBehaviorListener.1-signin
DEBUG 09-19 11:47:25.930 o.a.wicket.Page:871
[http-nio-0.0.0.0-5080-exec-10] - ending request for page [Page class =
org.apache.openmeetings.web.pages.auth.SignInPage, id = 1, render count =
1], request org.apache.wicket.protocol.http.servlet.ServletWebRequest@a6e74b
DEBUG 09-19 11:47:25.930 o.a.wicket.Page:871
[http-nio-0.0.0.0-5080-exec-10] - ending request for page [Page class =
org.apache.openmeetings.web.pages.auth.SignInPage, id = 1, render count =
1], request org.apache.wicket.protocol.http.servlet.ServletWebRequest@a6e74b
DEBUG 09-19 11:47:25.930 o.a.wicket.Page:871
[http-nio-0.0.0.0-5080-exec-10] - ending request for page [Page class =
org.apache.openmeetings.web.pages.auth.SignInPage, id = 1, render count =
1], request org.apache.wicket.protocol.http.servlet.ServletWebRequest@a6e74b
DEBUG 09-19 11:47:25.988
o.a.w.p.AsynchronousDataStore$PageSavingRunnable:354
[Wicket-PageSavingThread] - Saving asynchronously: Entry
[sessionId=2A10AA69C3E771FF51FABD4D26A20559, pageId=1]...
DEBUG 09-19 11:47:25.988 o.a.w.p.DiskDataStore:186
[Wicket-PageSavingThread] - Storing data for page with id '1' in session
with id '2A10AA69C3E771FF51FABD4D26A20559'
DEBUG 09-19 11:47:25.988 o.a.w.p.PageAccessSynchronizer:195
[http-nio-0.0.0.0-5080-exec-10] - 'http-nio-0.0.0.0-5080-exec-10' released
lock to page with id '1'
DEBUG 09-19 11:47:25.988 o.a.w.p.PageAccessSynchronizer:346
[http-nio-0.0.0.0-5080-exec-10] - 'http-nio-0.0.0.0-5080-exec-10' notifying
blocked threads
And here is my conf file :
#
# Licensed to the Apache Software Foundation (ASF) under one
# or more contributor license agreements. See the NOTICE file
# distributed with this work for additional information
# regarding copyright ownership. The ASF licenses this file
# to you under the Apache License, Version 2.0 (the
# "License"); you may not use this file except in compliance
# with the License. You may obtain a copy of the License at
#
# http://www.apache.org/licenses/LICENSE-2.0
#
# Unless required by applicable law or agreed to in writing,
# software distributed under the License is distributed on an
# "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
# KIND, either express or implied. See the License for the
# specific language governing permissions and limitations
# under the License.
#
#ConfigurationFile for LDAP Auth
#ConfigKey 'ldap_config_path' must be set in DataBase Configration of OM
and point to this file
#o.becherer,14.01.2009
#LDAP URL
# This is the URL used to access your LDAP server.
# if you want to use "ldaps://" links, please be aware that you need to
import your CA certificate
# to a java keystore and add the -Djavax.net.ssl.keyStore,
-Djavax.net.ssl.keyStorePassword,
# -Djavax.net.ssl.trustStore and -Djavax.net.ssl.trustStorePassword
parameters to your
# JAVA_OPT environment
ldap_conn_host=@IP_of_my_AD
ldap_conn_port=389
ldap_conn_secure=false
# Login distinguished name (DN) for Authentication on LDAP Server - keep
empty if not required
# Use full qualified LDAP DN
ldap_admin_dn=CN=adconnect,OU=Comptes,OU=SI,OU=Services,OU=COMPANY,DC=mycompany,DC=priv
# Loginpass for Authentication on LDAP Server - keep empty if not required
ldap_passwd=pass_for_user_adconnect
# base to search for userdata(of user, that wants to login)
ldap_search_base=DC=mycompany,DC=priv
# Fieldnames (can differ between Ldap servers)
ldap_search_query=(uid=%s)
# the scope of the search might be: OBJECT, ONELEVEL, SUBTREE
ldap_search_scope=ONELEVEL
# Ldap auth type(NONE, SEARCHANDBIND, SIMPLEBIND)
# When using SIMPLEBIND a simple bind is performed on the LDAP server to
check user authentication
# When using NONE, the Ldap server is not used for authentication
ldap_auth_type=SIMPLEBIND
# userDN format, will be used to bind if ldap_auth_type=SIMPLEBIND
# might be used to get provisionningDn in case ldap_auth_type=NONE
ldap_userdn_format=uid=%s,OU=COMPANY,DC=mycompany,DC=priv
# Ldap provisioning type(NONE, AUTOCREATE, AUTOUPDATE)
ldap_provisionning=AUTOCREATE
# Set this to 'true' if you want to use admin_dn to get user attributes
# If any other value is set, user_dn will be used
ldap_use_admin_to_get_attrs=true
# Ldap-password synchronization to OM DB
# Set this to 'true' if you want OM to synchronize the user Ldap-password
to OM's internal DB
# If you want to disable the feature, set this to any other string.
# Defautl value is 'true'
ldap_sync_password_to_om=true
# Ldap user attributes mapping
# Set the following internal OM user attributes to their corresponding
Ldap-attribute
ldap_user_attr_lastname=sn
ldap_user_attr_firstname=givenName
ldap_user_attr_mail=mail
ldap_user_attr_street=streetAddress
ldap_user_attr_additionalname=description
ldap_user_attr_fax=facsimileTelephoneNumber
ldap_user_attr_zip=postalCode
ldap_user_attr_country=co
ldap_user_attr_town=l
ldap_user_attr_phone=telephoneNumber
# optional, only absolute URLs make sense
#ldap_user_picture_uri=picture_uri
# optional
# the timezone has to match any timezone available in Java, otherwise the
timezone defined in the value of
# the conf_key "default.timezone" in OpenMeetings "configurations" table
#ldap_user_timezone=timezone
# Ldap ignore upper/lower case, convert all input to lower case
ldap_use_lower_case=false
Thanks a lot for your help.
Greg.
2014-09-18 17:52 GMT+02:00 Maxim Solodovnik <so...@gmail.com>:
> please check this URL:
> http://kb.juniper.net/InfoCenter/index?page=content&id=KB17098
> According to it you have "User not found"
>
> could you provide more ldap related logs?
> it might be Admin not found or user entered in login form not found
> depending on your settings
>
> On 18 September 2014 21:43, Grégory Mangeney <ma...@gmail.com> wrote:
>
>> Hello, It's me again...
>> I'm back.
>> Now I have a new problem to connect to my AD...
>> In log file it is write : *ERROR ......... Not authenticated*
>> witch is a quite better message than before but after that it is write : *LdapErr:
>> DSID-0C090334, comment: AcceptSecurityContext error, data 525, vece\00
>> at........*
>>
>> I try to understand my problem but "AcceptSecurityContext error" seems to
>> speack about a security problem.
>> I have set my ldap_conn_secure=false in om_ldap.conf.
>> I don't understand what could be my problem.
>>
>> thanks a lot for your ideas.
>>
>> Greg.
>> 2014-09-18 15:37 GMT+02:00 Grégory Mangeney <ma...@gmail.com>:
>>
>>> Ok, I finally understand that I have to put the filename and only the
>>> filename without */usr/lib/red5/webapps/openmeetings/conf/*
>>>
>>> Now I have a new message whitch said me invalid password...
>>> It's quite better...
>>> Thank you...
>>> I could continue to try to set it now.
>>> bye
>>>
>>> Greg.
>>>
>>>
>>>
>>> 2014-09-18 15:06 GMT+02:00 Maxim Solodovnik <so...@gmail.com>:
>>>
>>>> you need to write file name relative to webapps/openmeetings/conf
>>>> folder
>>>> in your case *om_ldap.cfg *should be specified
>>>>
>>>> On 18 September 2014 20:04, Grégory Mangeney <ma...@gmail.com>
>>>> wrote:
>>>>
>>>>> Thank you very much but I don't understand very well.
>>>>> I think I put the right information...
>>>>> Do you want to say that I have to write :
>>>>> */usr/lib/red5/webapps/openmeetings/conf/* without the filename
>>>>> *om_ldap.cfg* at the end?
>>>>> Thanks for your help
>>>>> Greg
>>>>>
>>>>>
>>>>> 2014-09-18 14:52 GMT+02:00 Maxim Solodovnik <so...@gmail.com>:
>>>>>
>>>>>> AFAIK the path should be relative to /usr/lib/red5/webapps/
>>>>>> openmeetings/conf
>>>>>> Please change this path
>>>>>>
>>>>>> Additionally you can file JIRA issue to add check to the Admin screen
>>>>>> (so path will be validated on enter)
>>>>>>
>>>>>> On 18 September 2014 19:44, Grégory Mangeney <ma...@gmail.com>
>>>>>> wrote:
>>>>>>
>>>>>>> Hello,
>>>>>>> I have the same problem: I could not connect with AD.
>>>>>>> I have the domain at the login screen,
>>>>>>> I am using the 3.0.3.
>>>>>>> I found this line in my log file :* ERROR 09-18 14:28:33.994
>>>>>>> o.a.o.l.LdapLoginManagement:147 [http-nio-0.0.0.0-5080-exec-4] - Error on
>>>>>>> LdapLogin : Configurationdata couldnt be retrieved!*
>>>>>>>
>>>>>>> This seem strange because in my LDAP config (in openmeetings
>>>>>>> Administration/LDAP menu), I put the correct path in the "Config file name"
>>>>>>> : /usr/lib/red5/webapps/openmeetings/conf/om_ldap.cfg
>>>>>>>
>>>>>>> Why is this error appeared : *Configurationdata couldnt be
>>>>>>> retrieved! *???
>>>>>>>
>>>>>>>
>>>>>>> Thanks a lot
>>>>>>>
>>>>>>> Greg
>>>>>>>
>>>>>>>
>>>>>>> 2014-09-17 12:52 GMT+02:00 Maxim Solodovnik <so...@gmail.com>:
>>>>>>>
>>>>>>>> great :)
>>>>>>>>
>>>>>>>> On 17 September 2014 17:46, Teddy Jayasaputra <
>>>>>>>> teddy.jayasaputra@ocbcnisp.com> wrote:
>>>>>>>>
>>>>>>>>> Dear Maxim,
>>>>>>>>>
>>>>>>>>> After close look to console log.
>>>>>>>>> We found this error :
>>>>>>>>> ERROR 09-17 17:28:33.278 LdapLoginManagement.java 135070 285
>>>>>>>>> org.apache.openmeetings.ldap.LdapLoginManagement
>>>>>>>>> [http-nio-0.0.0.0-5080-exec-6] - User not found in OM DB and
>>>>>>>>> Provisionning.AUTOCREATE was not set
>>>>>>>>>
>>>>>>>>> After we change ldapconfiguration file from
>>>>>>>>> ldap_provisionning=NONE to AUTOCREATE we can login using AD.
>>>>>>>>>
>>>>>>>>> thanks.
>>>>>>>>>
>>>>>>>>> Best Regards,
>>>>>>>>>
>>>>>>>>>
>>>>>>>>> -Teddy Jayasaputra-
>>>>>>>>>
>>>>>>>>>
>>>>>>>>> On 9/17/2014 4:25 PM, Maxim Solodovnik wrote:
>>>>>>>>>
>>>>>>>>> do you have your AD domain on the login screen?
>>>>>>>>> are there errors in the log?
>>>>>>>>> what OM version are you using?
>>>>>>>>>
>>>>>>>>> On 17 September 2014 16:02, ARI HENDIAWAN <
>>>>>>>>> ari.hendiawan@ocbcnisp.com> wrote:
>>>>>>>>>
>>>>>>>>>> Dear all,
>>>>>>>>>> please we need extra information how to integrate openmeetings
>>>>>>>>>> 3.0.3 with AD?
>>>>>>>>>> we already setting on ldap.conf and still problem.. if we saw on
>>>>>>>>>> AD , user that want sign-in openmeetings success, but on login menu
>>>>>>>>>> openmeetings shown error "invalid password"
>>>>>>>>>>
>>>>>>>>>>
>>>>>>>>>> Tks
>>>>>>>>>>
>>>>>>>>>>
>>>>>>>>>> --
>>>>>>>>>> Disclaimer :
>>>>>>>>>> Confidential information may be contained in this message. If you
>>>>>>>>>> are not the intended recipient, you are strictly prohibited and may be
>>>>>>>>>> unlawful to use, copy, store, distribute, disclose or communicate any part
>>>>>>>>>> of it to others and you are obliged to return it immediately to sender or
>>>>>>>>>> notify us and delete the e-mail and any attachments from your system.
>>>>>>>>>> Opinions, conclusions and other information in this e-mail that do not
>>>>>>>>>> relate to the official business of any PT Bank OCBC NISP Tbk shall be
>>>>>>>>>> understood as neither given nor endorsed by it. No assumption of
>>>>>>>>>> responsibility or liability whatsoever is undertaken by PT Bank OCBC NISP
>>>>>>>>>> Tbk in respect of prohibited and unauthorised use by any other person.
>>>>>>>>>>
>>>>>>>>>>
>>>>>>>>>
>>>>>>>>>
>>>>>>>>> --
>>>>>>>>> WBR
>>>>>>>>> Maxim aka solomax
>>>>>>>>>
>>>>>>>>>
>>>>>>>>>
>>>>>>>>>
>>>>>>>>> --
>>>>>>>>> Disclaimer :
>>>>>>>>> Confidential information may be contained in this message. If you
>>>>>>>>> are not the intended recipient, you are strictly prohibited and may be
>>>>>>>>> unlawful to use, copy, store, distribute, disclose or communicate any part
>>>>>>>>> of it to others and you are obliged to return it immediately to sender or
>>>>>>>>> notify us and delete the e-mail and any attachments from your system.
>>>>>>>>> Opinions, conclusions and other information in this e-mail that do not
>>>>>>>>> relate to the official business of any PT Bank OCBC NISP Tbk shall be
>>>>>>>>> understood as neither given nor endorsed by it. No assumption of
>>>>>>>>> responsibility or liability whatsoever is undertaken by PT Bank OCBC NISP
>>>>>>>>> Tbk in respect of prohibited and unauthorised use by any other person.
>>>>>>>>>
>>>>>>>>
>>>>>>>>
>>>>>>>>
>>>>>>>> --
>>>>>>>> WBR
>>>>>>>> Maxim aka solomax
>>>>>>>>
>>>>>>>
>>>>>>>
>>>>>>
>>>>>>
>>>>>> --
>>>>>> WBR
>>>>>> Maxim aka solomax
>>>>>>
>>>>>
>>>>>
>>>>
>>>>
>>>> --
>>>> WBR
>>>> Maxim aka solomax
>>>>
>>>
>>>
>>
>
>
> --
> WBR
> Maxim aka solomax
>
Re: need info about problem when integration AD
Posted by Maxim Solodovnik <so...@gmail.com>.
please check this URL:
http://kb.juniper.net/InfoCenter/index?page=content&id=KB17098
According to it you have "User not found"
could you provide more ldap related logs?
it might be Admin not found or user entered in login form not found
depending on your settings
On 18 September 2014 21:43, Grégory Mangeney <ma...@gmail.com> wrote:
> Hello, It's me again...
> I'm back.
> Now I have a new problem to connect to my AD...
> In log file it is write : *ERROR ......... Not authenticated*
> witch is a quite better message than before but after that it is write : *LdapErr:
> DSID-0C090334, comment: AcceptSecurityContext error, data 525, vece\00
> at........*
>
> I try to understand my problem but "AcceptSecurityContext error" seems to
> speack about a security problem.
> I have set my ldap_conn_secure=false in om_ldap.conf.
> I don't understand what could be my problem.
>
> thanks a lot for your ideas.
>
> Greg.
> 2014-09-18 15:37 GMT+02:00 Grégory Mangeney <ma...@gmail.com>:
>
>> Ok, I finally understand that I have to put the filename and only the
>> filename without */usr/lib/red5/webapps/openmeetings/conf/*
>>
>> Now I have a new message whitch said me invalid password...
>> It's quite better...
>> Thank you...
>> I could continue to try to set it now.
>> bye
>>
>> Greg.
>>
>>
>>
>> 2014-09-18 15:06 GMT+02:00 Maxim Solodovnik <so...@gmail.com>:
>>
>>> you need to write file name relative to webapps/openmeetings/conf folder
>>> in your case *om_ldap.cfg *should be specified
>>>
>>> On 18 September 2014 20:04, Grégory Mangeney <ma...@gmail.com> wrote:
>>>
>>>> Thank you very much but I don't understand very well.
>>>> I think I put the right information...
>>>> Do you want to say that I have to write :
>>>> */usr/lib/red5/webapps/openmeetings/conf/* without the filename
>>>> *om_ldap.cfg* at the end?
>>>> Thanks for your help
>>>> Greg
>>>>
>>>>
>>>> 2014-09-18 14:52 GMT+02:00 Maxim Solodovnik <so...@gmail.com>:
>>>>
>>>>> AFAIK the path should be relative to /usr/lib/red5/webapps/
>>>>> openmeetings/conf
>>>>> Please change this path
>>>>>
>>>>> Additionally you can file JIRA issue to add check to the Admin screen
>>>>> (so path will be validated on enter)
>>>>>
>>>>> On 18 September 2014 19:44, Grégory Mangeney <ma...@gmail.com>
>>>>> wrote:
>>>>>
>>>>>> Hello,
>>>>>> I have the same problem: I could not connect with AD.
>>>>>> I have the domain at the login screen,
>>>>>> I am using the 3.0.3.
>>>>>> I found this line in my log file :* ERROR 09-18 14:28:33.994
>>>>>> o.a.o.l.LdapLoginManagement:147 [http-nio-0.0.0.0-5080-exec-4] - Error on
>>>>>> LdapLogin : Configurationdata couldnt be retrieved!*
>>>>>>
>>>>>> This seem strange because in my LDAP config (in openmeetings
>>>>>> Administration/LDAP menu), I put the correct path in the "Config file name"
>>>>>> : /usr/lib/red5/webapps/openmeetings/conf/om_ldap.cfg
>>>>>>
>>>>>> Why is this error appeared : *Configurationdata couldnt be
>>>>>> retrieved! *???
>>>>>>
>>>>>>
>>>>>> Thanks a lot
>>>>>>
>>>>>> Greg
>>>>>>
>>>>>>
>>>>>> 2014-09-17 12:52 GMT+02:00 Maxim Solodovnik <so...@gmail.com>:
>>>>>>
>>>>>>> great :)
>>>>>>>
>>>>>>> On 17 September 2014 17:46, Teddy Jayasaputra <
>>>>>>> teddy.jayasaputra@ocbcnisp.com> wrote:
>>>>>>>
>>>>>>>> Dear Maxim,
>>>>>>>>
>>>>>>>> After close look to console log.
>>>>>>>> We found this error :
>>>>>>>> ERROR 09-17 17:28:33.278 LdapLoginManagement.java 135070 285
>>>>>>>> org.apache.openmeetings.ldap.LdapLoginManagement
>>>>>>>> [http-nio-0.0.0.0-5080-exec-6] - User not found in OM DB and
>>>>>>>> Provisionning.AUTOCREATE was not set
>>>>>>>>
>>>>>>>> After we change ldapconfiguration file from ldap_provisionning=NONE
>>>>>>>> to AUTOCREATE we can login using AD.
>>>>>>>>
>>>>>>>> thanks.
>>>>>>>>
>>>>>>>> Best Regards,
>>>>>>>>
>>>>>>>>
>>>>>>>> -Teddy Jayasaputra-
>>>>>>>>
>>>>>>>>
>>>>>>>> On 9/17/2014 4:25 PM, Maxim Solodovnik wrote:
>>>>>>>>
>>>>>>>> do you have your AD domain on the login screen?
>>>>>>>> are there errors in the log?
>>>>>>>> what OM version are you using?
>>>>>>>>
>>>>>>>> On 17 September 2014 16:02, ARI HENDIAWAN <
>>>>>>>> ari.hendiawan@ocbcnisp.com> wrote:
>>>>>>>>
>>>>>>>>> Dear all,
>>>>>>>>> please we need extra information how to integrate openmeetings
>>>>>>>>> 3.0.3 with AD?
>>>>>>>>> we already setting on ldap.conf and still problem.. if we saw on
>>>>>>>>> AD , user that want sign-in openmeetings success, but on login menu
>>>>>>>>> openmeetings shown error "invalid password"
>>>>>>>>>
>>>>>>>>>
>>>>>>>>> Tks
>>>>>>>>>
>>>>>>>>>
>>>>>>>>> --
>>>>>>>>> Disclaimer :
>>>>>>>>> Confidential information may be contained in this message. If you
>>>>>>>>> are not the intended recipient, you are strictly prohibited and may be
>>>>>>>>> unlawful to use, copy, store, distribute, disclose or communicate any part
>>>>>>>>> of it to others and you are obliged to return it immediately to sender or
>>>>>>>>> notify us and delete the e-mail and any attachments from your system.
>>>>>>>>> Opinions, conclusions and other information in this e-mail that do not
>>>>>>>>> relate to the official business of any PT Bank OCBC NISP Tbk shall be
>>>>>>>>> understood as neither given nor endorsed by it. No assumption of
>>>>>>>>> responsibility or liability whatsoever is undertaken by PT Bank OCBC NISP
>>>>>>>>> Tbk in respect of prohibited and unauthorised use by any other person.
>>>>>>>>>
>>>>>>>>>
>>>>>>>>
>>>>>>>>
>>>>>>>> --
>>>>>>>> WBR
>>>>>>>> Maxim aka solomax
>>>>>>>>
>>>>>>>>
>>>>>>>>
>>>>>>>>
>>>>>>>> --
>>>>>>>> Disclaimer :
>>>>>>>> Confidential information may be contained in this message. If you
>>>>>>>> are not the intended recipient, you are strictly prohibited and may be
>>>>>>>> unlawful to use, copy, store, distribute, disclose or communicate any part
>>>>>>>> of it to others and you are obliged to return it immediately to sender or
>>>>>>>> notify us and delete the e-mail and any attachments from your system.
>>>>>>>> Opinions, conclusions and other information in this e-mail that do not
>>>>>>>> relate to the official business of any PT Bank OCBC NISP Tbk shall be
>>>>>>>> understood as neither given nor endorsed by it. No assumption of
>>>>>>>> responsibility or liability whatsoever is undertaken by PT Bank OCBC NISP
>>>>>>>> Tbk in respect of prohibited and unauthorised use by any other person.
>>>>>>>>
>>>>>>>
>>>>>>>
>>>>>>>
>>>>>>> --
>>>>>>> WBR
>>>>>>> Maxim aka solomax
>>>>>>>
>>>>>>
>>>>>>
>>>>>
>>>>>
>>>>> --
>>>>> WBR
>>>>> Maxim aka solomax
>>>>>
>>>>
>>>>
>>>
>>>
>>> --
>>> WBR
>>> Maxim aka solomax
>>>
>>
>>
>
--
WBR
Maxim aka solomax
Re: need info about problem when integration AD
Posted by Grégory Mangeney <ma...@gmail.com>.
Hello, It's me again...
I'm back.
Now I have a new problem to connect to my AD...
In log file it is write : *ERROR ......... Not authenticated*
witch is a quite better message than before but after that it is write
: *LdapErr:
DSID-0C090334, comment: AcceptSecurityContext error, data 525, vece\00
at........*
I try to understand my problem but "AcceptSecurityContext error" seems to
speack about a security problem.
I have set my ldap_conn_secure=false in om_ldap.conf.
I don't understand what could be my problem.
thanks a lot for your ideas.
Greg.
2014-09-18 15:37 GMT+02:00 Grégory Mangeney <ma...@gmail.com>:
> Ok, I finally understand that I have to put the filename and only the
> filename without */usr/lib/red5/webapps/openmeetings/conf/*
>
> Now I have a new message whitch said me invalid password...
> It's quite better...
> Thank you...
> I could continue to try to set it now.
> bye
>
> Greg.
>
>
>
> 2014-09-18 15:06 GMT+02:00 Maxim Solodovnik <so...@gmail.com>:
>
>> you need to write file name relative to webapps/openmeetings/conf folder
>> in your case *om_ldap.cfg *should be specified
>>
>> On 18 September 2014 20:04, Grégory Mangeney <ma...@gmail.com> wrote:
>>
>>> Thank you very much but I don't understand very well.
>>> I think I put the right information...
>>> Do you want to say that I have to write :
>>> */usr/lib/red5/webapps/openmeetings/conf/* without the filename
>>> *om_ldap.cfg* at the end?
>>> Thanks for your help
>>> Greg
>>>
>>>
>>> 2014-09-18 14:52 GMT+02:00 Maxim Solodovnik <so...@gmail.com>:
>>>
>>>> AFAIK the path should be relative to /usr/lib/red5/webapps/
>>>> openmeetings/conf
>>>> Please change this path
>>>>
>>>> Additionally you can file JIRA issue to add check to the Admin screen
>>>> (so path will be validated on enter)
>>>>
>>>> On 18 September 2014 19:44, Grégory Mangeney <ma...@gmail.com>
>>>> wrote:
>>>>
>>>>> Hello,
>>>>> I have the same problem: I could not connect with AD.
>>>>> I have the domain at the login screen,
>>>>> I am using the 3.0.3.
>>>>> I found this line in my log file :* ERROR 09-18 14:28:33.994
>>>>> o.a.o.l.LdapLoginManagement:147 [http-nio-0.0.0.0-5080-exec-4] - Error on
>>>>> LdapLogin : Configurationdata couldnt be retrieved!*
>>>>>
>>>>> This seem strange because in my LDAP config (in openmeetings
>>>>> Administration/LDAP menu), I put the correct path in the "Config file name"
>>>>> : /usr/lib/red5/webapps/openmeetings/conf/om_ldap.cfg
>>>>>
>>>>> Why is this error appeared : *Configurationdata couldnt be
>>>>> retrieved! *???
>>>>>
>>>>>
>>>>> Thanks a lot
>>>>>
>>>>> Greg
>>>>>
>>>>>
>>>>> 2014-09-17 12:52 GMT+02:00 Maxim Solodovnik <so...@gmail.com>:
>>>>>
>>>>>> great :)
>>>>>>
>>>>>> On 17 September 2014 17:46, Teddy Jayasaputra <
>>>>>> teddy.jayasaputra@ocbcnisp.com> wrote:
>>>>>>
>>>>>>> Dear Maxim,
>>>>>>>
>>>>>>> After close look to console log.
>>>>>>> We found this error :
>>>>>>> ERROR 09-17 17:28:33.278 LdapLoginManagement.java 135070 285
>>>>>>> org.apache.openmeetings.ldap.LdapLoginManagement
>>>>>>> [http-nio-0.0.0.0-5080-exec-6] - User not found in OM DB and
>>>>>>> Provisionning.AUTOCREATE was not set
>>>>>>>
>>>>>>> After we change ldapconfiguration file from ldap_provisionning=NONE
>>>>>>> to AUTOCREATE we can login using AD.
>>>>>>>
>>>>>>> thanks.
>>>>>>>
>>>>>>> Best Regards,
>>>>>>>
>>>>>>>
>>>>>>> -Teddy Jayasaputra-
>>>>>>>
>>>>>>>
>>>>>>> On 9/17/2014 4:25 PM, Maxim Solodovnik wrote:
>>>>>>>
>>>>>>> do you have your AD domain on the login screen?
>>>>>>> are there errors in the log?
>>>>>>> what OM version are you using?
>>>>>>>
>>>>>>> On 17 September 2014 16:02, ARI HENDIAWAN <
>>>>>>> ari.hendiawan@ocbcnisp.com> wrote:
>>>>>>>
>>>>>>>> Dear all,
>>>>>>>> please we need extra information how to integrate openmeetings
>>>>>>>> 3.0.3 with AD?
>>>>>>>> we already setting on ldap.conf and still problem.. if we saw on AD
>>>>>>>> , user that want sign-in openmeetings success, but on login menu
>>>>>>>> openmeetings shown error "invalid password"
>>>>>>>>
>>>>>>>>
>>>>>>>> Tks
>>>>>>>>
>>>>>>>>
>>>>>>>> --
>>>>>>>> Disclaimer :
>>>>>>>> Confidential information may be contained in this message. If you
>>>>>>>> are not the intended recipient, you are strictly prohibited and may be
>>>>>>>> unlawful to use, copy, store, distribute, disclose or communicate any part
>>>>>>>> of it to others and you are obliged to return it immediately to sender or
>>>>>>>> notify us and delete the e-mail and any attachments from your system.
>>>>>>>> Opinions, conclusions and other information in this e-mail that do not
>>>>>>>> relate to the official business of any PT Bank OCBC NISP Tbk shall be
>>>>>>>> understood as neither given nor endorsed by it. No assumption of
>>>>>>>> responsibility or liability whatsoever is undertaken by PT Bank OCBC NISP
>>>>>>>> Tbk in respect of prohibited and unauthorised use by any other person.
>>>>>>>>
>>>>>>>>
>>>>>>>
>>>>>>>
>>>>>>> --
>>>>>>> WBR
>>>>>>> Maxim aka solomax
>>>>>>>
>>>>>>>
>>>>>>>
>>>>>>>
>>>>>>> --
>>>>>>> Disclaimer :
>>>>>>> Confidential information may be contained in this message. If you
>>>>>>> are not the intended recipient, you are strictly prohibited and may be
>>>>>>> unlawful to use, copy, store, distribute, disclose or communicate any part
>>>>>>> of it to others and you are obliged to return it immediately to sender or
>>>>>>> notify us and delete the e-mail and any attachments from your system.
>>>>>>> Opinions, conclusions and other information in this e-mail that do not
>>>>>>> relate to the official business of any PT Bank OCBC NISP Tbk shall be
>>>>>>> understood as neither given nor endorsed by it. No assumption of
>>>>>>> responsibility or liability whatsoever is undertaken by PT Bank OCBC NISP
>>>>>>> Tbk in respect of prohibited and unauthorised use by any other person.
>>>>>>>
>>>>>>
>>>>>>
>>>>>>
>>>>>> --
>>>>>> WBR
>>>>>> Maxim aka solomax
>>>>>>
>>>>>
>>>>>
>>>>
>>>>
>>>> --
>>>> WBR
>>>> Maxim aka solomax
>>>>
>>>
>>>
>>
>>
>> --
>> WBR
>> Maxim aka solomax
>>
>
>
Re: need info about problem when integration AD
Posted by Grégory Mangeney <ma...@gmail.com>.
Ok, I finally understand that I have to put the filename and only the
filename without */usr/lib/red5/webapps/openmeetings/conf/*
Now I have a new message whitch said me invalid password...
It's quite better...
Thank you...
I could continue to try to set it now.
bye
Greg.
2014-09-18 15:06 GMT+02:00 Maxim Solodovnik <so...@gmail.com>:
> you need to write file name relative to webapps/openmeetings/conf folder
> in your case *om_ldap.cfg *should be specified
>
> On 18 September 2014 20:04, Grégory Mangeney <ma...@gmail.com> wrote:
>
>> Thank you very much but I don't understand very well.
>> I think I put the right information...
>> Do you want to say that I have to write :
>> */usr/lib/red5/webapps/openmeetings/conf/* without the filename
>> *om_ldap.cfg* at the end?
>> Thanks for your help
>> Greg
>>
>>
>> 2014-09-18 14:52 GMT+02:00 Maxim Solodovnik <so...@gmail.com>:
>>
>>> AFAIK the path should be relative to /usr/lib/red5/webapps/
>>> openmeetings/conf
>>> Please change this path
>>>
>>> Additionally you can file JIRA issue to add check to the Admin screen
>>> (so path will be validated on enter)
>>>
>>> On 18 September 2014 19:44, Grégory Mangeney <ma...@gmail.com> wrote:
>>>
>>>> Hello,
>>>> I have the same problem: I could not connect with AD.
>>>> I have the domain at the login screen,
>>>> I am using the 3.0.3.
>>>> I found this line in my log file :* ERROR 09-18 14:28:33.994
>>>> o.a.o.l.LdapLoginManagement:147 [http-nio-0.0.0.0-5080-exec-4] - Error on
>>>> LdapLogin : Configurationdata couldnt be retrieved!*
>>>>
>>>> This seem strange because in my LDAP config (in openmeetings
>>>> Administration/LDAP menu), I put the correct path in the "Config file name"
>>>> : /usr/lib/red5/webapps/openmeetings/conf/om_ldap.cfg
>>>>
>>>> Why is this error appeared : *Configurationdata couldnt be
>>>> retrieved! *???
>>>>
>>>>
>>>> Thanks a lot
>>>>
>>>> Greg
>>>>
>>>>
>>>> 2014-09-17 12:52 GMT+02:00 Maxim Solodovnik <so...@gmail.com>:
>>>>
>>>>> great :)
>>>>>
>>>>> On 17 September 2014 17:46, Teddy Jayasaputra <
>>>>> teddy.jayasaputra@ocbcnisp.com> wrote:
>>>>>
>>>>>> Dear Maxim,
>>>>>>
>>>>>> After close look to console log.
>>>>>> We found this error :
>>>>>> ERROR 09-17 17:28:33.278 LdapLoginManagement.java 135070 285
>>>>>> org.apache.openmeetings.ldap.LdapLoginManagement
>>>>>> [http-nio-0.0.0.0-5080-exec-6] - User not found in OM DB and
>>>>>> Provisionning.AUTOCREATE was not set
>>>>>>
>>>>>> After we change ldapconfiguration file from ldap_provisionning=NONE
>>>>>> to AUTOCREATE we can login using AD.
>>>>>>
>>>>>> thanks.
>>>>>>
>>>>>> Best Regards,
>>>>>>
>>>>>>
>>>>>> -Teddy Jayasaputra-
>>>>>>
>>>>>>
>>>>>> On 9/17/2014 4:25 PM, Maxim Solodovnik wrote:
>>>>>>
>>>>>> do you have your AD domain on the login screen?
>>>>>> are there errors in the log?
>>>>>> what OM version are you using?
>>>>>>
>>>>>> On 17 September 2014 16:02, ARI HENDIAWAN <ari.hendiawan@ocbcnisp.com
>>>>>> > wrote:
>>>>>>
>>>>>>> Dear all,
>>>>>>> please we need extra information how to integrate openmeetings 3.0.3
>>>>>>> with AD?
>>>>>>> we already setting on ldap.conf and still problem.. if we saw on AD
>>>>>>> , user that want sign-in openmeetings success, but on login menu
>>>>>>> openmeetings shown error "invalid password"
>>>>>>>
>>>>>>>
>>>>>>> Tks
>>>>>>>
>>>>>>>
>>>>>>> --
>>>>>>> Disclaimer :
>>>>>>> Confidential information may be contained in this message. If you
>>>>>>> are not the intended recipient, you are strictly prohibited and may be
>>>>>>> unlawful to use, copy, store, distribute, disclose or communicate any part
>>>>>>> of it to others and you are obliged to return it immediately to sender or
>>>>>>> notify us and delete the e-mail and any attachments from your system.
>>>>>>> Opinions, conclusions and other information in this e-mail that do not
>>>>>>> relate to the official business of any PT Bank OCBC NISP Tbk shall be
>>>>>>> understood as neither given nor endorsed by it. No assumption of
>>>>>>> responsibility or liability whatsoever is undertaken by PT Bank OCBC NISP
>>>>>>> Tbk in respect of prohibited and unauthorised use by any other person.
>>>>>>>
>>>>>>>
>>>>>>
>>>>>>
>>>>>> --
>>>>>> WBR
>>>>>> Maxim aka solomax
>>>>>>
>>>>>>
>>>>>>
>>>>>>
>>>>>> --
>>>>>> Disclaimer :
>>>>>> Confidential information may be contained in this message. If you are
>>>>>> not the intended recipient, you are strictly prohibited and may be unlawful
>>>>>> to use, copy, store, distribute, disclose or communicate any part of it to
>>>>>> others and you are obliged to return it immediately to sender or notify us
>>>>>> and delete the e-mail and any attachments from your system. Opinions,
>>>>>> conclusions and other information in this e-mail that do not relate to the
>>>>>> official business of any PT Bank OCBC NISP Tbk shall be understood as
>>>>>> neither given nor endorsed by it. No assumption of responsibility or
>>>>>> liability whatsoever is undertaken by PT Bank OCBC NISP Tbk in respect of
>>>>>> prohibited and unauthorised use by any other person.
>>>>>>
>>>>>
>>>>>
>>>>>
>>>>> --
>>>>> WBR
>>>>> Maxim aka solomax
>>>>>
>>>>
>>>>
>>>
>>>
>>> --
>>> WBR
>>> Maxim aka solomax
>>>
>>
>>
>
>
> --
> WBR
> Maxim aka solomax
>
Re: need info about problem when integration AD
Posted by Maxim Solodovnik <so...@gmail.com>.
you need to write file name relative to webapps/openmeetings/conf folder
in your case *om_ldap.cfg *should be specified
On 18 September 2014 20:04, Grégory Mangeney <ma...@gmail.com> wrote:
> Thank you very much but I don't understand very well.
> I think I put the right information...
> Do you want to say that I have to write :
> */usr/lib/red5/webapps/openmeetings/conf/* without the filename
> *om_ldap.cfg* at the end?
> Thanks for your help
> Greg
>
>
> 2014-09-18 14:52 GMT+02:00 Maxim Solodovnik <so...@gmail.com>:
>
>> AFAIK the path should be relative to /usr/lib/red5/webapps/
>> openmeetings/conf
>> Please change this path
>>
>> Additionally you can file JIRA issue to add check to the Admin screen (so
>> path will be validated on enter)
>>
>> On 18 September 2014 19:44, Grégory Mangeney <ma...@gmail.com> wrote:
>>
>>> Hello,
>>> I have the same problem: I could not connect with AD.
>>> I have the domain at the login screen,
>>> I am using the 3.0.3.
>>> I found this line in my log file :* ERROR 09-18 14:28:33.994
>>> o.a.o.l.LdapLoginManagement:147 [http-nio-0.0.0.0-5080-exec-4] - Error on
>>> LdapLogin : Configurationdata couldnt be retrieved!*
>>>
>>> This seem strange because in my LDAP config (in openmeetings
>>> Administration/LDAP menu), I put the correct path in the "Config file name"
>>> : /usr/lib/red5/webapps/openmeetings/conf/om_ldap.cfg
>>>
>>> Why is this error appeared : *Configurationdata couldnt be retrieved!
>>> *???
>>>
>>>
>>> Thanks a lot
>>>
>>> Greg
>>>
>>>
>>> 2014-09-17 12:52 GMT+02:00 Maxim Solodovnik <so...@gmail.com>:
>>>
>>>> great :)
>>>>
>>>> On 17 September 2014 17:46, Teddy Jayasaputra <
>>>> teddy.jayasaputra@ocbcnisp.com> wrote:
>>>>
>>>>> Dear Maxim,
>>>>>
>>>>> After close look to console log.
>>>>> We found this error :
>>>>> ERROR 09-17 17:28:33.278 LdapLoginManagement.java 135070 285
>>>>> org.apache.openmeetings.ldap.LdapLoginManagement
>>>>> [http-nio-0.0.0.0-5080-exec-6] - User not found in OM DB and
>>>>> Provisionning.AUTOCREATE was not set
>>>>>
>>>>> After we change ldapconfiguration file from ldap_provisionning=NONE to
>>>>> AUTOCREATE we can login using AD.
>>>>>
>>>>> thanks.
>>>>>
>>>>> Best Regards,
>>>>>
>>>>>
>>>>> -Teddy Jayasaputra-
>>>>>
>>>>>
>>>>> On 9/17/2014 4:25 PM, Maxim Solodovnik wrote:
>>>>>
>>>>> do you have your AD domain on the login screen?
>>>>> are there errors in the log?
>>>>> what OM version are you using?
>>>>>
>>>>> On 17 September 2014 16:02, ARI HENDIAWAN <ar...@ocbcnisp.com>
>>>>> wrote:
>>>>>
>>>>>> Dear all,
>>>>>> please we need extra information how to integrate openmeetings 3.0.3
>>>>>> with AD?
>>>>>> we already setting on ldap.conf and still problem.. if we saw on AD ,
>>>>>> user that want sign-in openmeetings success, but on login menu openmeetings
>>>>>> shown error "invalid password"
>>>>>>
>>>>>>
>>>>>> Tks
>>>>>>
>>>>>>
>>>>>> --
>>>>>> Disclaimer :
>>>>>> Confidential information may be contained in this message. If you are
>>>>>> not the intended recipient, you are strictly prohibited and may be unlawful
>>>>>> to use, copy, store, distribute, disclose or communicate any part of it to
>>>>>> others and you are obliged to return it immediately to sender or notify us
>>>>>> and delete the e-mail and any attachments from your system. Opinions,
>>>>>> conclusions and other information in this e-mail that do not relate to the
>>>>>> official business of any PT Bank OCBC NISP Tbk shall be understood as
>>>>>> neither given nor endorsed by it. No assumption of responsibility or
>>>>>> liability whatsoever is undertaken by PT Bank OCBC NISP Tbk in respect of
>>>>>> prohibited and unauthorised use by any other person.
>>>>>>
>>>>>>
>>>>>
>>>>>
>>>>> --
>>>>> WBR
>>>>> Maxim aka solomax
>>>>>
>>>>>
>>>>>
>>>>>
>>>>> --
>>>>> Disclaimer :
>>>>> Confidential information may be contained in this message. If you are
>>>>> not the intended recipient, you are strictly prohibited and may be unlawful
>>>>> to use, copy, store, distribute, disclose or communicate any part of it to
>>>>> others and you are obliged to return it immediately to sender or notify us
>>>>> and delete the e-mail and any attachments from your system. Opinions,
>>>>> conclusions and other information in this e-mail that do not relate to the
>>>>> official business of any PT Bank OCBC NISP Tbk shall be understood as
>>>>> neither given nor endorsed by it. No assumption of responsibility or
>>>>> liability whatsoever is undertaken by PT Bank OCBC NISP Tbk in respect of
>>>>> prohibited and unauthorised use by any other person.
>>>>>
>>>>
>>>>
>>>>
>>>> --
>>>> WBR
>>>> Maxim aka solomax
>>>>
>>>
>>>
>>
>>
>> --
>> WBR
>> Maxim aka solomax
>>
>
>
--
WBR
Maxim aka solomax
Re: need info about problem when integration AD
Posted by Grégory Mangeney <ma...@gmail.com>.
Thank you very much but I don't understand very well.
I think I put the right information...
Do you want to say that I have to write :
*/usr/lib/red5/webapps/openmeetings/conf/* without the filename
*om_ldap.cfg* at the end?
Thanks for your help
Greg
2014-09-18 14:52 GMT+02:00 Maxim Solodovnik <so...@gmail.com>:
> AFAIK the path should be relative to /usr/lib/red5/webapps/
> openmeetings/conf
> Please change this path
>
> Additionally you can file JIRA issue to add check to the Admin screen (so
> path will be validated on enter)
>
> On 18 September 2014 19:44, Grégory Mangeney <ma...@gmail.com> wrote:
>
>> Hello,
>> I have the same problem: I could not connect with AD.
>> I have the domain at the login screen,
>> I am using the 3.0.3.
>> I found this line in my log file :* ERROR 09-18 14:28:33.994
>> o.a.o.l.LdapLoginManagement:147 [http-nio-0.0.0.0-5080-exec-4] - Error on
>> LdapLogin : Configurationdata couldnt be retrieved!*
>>
>> This seem strange because in my LDAP config (in openmeetings
>> Administration/LDAP menu), I put the correct path in the "Config file name"
>> : /usr/lib/red5/webapps/openmeetings/conf/om_ldap.cfg
>>
>> Why is this error appeared : *Configurationdata couldnt be retrieved! *
>> ???
>>
>>
>> Thanks a lot
>>
>> Greg
>>
>>
>> 2014-09-17 12:52 GMT+02:00 Maxim Solodovnik <so...@gmail.com>:
>>
>>> great :)
>>>
>>> On 17 September 2014 17:46, Teddy Jayasaputra <
>>> teddy.jayasaputra@ocbcnisp.com> wrote:
>>>
>>>> Dear Maxim,
>>>>
>>>> After close look to console log.
>>>> We found this error :
>>>> ERROR 09-17 17:28:33.278 LdapLoginManagement.java 135070 285
>>>> org.apache.openmeetings.ldap.LdapLoginManagement
>>>> [http-nio-0.0.0.0-5080-exec-6] - User not found in OM DB and
>>>> Provisionning.AUTOCREATE was not set
>>>>
>>>> After we change ldapconfiguration file from ldap_provisionning=NONE to
>>>> AUTOCREATE we can login using AD.
>>>>
>>>> thanks.
>>>>
>>>> Best Regards,
>>>>
>>>>
>>>> -Teddy Jayasaputra-
>>>>
>>>>
>>>> On 9/17/2014 4:25 PM, Maxim Solodovnik wrote:
>>>>
>>>> do you have your AD domain on the login screen?
>>>> are there errors in the log?
>>>> what OM version are you using?
>>>>
>>>> On 17 September 2014 16:02, ARI HENDIAWAN <ar...@ocbcnisp.com>
>>>> wrote:
>>>>
>>>>> Dear all,
>>>>> please we need extra information how to integrate openmeetings 3.0.3
>>>>> with AD?
>>>>> we already setting on ldap.conf and still problem.. if we saw on AD ,
>>>>> user that want sign-in openmeetings success, but on login menu openmeetings
>>>>> shown error "invalid password"
>>>>>
>>>>>
>>>>> Tks
>>>>>
>>>>>
>>>>> --
>>>>> Disclaimer :
>>>>> Confidential information may be contained in this message. If you are
>>>>> not the intended recipient, you are strictly prohibited and may be unlawful
>>>>> to use, copy, store, distribute, disclose or communicate any part of it to
>>>>> others and you are obliged to return it immediately to sender or notify us
>>>>> and delete the e-mail and any attachments from your system. Opinions,
>>>>> conclusions and other information in this e-mail that do not relate to the
>>>>> official business of any PT Bank OCBC NISP Tbk shall be understood as
>>>>> neither given nor endorsed by it. No assumption of responsibility or
>>>>> liability whatsoever is undertaken by PT Bank OCBC NISP Tbk in respect of
>>>>> prohibited and unauthorised use by any other person.
>>>>>
>>>>>
>>>>
>>>>
>>>> --
>>>> WBR
>>>> Maxim aka solomax
>>>>
>>>>
>>>>
>>>>
>>>> --
>>>> Disclaimer :
>>>> Confidential information may be contained in this message. If you are
>>>> not the intended recipient, you are strictly prohibited and may be unlawful
>>>> to use, copy, store, distribute, disclose or communicate any part of it to
>>>> others and you are obliged to return it immediately to sender or notify us
>>>> and delete the e-mail and any attachments from your system. Opinions,
>>>> conclusions and other information in this e-mail that do not relate to the
>>>> official business of any PT Bank OCBC NISP Tbk shall be understood as
>>>> neither given nor endorsed by it. No assumption of responsibility or
>>>> liability whatsoever is undertaken by PT Bank OCBC NISP Tbk in respect of
>>>> prohibited and unauthorised use by any other person.
>>>>
>>>
>>>
>>>
>>> --
>>> WBR
>>> Maxim aka solomax
>>>
>>
>>
>
>
> --
> WBR
> Maxim aka solomax
>
Re: need info about problem when integration AD
Posted by Maxim Solodovnik <so...@gmail.com>.
AFAIK the path should be relative to /usr/lib/red5/webapps/
openmeetings/conf
Please change this path
Additionally you can file JIRA issue to add check to the Admin screen (so
path will be validated on enter)
On 18 September 2014 19:44, Grégory Mangeney <ma...@gmail.com> wrote:
> Hello,
> I have the same problem: I could not connect with AD.
> I have the domain at the login screen,
> I am using the 3.0.3.
> I found this line in my log file :* ERROR 09-18 14:28:33.994
> o.a.o.l.LdapLoginManagement:147 [http-nio-0.0.0.0-5080-exec-4] - Error on
> LdapLogin : Configurationdata couldnt be retrieved!*
>
> This seem strange because in my LDAP config (in openmeetings
> Administration/LDAP menu), I put the correct path in the "Config file name"
> : /usr/lib/red5/webapps/openmeetings/conf/om_ldap.cfg
>
> Why is this error appeared : *Configurationdata couldnt be retrieved! *
> ???
>
>
> Thanks a lot
>
> Greg
>
>
> 2014-09-17 12:52 GMT+02:00 Maxim Solodovnik <so...@gmail.com>:
>
>> great :)
>>
>> On 17 September 2014 17:46, Teddy Jayasaputra <
>> teddy.jayasaputra@ocbcnisp.com> wrote:
>>
>>> Dear Maxim,
>>>
>>> After close look to console log.
>>> We found this error :
>>> ERROR 09-17 17:28:33.278 LdapLoginManagement.java 135070 285
>>> org.apache.openmeetings.ldap.LdapLoginManagement
>>> [http-nio-0.0.0.0-5080-exec-6] - User not found in OM DB and
>>> Provisionning.AUTOCREATE was not set
>>>
>>> After we change ldapconfiguration file from ldap_provisionning=NONE to
>>> AUTOCREATE we can login using AD.
>>>
>>> thanks.
>>>
>>> Best Regards,
>>>
>>>
>>> -Teddy Jayasaputra-
>>>
>>>
>>> On 9/17/2014 4:25 PM, Maxim Solodovnik wrote:
>>>
>>> do you have your AD domain on the login screen?
>>> are there errors in the log?
>>> what OM version are you using?
>>>
>>> On 17 September 2014 16:02, ARI HENDIAWAN <ar...@ocbcnisp.com>
>>> wrote:
>>>
>>>> Dear all,
>>>> please we need extra information how to integrate openmeetings 3.0.3
>>>> with AD?
>>>> we already setting on ldap.conf and still problem.. if we saw on AD ,
>>>> user that want sign-in openmeetings success, but on login menu openmeetings
>>>> shown error "invalid password"
>>>>
>>>>
>>>> Tks
>>>>
>>>>
>>>> --
>>>> Disclaimer :
>>>> Confidential information may be contained in this message. If you are
>>>> not the intended recipient, you are strictly prohibited and may be unlawful
>>>> to use, copy, store, distribute, disclose or communicate any part of it to
>>>> others and you are obliged to return it immediately to sender or notify us
>>>> and delete the e-mail and any attachments from your system. Opinions,
>>>> conclusions and other information in this e-mail that do not relate to the
>>>> official business of any PT Bank OCBC NISP Tbk shall be understood as
>>>> neither given nor endorsed by it. No assumption of responsibility or
>>>> liability whatsoever is undertaken by PT Bank OCBC NISP Tbk in respect of
>>>> prohibited and unauthorised use by any other person.
>>>>
>>>>
>>>
>>>
>>> --
>>> WBR
>>> Maxim aka solomax
>>>
>>>
>>>
>>>
>>> --
>>> Disclaimer :
>>> Confidential information may be contained in this message. If you are
>>> not the intended recipient, you are strictly prohibited and may be unlawful
>>> to use, copy, store, distribute, disclose or communicate any part of it to
>>> others and you are obliged to return it immediately to sender or notify us
>>> and delete the e-mail and any attachments from your system. Opinions,
>>> conclusions and other information in this e-mail that do not relate to the
>>> official business of any PT Bank OCBC NISP Tbk shall be understood as
>>> neither given nor endorsed by it. No assumption of responsibility or
>>> liability whatsoever is undertaken by PT Bank OCBC NISP Tbk in respect of
>>> prohibited and unauthorised use by any other person.
>>>
>>
>>
>>
>> --
>> WBR
>> Maxim aka solomax
>>
>
>
--
WBR
Maxim aka solomax
Re: need info about problem when integration AD
Posted by Grégory Mangeney <ma...@gmail.com>.
Hello,
I have the same problem: I could not connect with AD.
I have the domain at the login screen,
I am using the 3.0.3.
I found this line in my log file :* ERROR 09-18 14:28:33.994
o.a.o.l.LdapLoginManagement:147 [http-nio-0.0.0.0-5080-exec-4] - Error on
LdapLogin : Configurationdata couldnt be retrieved!*
This seem strange because in my LDAP config (in openmeetings
Administration/LDAP menu), I put the correct path in the "Config file name"
: /usr/lib/red5/webapps/openmeetings/conf/om_ldap.cfg
Why is this error appeared : *Configurationdata couldnt be retrieved! *???
Thanks a lot
Greg
2014-09-17 12:52 GMT+02:00 Maxim Solodovnik <so...@gmail.com>:
> great :)
>
> On 17 September 2014 17:46, Teddy Jayasaputra <
> teddy.jayasaputra@ocbcnisp.com> wrote:
>
>> Dear Maxim,
>>
>> After close look to console log.
>> We found this error :
>> ERROR 09-17 17:28:33.278 LdapLoginManagement.java 135070 285
>> org.apache.openmeetings.ldap.LdapLoginManagement
>> [http-nio-0.0.0.0-5080-exec-6] - User not found in OM DB and
>> Provisionning.AUTOCREATE was not set
>>
>> After we change ldapconfiguration file from ldap_provisionning=NONE to
>> AUTOCREATE we can login using AD.
>>
>> thanks.
>>
>> Best Regards,
>>
>>
>> -Teddy Jayasaputra-
>>
>>
>> On 9/17/2014 4:25 PM, Maxim Solodovnik wrote:
>>
>> do you have your AD domain on the login screen?
>> are there errors in the log?
>> what OM version are you using?
>>
>> On 17 September 2014 16:02, ARI HENDIAWAN <ar...@ocbcnisp.com>
>> wrote:
>>
>>> Dear all,
>>> please we need extra information how to integrate openmeetings 3.0.3
>>> with AD?
>>> we already setting on ldap.conf and still problem.. if we saw on AD ,
>>> user that want sign-in openmeetings success, but on login menu openmeetings
>>> shown error "invalid password"
>>>
>>>
>>> Tks
>>>
>>>
>>> --
>>> Disclaimer :
>>> Confidential information may be contained in this message. If you are
>>> not the intended recipient, you are strictly prohibited and may be unlawful
>>> to use, copy, store, distribute, disclose or communicate any part of it to
>>> others and you are obliged to return it immediately to sender or notify us
>>> and delete the e-mail and any attachments from your system. Opinions,
>>> conclusions and other information in this e-mail that do not relate to the
>>> official business of any PT Bank OCBC NISP Tbk shall be understood as
>>> neither given nor endorsed by it. No assumption of responsibility or
>>> liability whatsoever is undertaken by PT Bank OCBC NISP Tbk in respect of
>>> prohibited and unauthorised use by any other person.
>>>
>>>
>>
>>
>> --
>> WBR
>> Maxim aka solomax
>>
>>
>>
>>
>> --
>> Disclaimer :
>> Confidential information may be contained in this message. If you are not
>> the intended recipient, you are strictly prohibited and may be unlawful to
>> use, copy, store, distribute, disclose or communicate any part of it to
>> others and you are obliged to return it immediately to sender or notify us
>> and delete the e-mail and any attachments from your system. Opinions,
>> conclusions and other information in this e-mail that do not relate to the
>> official business of any PT Bank OCBC NISP Tbk shall be understood as
>> neither given nor endorsed by it. No assumption of responsibility or
>> liability whatsoever is undertaken by PT Bank OCBC NISP Tbk in respect of
>> prohibited and unauthorised use by any other person.
>>
>
>
>
> --
> WBR
> Maxim aka solomax
>
Re: need info about problem when integration AD
Posted by Maxim Solodovnik <so...@gmail.com>.
great :)
On 17 September 2014 17:46, Teddy Jayasaputra <
teddy.jayasaputra@ocbcnisp.com> wrote:
> Dear Maxim,
>
> After close look to console log.
> We found this error :
> ERROR 09-17 17:28:33.278 LdapLoginManagement.java 135070 285
> org.apache.openmeetings.ldap.LdapLoginManagement
> [http-nio-0.0.0.0-5080-exec-6] - User not found in OM DB and
> Provisionning.AUTOCREATE was not set
>
> After we change ldapconfiguration file from ldap_provisionning=NONE to
> AUTOCREATE we can login using AD.
>
> thanks.
>
> Best Regards,
>
>
> -Teddy Jayasaputra-
>
> On 9/17/2014 4:25 PM, Maxim Solodovnik wrote:
>
> do you have your AD domain on the login screen?
> are there errors in the log?
> what OM version are you using?
>
> On 17 September 2014 16:02, ARI HENDIAWAN <ar...@ocbcnisp.com>
> wrote:
>
>> Dear all,
>> please we need extra information how to integrate openmeetings 3.0.3 with
>> AD?
>> we already setting on ldap.conf and still problem.. if we saw on AD ,
>> user that want sign-in openmeetings success, but on login menu openmeetings
>> shown error "invalid password"
>>
>>
>> Tks
>>
>>
>> --
>> Disclaimer :
>> Confidential information may be contained in this message. If you are not
>> the intended recipient, you are strictly prohibited and may be unlawful to
>> use, copy, store, distribute, disclose or communicate any part of it to
>> others and you are obliged to return it immediately to sender or notify us
>> and delete the e-mail and any attachments from your system. Opinions,
>> conclusions and other information in this e-mail that do not relate to the
>> official business of any PT Bank OCBC NISP Tbk shall be understood as
>> neither given nor endorsed by it. No assumption of responsibility or
>> liability whatsoever is undertaken by PT Bank OCBC NISP Tbk in respect of
>> prohibited and unauthorised use by any other person.
>>
>>
>
>
> --
> WBR
> Maxim aka solomax
>
>
>
>
> --
> Disclaimer :
> Confidential information may be contained in this message. If you are not
> the intended recipient, you are strictly prohibited and may be unlawful to
> use, copy, store, distribute, disclose or communicate any part of it to
> others and you are obliged to return it immediately to sender or notify us
> and delete the e-mail and any attachments from your system. Opinions,
> conclusions and other information in this e-mail that do not relate to the
> official business of any PT Bank OCBC NISP Tbk shall be understood as
> neither given nor endorsed by it. No assumption of responsibility or
> liability whatsoever is undertaken by PT Bank OCBC NISP Tbk in respect of
> prohibited and unauthorised use by any other person.
>
--
WBR
Maxim aka solomax
Re: need info about problem when integration AD
Posted by Maxim Solodovnik <so...@gmail.com>.
do you have your AD domain on the login screen?
are there errors in the log?
what OM version are you using?
On 17 September 2014 16:02, ARI HENDIAWAN <ar...@ocbcnisp.com>
wrote:
> Dear all,
> please we need extra information how to integrate openmeetings 3.0.3 with
> AD?
> we already setting on ldap.conf and still problem.. if we saw on AD , user
> that want sign-in openmeetings success, but on login menu openmeetings
> shown error "invalid password"
>
>
> Tks
>
>
> --
> Disclaimer :
> Confidential information may be contained in this message. If you are not
> the intended recipient, you are strictly prohibited and may be unlawful to
> use, copy, store, distribute, disclose or communicate any part of it to
> others and you are obliged to return it immediately to sender or notify us
> and delete the e-mail and any attachments from your system. Opinions,
> conclusions and other information in this e-mail that do not relate to the
> official business of any PT Bank OCBC NISP Tbk shall be understood as
> neither given nor endorsed by it. No assumption of responsibility or
> liability whatsoever is undertaken by PT Bank OCBC NISP Tbk in respect of
> prohibited and unauthorised use by any other person.
>
>
--
WBR
Maxim aka solomax