You are viewing a plain text version of this content. The canonical link for it is here.
Posted to user@lenya.apache.org by "Consolo, Nicholas C." <Co...@hiram.edu> on 2006/06/23 22:22:27 UTC
LDAP breaks
Hello,
I just recently migrated a server running Lenya to a new ISP. All that
really changed was the IP address of the machine, but now when I try to
'Login as Editor' the following error is displayed:
org.apache.lenya.ac.AccessControlException:
org.apache.lenya.ac.cache.CachingException:
org.apache.lenya.ac.cache.BuildException:
org.apache.lenya.ac.AccessControlException: Exception when trying to
configure: org.apache.lenya.ac.ldap.LDAPUser
cause: javax.naming.PartialResultException: Unprocessed Continuation
Reference(s); remaining name 'dc=businessname,dc=com'
Any ideas on how to get LDAP authentication working again?
Thanks,
Nick Consolo
---------------------------------------------------------------------
To unsubscribe, e-mail: user-unsubscribe@lenya.apache.org
For additional commands, e-mail: user-help@lenya.apache.org
Re: LDAP breaks
Posted by "Consolo, Nicholas C." <Co...@hiram.edu>.
I had found a previous post by Jon Linczak describing how he had to manually
create a new publication and move the files from the existing broken
publication into it. I've stumbled across another approach that, while
tedious, seems to be working.
1. Go to PUBNAME/config/ac/passwd and delete each .iml file.
2. Open each subtree-policy.acml in
PUBNAME/config/ac/policies/<authoring/archive/trash> and erase each user.
3. Recreate the lenya user .iml file in PUBNAME/config/ac/passwd, use it to
login to the publication.
4. Recreate and reassign permissions to each user.
If a caching issue would speed that up, it'd be great, but for now the
manually erase, login as lenya, recreate users seems to be the only way I've
had success with.
Thanks for the advice. Once I get a majority of the publications fixed I'll
check into the caching and let you know if that works, but for now, I have a
process that works and people need to post.
Thanks for your help,
-Nick
On 6/26/06 2:23 PM, "Brad Hannah" <ha...@post.queensu.ca> wrote:
> Ok, I what I say is with a hunch alone.
>
> Maybe a caching issue??? I am working on eliminating all caching issues
> from our server at this time and have found some issues.
>
> Shutdown the server and remove:
> * all lenya/pubs/*/work/cache/live/*
> * assuming tomcat: tomcat/work/Catalina/localhost/lenya/cocoon-files/*
>
> Restart the server.
>
> Also back to the keystore, there is a separate keystore file in
> each publication in <pub>/config/ac/.keystore (thats mine), and you may
> want to diff that one to the new publications.. or do the new ones even
> have one?
>
> Last ditch hope, did you transfer the file in binary and have extra line
> breaks in your ldap.properties file?
>
> Good luck, interested to hear if any of this helps.
>
> Brad
>
> Consolo, Nicholas C. wrote:
>> Brad,
>>
>> Thanks for the help. Let me explain the situation a bit further. LDAP is
>> working if I create and deploy any new publications, but for some reason it
>> is broken on all publications that did exist. Is it possible that there is
>> a cache or just one file that I can remove to fix this instead of recreating
>> all the publications?
>>
>> Thanks,
>>
>> Nick
>>
>>
>> On 6/26/06 8:51 AM, "Brad Hannah" <ha...@post.queensu.ca> wrote:
>>
>>> It is possible that a connection could not be made to the LDAP server. I
>>> recommend using the ldapsearch utility (typically on UNIX boxes), and
>>> see if you can get a connection to it from your new ISP.
>>>
>>> Or if you are connecting securely make sure you have an updated
>>> .keystore. If you are running securely test an unsecured connection (if
>>> available) just to verify if it is one service or both.
>>>
>>> I have never experienced this error, but there are not many things that
>>> should affect this. Also is it a new version of JAVA, OpenLDAP or
>>> OpenSSL on the machine? All these little factors can create unexpected
>>> issues.
>>>
>>> Brad Hannah
>>>
>>>
>>> Consolo, Nicholas C. wrote:
>>>> Hello,
>>>>
>>>> I just recently migrated a server running Lenya to a new ISP. All that
>>>> really changed was the IP address of the machine, but now when I try to
>>>> 'Login as Editor' the following error is displayed:
>>>>
>>>> org.apache.lenya.ac.AccessControlException:
>>>> org.apache.lenya.ac.cache.CachingException:
>>>> org.apache.lenya.ac.cache.BuildException:
>>>> org.apache.lenya.ac.AccessControlException: Exception when trying to
>>>> configure: org.apache.lenya.ac.ldap.LDAPUser
>>>>
>>>> cause: javax.naming.PartialResultException: Unprocessed Continuation
>>>> Reference(s); remaining name 'dc=businessname,dc=com'
>>>>
>>>> Any ideas on how to get LDAP authentication working again?
>>>>
>>>> Thanks,
>>>>
>>>> Nick Consolo
>>>>
>>>>
>>>> ---------------------------------------------------------------------
>>>> To unsubscribe, e-mail: user-unsubscribe@lenya.apache.org
>>>> For additional commands, e-mail: user-help@lenya.apache.org
>>>>
>>>>
>>>
>>>
>>> ---------------------------------------------------------------------
>>> To unsubscribe, e-mail: user-unsubscribe@lenya.apache.org
>>> For additional commands, e-mail: user-help@lenya.apache.org
>>>
>>
>>
>> ---------------------------------------------------------------------
>> To unsubscribe, e-mail: user-unsubscribe@lenya.apache.org
>> For additional commands, e-mail: user-help@lenya.apache.org
>>
>>
>
>
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: user-unsubscribe@lenya.apache.org
> For additional commands, e-mail: user-help@lenya.apache.org
>
---------------------------------------------------------------------
To unsubscribe, e-mail: user-unsubscribe@lenya.apache.org
For additional commands, e-mail: user-help@lenya.apache.org
Re: LDAP breaks
Posted by Brad Hannah <ha...@post.queensu.ca>.
Ok, I what I say is with a hunch alone.
Maybe a caching issue??? I am working on eliminating all caching issues
from our server at this time and have found some issues.
Shutdown the server and remove:
* all lenya/pubs/*/work/cache/live/*
* assuming tomcat: tomcat/work/Catalina/localhost/lenya/cocoon-files/*
Restart the server.
Also back to the keystore, there is a separate keystore file in
each publication in <pub>/config/ac/.keystore (thats mine), and you may
want to diff that one to the new publications.. or do the new ones even
have one?
Last ditch hope, did you transfer the file in binary and have extra line
breaks in your ldap.properties file?
Good luck, interested to hear if any of this helps.
Brad
Consolo, Nicholas C. wrote:
> Brad,
>
> Thanks for the help. Let me explain the situation a bit further. LDAP is
> working if I create and deploy any new publications, but for some reason it
> is broken on all publications that did exist. Is it possible that there is
> a cache or just one file that I can remove to fix this instead of recreating
> all the publications?
>
> Thanks,
>
> Nick
>
>
> On 6/26/06 8:51 AM, "Brad Hannah" <ha...@post.queensu.ca> wrote:
>
>> It is possible that a connection could not be made to the LDAP server. I
>> recommend using the ldapsearch utility (typically on UNIX boxes), and
>> see if you can get a connection to it from your new ISP.
>>
>> Or if you are connecting securely make sure you have an updated
>> .keystore. If you are running securely test an unsecured connection (if
>> available) just to verify if it is one service or both.
>>
>> I have never experienced this error, but there are not many things that
>> should affect this. Also is it a new version of JAVA, OpenLDAP or
>> OpenSSL on the machine? All these little factors can create unexpected
>> issues.
>>
>> Brad Hannah
>>
>>
>> Consolo, Nicholas C. wrote:
>>> Hello,
>>>
>>> I just recently migrated a server running Lenya to a new ISP. All that
>>> really changed was the IP address of the machine, but now when I try to
>>> 'Login as Editor' the following error is displayed:
>>>
>>> org.apache.lenya.ac.AccessControlException:
>>> org.apache.lenya.ac.cache.CachingException:
>>> org.apache.lenya.ac.cache.BuildException:
>>> org.apache.lenya.ac.AccessControlException: Exception when trying to
>>> configure: org.apache.lenya.ac.ldap.LDAPUser
>>>
>>> cause: javax.naming.PartialResultException: Unprocessed Continuation
>>> Reference(s); remaining name 'dc=businessname,dc=com'
>>>
>>> Any ideas on how to get LDAP authentication working again?
>>>
>>> Thanks,
>>>
>>> Nick Consolo
>>>
>>>
>>> ---------------------------------------------------------------------
>>> To unsubscribe, e-mail: user-unsubscribe@lenya.apache.org
>>> For additional commands, e-mail: user-help@lenya.apache.org
>>>
>>>
>>
>>
>> ---------------------------------------------------------------------
>> To unsubscribe, e-mail: user-unsubscribe@lenya.apache.org
>> For additional commands, e-mail: user-help@lenya.apache.org
>>
>
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: user-unsubscribe@lenya.apache.org
> For additional commands, e-mail: user-help@lenya.apache.org
>
>
---------------------------------------------------------------------
To unsubscribe, e-mail: user-unsubscribe@lenya.apache.org
For additional commands, e-mail: user-help@lenya.apache.org
Re: LDAP breaks
Posted by "Consolo, Nicholas C." <Co...@hiram.edu>.
Brad,
Thanks for the help. Let me explain the situation a bit further. LDAP is
working if I create and deploy any new publications, but for some reason it
is broken on all publications that did exist. Is it possible that there is
a cache or just one file that I can remove to fix this instead of recreating
all the publications?
Thanks,
Nick
On 6/26/06 8:51 AM, "Brad Hannah" <ha...@post.queensu.ca> wrote:
> It is possible that a connection could not be made to the LDAP server. I
> recommend using the ldapsearch utility (typically on UNIX boxes), and
> see if you can get a connection to it from your new ISP.
>
> Or if you are connecting securely make sure you have an updated
> .keystore. If you are running securely test an unsecured connection (if
> available) just to verify if it is one service or both.
>
> I have never experienced this error, but there are not many things that
> should affect this. Also is it a new version of JAVA, OpenLDAP or
> OpenSSL on the machine? All these little factors can create unexpected
> issues.
>
> Brad Hannah
>
>
> Consolo, Nicholas C. wrote:
>> Hello,
>>
>> I just recently migrated a server running Lenya to a new ISP. All that
>> really changed was the IP address of the machine, but now when I try to
>> 'Login as Editor' the following error is displayed:
>>
>> org.apache.lenya.ac.AccessControlException:
>> org.apache.lenya.ac.cache.CachingException:
>> org.apache.lenya.ac.cache.BuildException:
>> org.apache.lenya.ac.AccessControlException: Exception when trying to
>> configure: org.apache.lenya.ac.ldap.LDAPUser
>>
>> cause: javax.naming.PartialResultException: Unprocessed Continuation
>> Reference(s); remaining name 'dc=businessname,dc=com'
>>
>> Any ideas on how to get LDAP authentication working again?
>>
>> Thanks,
>>
>> Nick Consolo
>>
>>
>> ---------------------------------------------------------------------
>> To unsubscribe, e-mail: user-unsubscribe@lenya.apache.org
>> For additional commands, e-mail: user-help@lenya.apache.org
>>
>>
>
>
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: user-unsubscribe@lenya.apache.org
> For additional commands, e-mail: user-help@lenya.apache.org
>
---------------------------------------------------------------------
To unsubscribe, e-mail: user-unsubscribe@lenya.apache.org
For additional commands, e-mail: user-help@lenya.apache.org
Re: LDAP breaks
Posted by Brad Hannah <ha...@post.queensu.ca>.
It is possible that a connection could not be made to the LDAP server. I
recommend using the ldapsearch utility (typically on UNIX boxes), and
see if you can get a connection to it from your new ISP.
Or if you are connecting securely make sure you have an updated
.keystore. If you are running securely test an unsecured connection (if
available) just to verify if it is one service or both.
I have never experienced this error, but there are not many things that
should affect this. Also is it a new version of JAVA, OpenLDAP or
OpenSSL on the machine? All these little factors can create unexpected
issues.
Brad Hannah
Consolo, Nicholas C. wrote:
> Hello,
>
> I just recently migrated a server running Lenya to a new ISP. All that
> really changed was the IP address of the machine, but now when I try to
> 'Login as Editor' the following error is displayed:
>
> org.apache.lenya.ac.AccessControlException:
> org.apache.lenya.ac.cache.CachingException:
> org.apache.lenya.ac.cache.BuildException:
> org.apache.lenya.ac.AccessControlException: Exception when trying to
> configure: org.apache.lenya.ac.ldap.LDAPUser
>
> cause: javax.naming.PartialResultException: Unprocessed Continuation
> Reference(s); remaining name 'dc=businessname,dc=com'
>
> Any ideas on how to get LDAP authentication working again?
>
> Thanks,
>
> Nick Consolo
>
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: user-unsubscribe@lenya.apache.org
> For additional commands, e-mail: user-help@lenya.apache.org
>
>
---------------------------------------------------------------------
To unsubscribe, e-mail: user-unsubscribe@lenya.apache.org
For additional commands, e-mail: user-help@lenya.apache.org