You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@manifoldcf.apache.org by "Theodor Carp (JIRA)" <ji...@apache.org> on 2017/07/12 12:25:00 UTC

[jira] [Commented] (CONNECTORS-1131) Ldap authentication for the administration console

    [ https://issues.apache.org/jira/browse/CONNECTORS-1131?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16083893#comment-16083893 ] 

Theodor Carp commented on CONNECTORS-1131:
------------------------------------------

Hi,

Using the below settings:

  <property name="org.apache.manifoldcf.authimplementationclass" value="org.apache.manifoldcf.core.auth.LdapAuthenticator" />
  <property name="org.apache.manifoldcf.login.authenticationtype" value="LDAP-AUTHENTICATION" />
  <property name="org.apache.manifoldcf.login.ldap.providerurl" value="ldap://hdp01.local:389" />
  <property name="org.apache.manifoldcf.login.ldap.securityauthenticationtype" value="simple" />
  <property name="org.apache.manifoldcf.login.ldap.securityprincipal" value="uid=$(userID),ou=Users,dc=local" />
  <property name="org.apache.manifoldcf.login.ldap.contextsearchquery" value="(uid=$(userID))" />
  <property name="org.apache.manifoldcf.login.ldap.searchattribute" value="uid" />

I'm getting errors like: 

ERROR 2017-07-12 15:20:32,951 (qtp1295083508-17) - User not authenticated = authenticating_user exception = [LDAP: error code 32 - No Such Object]
javax.naming.NameNotFoundException: [LDAP: error code 32 - No Such Object]; remaining name ''
	at com.sun.jndi.ldap.LdapCtx.mapErrorCode(LdapCtx.java:3161)
	at com.sun.jndi.ldap.LdapCtx.processReturnCode(LdapCtx.java:3082)
	at com.sun.jndi.ldap.LdapCtx.processReturnCode(LdapCtx.java:2888)
[...]
FATAL 2017-07-12 15:20:32,956 (qtp1295083508-17) - Exception logging in: User not authenticated: [LDAP: error code 32 - No Such Object]
org.apache.manifoldcf.core.interfaces.ManifoldCFException: User not authenticated: [LDAP: error code 32 - No Such Object]
	at org.apache.manifoldcf.core.auth.LdapAuthenticator.verifyLogin(LdapAuthenticator.java:162)
	at org.apache.manifoldcf.core.auth.LdapAuthenticator.verifyUILogin(LdapAuthenticator.java:107)
	at org.apache.manifoldcf.ui.beans.AdminProfile.login(AdminProfile.java:103)
[...]
Caused by: javax.naming.NameNotFoundException: [LDAP: error code 32 - No Such Object]; remaining name ''
	at com.sun.jndi.ldap.LdapCtx.mapErrorCode(LdapCtx.java:3161)
	at com.sun.jndi.ldap.LdapCtx.processReturnCode(LdapCtx.java:3082)
	at com.sun.jndi.ldap.LdapCtx.processReturnCode(LdapCtx.java:2888)


But if do maual ldapsearch basicaly using the same settings: e.g.:

ldapsearch -x -W -H ldap://hdp01.local -b "dc=local" -s sub '(uid=authenticating_user)'

It basically works ok.

for reference i'm running manifold 2.7, on tomcat, using postgresql for database and zookeeper as config repo and orchestrator.

Any ideas?

Best,
T

> Ldap authentication for the administration console
> --------------------------------------------------
>
>                 Key: CONNECTORS-1131
>                 URL: https://issues.apache.org/jira/browse/CONNECTORS-1131
>             Project: ManifoldCF
>          Issue Type: Wish
>            Reporter: colin
>            Assignee: Karl Wright
>             Fix For: ManifoldCF 2.2
>
>         Attachments: AdminProfile.java, LdapAuthenticator.java
>
>
> Hi Guys,
> Could more options be added for authenticating to the MCF administration ui?
> The username / password can be set in the properties.xml but it would make it easier for enterprise integration if ldap was supported.
> Thanks,
> Colin



--
This message was sent by Atlassian JIRA
(v6.4.14#64029)