Connecting to ldap
I'm trying to setup an new Snow Leopard install to connect to an established ldap database (unix). Are there any step-by-step instructions on how to do this?
Hi,
I have not gotten home directories to sync, but here are two good articles
http://rajeev.name/2006/09/09/integrating-mac-os-x-into-unix-ldap-environment-wi th-nfs-home-directories
http://mattfleming.com/node/190
Similar Messages
-
Untrusted server cert chain - while connecting with ldap
Hi All,
I am getting the following error while running a standalone java program in windows 2000+jdk1.3 environment to connect with LDAP.
javax.naming.CommunicationException: hostname:636 [Root exception is ja
vax.net.ssl.SSLException: untrusted server cert chain]
javax.naming.CommunicationException: hostname:636. Root exception is j
avax.net.ssl.SSLException: untrusted server cert chain
at com.sun.net.ssl.internal.ssl.SSLSocketImpl.a(DashoA12275)
at com.sun.net.ssl.internal.ssl.ClientHandshaker.a(DashoA12275)
at com.sun.net.ssl.internal.ssl.ClientHandshaker.processMessage(DashoA12
275)
at com.sun.net.ssl.internal.ssl.Handshaker.process_record(DashoA12275)
at com.sun.net.ssl.internal.ssl.SSLSocketImpl.a(DashoA12275)
at com.sun.net.ssl.internal.ssl.SSLSocketImpl.a(DashoA12275)
at com.sun.net.ssl.internal.ssl.AppOutputStream.write(DashoA12275)
at java.io.OutputStream.write(Unknown Source)
at com.sun.jndi.ldap.Connection.<init>(Unknown Source)
at com.sun.jndi.ldap.LdapClient.<init>(Unknown Source)
at com.sun.jndi.ldap.LdapCtx.connect(Unknown Source)
at com.sun.jndi.ldap.LdapCtx.<init>(Unknown Source)
at com.sun.jndi.ldap.LdapCtxFactory.getInitialContext(Unknown Source)
at javax.naming.spi.NamingManager.getInitialContext(Unknown Source)
at javax.naming.InitialContext.getDefaultInitCtx(Unknown Source)
at javax.naming.InitialContext.init(Unknown Source)
at javax.naming.InitialContext.<init>(Unknown Source)
at javax.naming.directory.InitialDirContext.<init>(Unknown Source)
at Test2.getProxyDirContext(Test2.java:66)
at Test2.main(Test2.java:40)
Any help would be appreciated
Thanks in Advance
SomuThis got resolved when in the code the following
System.setProperty("javax.net.ssl.tmrustStore", CertFileName);
where cert file name is the filename with complete path.the file is a CA certificate of the LDAP server
in X509 format -
Error while connecting to LDAP directly
Hi All,
We are working on the server which is connected to LDAP . Here, we are trying to connect directly to ldap with ldap url "ldap://myHost:port" as in below mentioned code :
Hashtable env = new Hashtable();
env.put(Context.INITIAL_CONTEXT_FACTORY, "com.sun.jndi.ldap.LdapCtxFactory");
env.put(Context.PROVIDER_URL, "ldap://myHost:port");
env.put(Context.SECURITY_AUTHENTICATION, "simple");
env.put(Context.SECURITY_PRINCIPAL, "DC=ad,DC=org,DC=com");
env.put(Context.SECURITY_CREDENTIALS, "");
DirContext ctx = new InitialDirContext(env);
While deploying we got some error as
u201C[LDAP: error code 1 - 00000000: LdapErr: DSID-0C090627, comment: In order to perform this operation a successful bind must be completed on the connection., data 0, vece]u201D.
It seems, we need to pass certain parameters along with url like cn: common name, uid=unique id ,ou=org unit, o=organization. Need some information regarding what all details have to be provided for integration from configtool and in which format like for common name, organization etc.
Also, what should be the entry for Context.SECURITY_PRINCIPAL?
Appreciate an early response.
Thanks in advance.
Regards,
Mitali[Start of UME Service Failed |http://help.sap.com/saphelp_nw04/helpdata/en/20/361941edd5ef23e10000000a155106/frameset.htm]check this same exception got resolved..
one more thing, Have you uploaded the LDAP servers certificate in the TrustedCAS of the keystore in Visual Admin in the WAS server? If you are using LDAP ssl the connection to the server will expect a certificate if you dont have the trust enabled you wont be able to connect
Thanks -
Unable to connect remote LDAP server 2005Q1
To connect remote LDAP server with local mail server in iMS5.2, it was successful and very easy.
But, with Sun Java Messaging 2005Q1, I failed so many times when I configure mail server.
Only two things( LDAP and messaging ) are in the same machine, it was successful.
It's very weird.
In Install Guide, remote LDAP system has no problem to connect with local mail server.
Here is LDAP server version.
# ./monitor
version: 1
dn: cn=monitor
objectClass: top
objectClass: extensibleObject
cn: monitor
connectionpeak: 9
version: Sun Java(TM) System Directory Server/5.2_Patch_3 B2004.331.1125
Messaging server version is Sun Java Messaging 2005Q1.
================ Install Log ================
The following items for the product Messaging Server will be configured:
Product: Messaging Server
Location: /data/MailData
Space Required: 0 bytes
Message Transfer Agent
Message Store
Messenger Express
Ready to Configure
1. Configure Now
2. Start Over
3. Exit Configure Program
What would you like to do [1] {"<" goes back, "!" exits}?
Starting Task Sequence
===== Thu Apr 21 18:50:38 KST 2005 =====
Running /usr/sbin/groupadd mail
===== Thu Apr 21 18:50:38 KST 2005 =====
Running /usr/sbin/useradd -g mail -d / mailsrv
===== Thu Apr 21 18:50:38 KST 2005 =====
Running /usr/sbin/usermod -G mail mailsrv
===== Thu Apr 21 18:50:38 KST 2005 =====
Running /bin/rm -rf /opt/java05Q1/Mail/config /opt/java05Q1/Mail/data
===== Thu Apr 21 18:50:38 KST 2005 =====
Running /bin/chmod 600 /opt/java05Q1/Mail/lib/config-templates/Devsetup.
properties
===== Thu Apr 21 18:50:38 KST 2005 =====
Running /opt/java05Q1/Mail/lib/devinstall -l schema1:sepadmsvr:pkgcfg:config:
msg:msg_en:imta:msma:webmail:imta -v -m -i /opt/java05Q1/Mail/lib/config-
templates/config.ins /opt/java05Q1/Mail/lib/config-templates
/opt/java05Q1/Mail/lib/jars /opt/java05Q1/Mail/lib
===== Thu Apr 21 18:50:45 KST 2005 =====
Running /bin/sh -c /opt/java05Q1/Mail/sbin/imsimta clbuild -
image_file=IMTA_COMMAND_DATA IMTA_BIN:pmdf.cld
===== Thu Apr 21 18:50:46 KST 2005 =====
Running /bin/sh -c /opt/java05Q1/Mail/sbin/imsimta chbuild
===== Thu Apr 21 18:50:46 KST 2005 =====
Running /opt/java05Q1/Mail/lib/ldapmodify -h love.daou.co.kr -p 389 -D
cn=Directory Manager -j /opt/java05Q1/Mail/lib/config-templates/cfgdir23381 -c -
e /opt/java05Q1/Mail/config/cfgdir.ldif.rej -f /opt/java05Q1/Mail/config/cfgdir.
ldif
===== Thu Apr 21 18:50:46 KST 2005 =====
Running /opt/java05Q1/Mail/lib/ldapmodify -h love.daou.co.kr -p 389 -D
cn=Directory Manager -j /opt/java05Q1/Mail/lib/config-templates/ugdir23382 -c -
e /opt/java05Q1/Mail/config/usergroup.ldif.rej -f
/opt/java05Q1/Mail/config/usergroup.ldif
===== Thu Apr 21 18:50:46 KST 2005 =====
Running /opt/java05Q1/Mail/lib/ldapmodify -h love.daou.co.kr -p 389 -D
cn=Directory Manager -j /opt/java05Q1/Mail/lib/config-templates/ugdir23382 -c -
e /opt/java05Q1/Mail/config/dctree.ldif.rej -f /opt/java05Q1/Mail/config/dctree.
ldif
===== Thu Apr 21 18:50:46 KST 2005 =====
Running /opt/java05Q1/Mail/lib/ldapmodify -h love.daou.co.kr -p 389 -D
cn=Directory Manager -j /opt/java05Q1/Mail/lib/config-templates/ugdir23382 -c -
e /opt/java05Q1/Mail/config/mid_dctree.ldif.rej -f
/opt/java05Q1/Mail/config/mid_dctree.ldif
===== Thu Apr 21 18:50:47 KST 2005 =====
Running /opt/java05Q1/Mail/lib/ldapmodify -h love.daou.co.kr -p 389 -D
cn=Directory Manager -j /opt/java05Q1/Mail/lib/config-templates/ugdir23382 -c -
e /opt/java05Q1/Mail/config/last_dctree.ldif.rej -f
/opt/java05Q1/Mail/config/last_dctree.ldif
===== Thu Apr 21 18:50:47 KST 2005 =====
Running /opt/java05Q1/Mail/lib/ldapmodify -h love.daou.co.kr -p 389 -D
cn=Directory Manager -j /opt/java05Q1/Mail/lib/config-templates/ugdir23382 -c -
e /opt/java05Q1/Mail/config/pab.ldif.rej -f /opt/java05Q1/Mail/config/pab.ldif
===== Thu Apr 21 18:50:47 KST 2005 =====
Running /bin/sh -c /opt/java05Q1/Mail/sbin/imsimta cnbuild
===== Thu Apr 21 18:50:47 KST 2005 =====
Running /bin/sh -c /bin/cp /opt/java05Q1/Mail/lib/config-
templates/madman_solaris.reg /etc/snmp/conf/ims.reg
===== Thu Apr 21 18:50:47 KST 2005 =====
Running /bin/sh -c /bin/cp /opt/java05Q1/Mail/lib/config-
templates/madman_solaris.acl /etc/snmp/conf/ims.acl
===== Thu Apr 21 18:50:47 KST 2005 =====
Running /bin/sh -c /usr/bin/crle
===== Thu Apr 21 18:50:47 KST 2005 =====
Running /bin/sh -c /usr/bin/crle -s /usr/lib/secure -s /opt/java05Q1/Mail/lib
===== Thu Apr 21 18:50:48 KST 2005 =====
Running /bin/sh -c /usr/bin/crle
===== Thu Apr 21 18:50:48 KST 2005 =====
Running /bin/sh -c /bin/cp -rpf /opt/java05Q1/Mail/lib/config-templates/html
/opt/java05Q1/Mail/config/
===== Thu Apr 21 18:50:57 KST 2005 =====
Running /bin/chown -Rh mailsrv /opt/java05Q1/Mail/config/html
===== Thu Apr 21 18:50:57 KST 2005 =====
Running /bin/chgrp -Rh mail /opt/java05Q1/Mail/config/html
===== Thu Apr 21 18:50:57 KST 2005 =====
Running /bin/sh -c /bin/cp -rpf /opt/java05Q1/Mail/config
/opt/java05Q1/Mail/install/configure_20050421184758
===== Thu Apr 21 18:51:08 KST 2005 =====
Running /bin/sh -c /bin/cp -p /opt/java05Q1/Mail/lib/config-templates/Devsetup.
properties /opt/java05Q1/Mail/install/configure_20050421184758/Devsetup.
properties
Sequence Completed
PASSED: /usr/sbin/groupadd mail : status = 9
PASSED: /usr/sbin/useradd -g mail -d / mailsrv : status = 0
PASSED: /usr/sbin/usermod -G mail mailsrv : status = 3
PASSED: /bin/rm -rf /opt/java05Q1/Mail/config /opt/java05Q1/Mail/data : status
= 0
PASSED: /bin/chmod 600 /opt/java05Q1/Mail/lib/config-templates/Devsetup.
properties : status = 0
FAILED: /opt/java05Q1/Mail/lib/devinstall -l schema1:sepadmsvr:pkgcfg:config:
msg:msg_en:imta:msma:webmail:imta -v -m -i /opt/java05Q1/Mail/lib/config-
templates/config.ins /opt/java05Q1/Mail/lib/config-templates
/opt/java05Q1/Mail/lib/jars /opt/java05Q1/Mail/lib : status = 1
PASSED: /bin/sh -c /opt/java05Q1/Mail/sbin/imsimta clbuild -
image_file=IMTA_COMMAND_DATA IMTA_BIN:pmdf.cld : status = 0
PASSED: /bin/sh -c /opt/java05Q1/Mail/sbin/imsimta chbuild : status = 0
FAILED: /opt/java05Q1/Mail/lib/ldapmodify -h love.daou.co.kr -p 389 -D
cn=Directory Manager -j /opt/java05Q1/Mail/lib/config-templates/cfgdir23381 -c -
e /opt/java05Q1/Mail/config/cfgdir.ldif.rej -f /opt/java05Q1/Mail/config/cfgdir.
ldif : status = 89
FAILED: /opt/java05Q1/Mail/lib/ldapmodify -h love.daou.co.kr -p 389 -D
cn=Directory Manager -j /opt/java05Q1/Mail/lib/config-templates/ugdir23382 -c -
e /opt/java05Q1/Mail/config/usergroup.ldif.rej -f
/opt/java05Q1/Mail/config/usergroup.ldif : status = 89
FAILED: /opt/java05Q1/Mail/lib/ldapmodify -h love.daou.co.kr -p 389 -D
cn=Directory Manager -j /opt/java05Q1/Mail/lib/config-templates/ugdir23382 -c -
e /opt/java05Q1/Mail/config/dctree.ldif.rej -f /opt/java05Q1/Mail/config/dctree.
ldif : status = 89
FAILED: /opt/java05Q1/Mail/lib/ldapmodify -h love.daou.co.kr -p 389 -D
cn=Directory Manager -j /opt/java05Q1/Mail/lib/config-templates/ugdir23382 -c -
e /opt/java05Q1/Mail/config/mid_dctree.ldif.rej -f
/opt/java05Q1/Mail/config/mid_dctree.ldif : status = 89
FAILED: /opt/java05Q1/Mail/lib/ldapmodify -h love.daou.co.kr -p 389 -D
cn=Directory Manager -j /opt/java05Q1/Mail/lib/config-templates/ugdir23382 -c -
e /opt/java05Q1/Mail/config/last_dctree.ldif.rej -f
/opt/java05Q1/Mail/config/last_dctree.ldif : status = 89
FAILED: /opt/java05Q1/Mail/lib/ldapmodify -h love.daou.co.kr -p 389 -D
cn=Directory Manager -j /opt/java05Q1/Mail/lib/config-templates/ugdir23382 -c -
e /opt/java05Q1/Mail/config/pab.ldif.rej -f /opt/java05Q1/Mail/config/pab.ldif
: status = 89
PASSED: /bin/sh -c /opt/java05Q1/Mail/sbin/imsimta cnbuild : status = 0
PASSED: /bin/sh -c /bin/cp /opt/java05Q1/Mail/lib/config-
templates/madman_solaris.reg /etc/snmp/conf/ims.reg : status = 0
PASSED: /bin/sh -c /bin/cp /opt/java05Q1/Mail/lib/config-
templates/madman_solaris.acl /etc/snmp/conf/ims.acl : status = 0
PASSED: /bin/sh -c /usr/bin/crle : status = 0
PASSED: /bin/sh -c /usr/bin/crle -s /usr/lib/secure -s /opt/java05Q1/Mail/lib :
status = 0
PASSED: /bin/sh -c /usr/bin/crle : status = 0
PASSED: /bin/sh -c /bin/cp -rpf /opt/java05Q1/Mail/lib/config-templates/html
/opt/java05Q1/Mail/config/ : status = 0
FAILED: /bin/chown -Rh mailsrv /opt/java05Q1/Mail/config/html : status = 1
FAILED: /bin/chgrp -Rh mail /opt/java05Q1/Mail/config/html : status = 1
PASSED: /bin/sh -c /bin/cp -rpf /opt/java05Q1/Mail/config
/opt/java05Q1/Mail/install/configure_20050421184758 : status = 0
PASSED: /bin/sh -c /bin/cp -p /opt/java05Q1/Mail/lib/config-templates/Devsetup.
properties /opt/java05Q1/Mail/install/configure_20050421184758/Devsetup.
properties : status = 0
FAILURE: Number of task failed:9. Please check install log
/opt/java05Q1/Mail/install/configure_20050421184758.log
for further details.
Hit NEXT to continue
Configuration Details:
Product Result More Information
1. Messaging Server Failed Available
2. Done
Enter the number corresponding to the desired selection for more
information, or enter 2 to continue [2] {"!" exits}:
================
Any Good ADVICE would be welcomed.I already did what you advised - installing admin server on each machine. I tested throught connecting admin console,modifying ldap,mail config and adding users.
To say about running 'comm_dssetup.pl' script , if I didn't I could not even setup and configure mail server.
In a month, there is a chance to setup both mail and ldap servers on diferrent machines.
I am a little bit worry. What did I wrong?
welcomed... any words of advice.. -
Console cannot connect to ldap after SSL config
Hi,
I configured our iplanet DS 5.0 to use SSL (requested cert from DS, signed and created a new cert with openSSL, verified that DS could read that cert, and turned on ssl). Restarted DS and admin-serv. The ldap is working but ldaps is not. The console is unable to connect to DS and just hangs when trying to connect. The console is configured to connect to ldap not ldaps, but when I view the configuration for DS in console it shows port 636. So -
- how do I make the console use port 389 to connect to the DS?
- What do I need to do to get ldaps working?
TIA.
Raj DolasThere are some limitations in using the Console when SSL is enabled for the Directory Server. These are documented... in the release notes at least.
Regards,
Ludovic. -
I am trying to connect to LDAP to check an entry.
Following is the servlet code I am using.
/* @author
This class is establish to connect the LDAP user directory and get the user attributes
(SSO_USERID, USER_ID, USER_NAME and USER_MAIL) from the LDAP User directory. */
import java.io.*;
import java.util.Enumeration;
import java.util.*;
import javax.naming.*;
import javax.naming.directory.*;
import javax.servlet.*;
import javax.servlet.http.*;
import java.sql.*;
import java.lang.*;
public class LDAPSearch extends HttpServlet
//public static String MY_FILTER1 = "";
public static String MY_FILTER2 = "";
public static String INITCTX="com.sun.jndi.ldap.LdapCtxFactory";
public static String MY_HOST="ldap://3.245.97.5:389";
public static String MY_SEARCHBASE="o=ge.com";
public void doGet (HttpServletRequest request,HttpServletResponse response) throws IOException, ServletException
doPost(request,response);
public void doPost(HttpServletRequest request, HttpServletResponse response)throws IOException, ServletException
PrintWriter out=response.getWriter();
try
HttpSession session = request.getSession(true);
String str_user=(String)request.getParameter("txtSearch");
//out.println(str_user);
String ssoid = request.getParameter("ssoid");
//String str_parname = (String)request.getParameter("selNames");
System.out.println("str_user"+str_user);
String firstName="";
String lastName="";
String str_complete = "";
//char data[]={str_user,',');
StringTokenizer st=new StringTokenizer(str_user,",");
int stCount = st.countTokens();
if(stCount == 1)
firstName = st.nextToken();
System.out.println("firstName "+firstName);
else
while(st.hasMoreTokens())
lastName=st.nextToken();
firstName=st.nextToken();
//out.println("firstName "+firstName);
//out.println("lastName "+lastName);
if(ssoid == null)
if(stCount == 1)
MY_FILTER2 = "(givenName="+firstName+")";
System.out.println("MY_FILTER2"+MY_FILTER2);
else
MY_FILTER2 = "(&(givenName="+firstName+")(sn="+lastName+"))";
//out.println("MY_FILTER2"+MY_FILTER2);
else
MY_FILTER2 = "(cn="+ssoid+")";
out.println("<html>");
out.println("<head><title>SSO User lookup / Search</title></head>");
out.println("<script language=\"javascript\">");
out.println("function back(){");
out.println("document.frmLDAPSearch.ssoid.value = document.frmLDAPSearch.selNames[document.frmLDAPSearch.selNames.selectedIndex].value;");
out.println("document.frmLDAPSearch.target='ERPUser';");
out.println("document.frmLDAPSearch.submit();");
out.println("window.close();");
out.println("}");
out.println("</script>");
out.println("<BODY BGCOLOR='#FFFFFF'><table border='0' align = 'center' width = '100%' >");
out.println("<form name=\"frmLDAPSearch\" method=\"get\" action='/servlet/LDAPSearch'>");
String str_ssoid = "";
String str_uid="";
String str_mailid = "";
String str_name = "";
String last = "";
String str_fullname = "";
//out.println("Origninal name "+str_parname);
Hashtable env=new Hashtable();
env.put(Context.INITIAL_CONTEXT_FACTORY,INITCTX);
env.put(Context.PROVIDER_URL,MY_HOST);
DirContext ctx=new InitialDirContext(env);
SearchControls constraints=new SearchControls();
constraints.setSearchScope(SearchControls.SUBTREE_SCOPE);
Vector vOut = new Vector();
NamingEnumeration results=ctx.search(MY_SEARCHBASE,MY_FILTER2,constraints);
while(results !=null && results.hasMore())
SearchResult sr=(SearchResult)results.next();
String dn=sr.getName() +"," +MY_SEARCHBASE;
Attributes attrs=sr.getAttributes();
for(NamingEnumeration ne=attrs.getAll();ne.hasMoreElements();)
Attribute attr=(Attribute)ne.next();
String attrID=attr.getID();
if(attrID.equals("mail"))
Enumeration vals=attr.getAll();
out.println("<font color=\"red\">");
str_mailid = (String)vals.nextElement();
if(attrID.equals("gessouid"))
Enumeration vals=attr.getAll();
out.println("<font color=\"red\">");
str_ssoid = (String)vals.nextElement();
if(attrID.equals("uid"))
Enumeration vals=attr.getAll();
out.println("<font color=\"red\">");
str_uid = (String)vals.nextElement();
if(attrID.equals("givenname"))
Enumeration vals=attr.getAll();
out.println("<font color=\"red\">");
str_name = (String)vals.nextElement();
for(Enumeration vals=attr.getAll();vals.hasMoreElements();)
vals.nextElement();
if(attrID.equals("sn"))
Enumeration vals=attr.getAll();
out.println("<font color=\"green\">");
last = (String)vals.nextElement();
if(attrID.equals("cn"))
Enumeration vals=attr.getAll();
out.println("<font color=\"green\">");
str_complete = (String)vals.nextElement();
System.out.println("str_complete "+str_complete);
//if(lastName.equalsIgnoreCase(last) || (stCount == 1))
if(attrID.equals("cn"))
int i=0;
Enumeration vals=attr.getAll();
out.println("<font color=\"red\">");
str_fullname = (String)vals.nextElement();
vOut.addElement(new String(str_fullname));
// } //END OF IF LASTNAME EQUALS
}//END OF FOR LOOP
}//END OF WHILE"#FF00FF"
out.println("<form><body bgcolor='#00FFFF' >");
out.println("<div align=\"CENTER\" >");
out.println("<input type=hidden name=txtSearch value='"+str_user+"'>");
System.out.println("LDAP SEARCH: txtSearch="+str_user);
out.println("<input type=hidden name=ssoid value=''>");
String multiple=request.getParameter("multiple");
if (multiple!=null)
if (multiple.equalsIgnoreCase("true"))
out.println("<br>");
out.println("<table align=\"center\" >");
out.println("<tr><td align=\"center\"><select name='selNames' size=3>");
out.println("<option value='"+vOut.elementAt(0).toString()+"' selected>");
out.println(vOut.elementAt(0).toString());
out.println("</option>");
for(int i=1;i<vOut.size();i++)
out.println("<option value='"+vOut.elementAt(i).toString()+"'>");
out.println(vOut.elementAt(i).toString());
out.println("</option>");
System.out.println("i"+i);
out.println("</select><td></tr>");
out.println("<tr bgcolor='#00638C'><td align=\"center\"><input type=\"button\" value=\"populate\" onclick=\"back();\"></td>");
out.println("</td></tr></table>");
out.println("</div></body</form>");
else{
if(vOut.size()==1)
session.putValue("SSOID",str_ssoid);
session.putValue("USERID",str_uid);
session.putValue("EMAIL",str_mailid);
session.putValue("NAME",str_complete);
response.sendRedirect("/servlet/Protected/InvtAddUser?txtSearch="+str_user);
else if(vOut.size()==0)
out.println("<SCRIPT SRC='/InvTrack/InvTrack.js'>");
out.println("</SCRIPT>");
out.println("<BODY BGCOLOR='#FFFFFF' onUnload='winLogout()' >");
out.println("<table border='0' cellpadding='0' cellspacing='0' width='100%' >");
out.println("<tr><td><img src='/ge.gif'alt='GE Medical Systems'></td>");
out.println("<td><img src='/gr_toprighthd.jpg' alt='GE Medical Systems'></td></tr></table>");
out.println("<BR><BR><BR>");
out.println("<P ALIGN='CENTER'><FONT COLOR='#333399' SIZE='4'><B><FONT FACE='ARIAL, HELVETICA, SANS-SERIF'> <FONT COLOR='#800000'>Sorry!</FONT></FONT></B></FONT></p>");
out.println("<P ALIGN='CENTER'><FONT COLOR='#333399' SIZE='4'><FONT FACE='ARIAL, HELVETICA, SANS-SERIF'> either you have typed incorrectly <br>or user has not registered a GEMS Intranet Single Sign On Userid </FONT></p>");
out.println("<P ALIGN='CENTER'><FONT COLOR='#333399' SIZE='4'><FONT FACE='ARIAL, HELVETICA, SANS-SERIF'><A HREF=\"Javascript:history.back();\">Back</A></FONT></P>");
out.println("</body>");
else
response.sendRedirect("/servlet/Protected/InvtAddUser?multiple=true&txtSearch="+str_user);
out.println("</form></body></html>");
catch(Exception e)
out.println(e.toString());
I am getting the followung exception::
[03/Feb/2002:16:46:29] failure ( 481): Internal error: exception thrown from the servlet service function (uri=/servlet/LDAPSearch): java.lang.NoClassDefFoundError: com/sun/jndi/toolkit/ctx/ComponentDirContext, Stack: java.lang.NoClassDefFoundError: com/sun/jndi/toolkit/ctx/ComponentDirContext
at java.lang.ClassLoader.defineClass0(Native Method)
at java.lang.ClassLoader.defineClass(ClassLoader.java, Compiled Code)
at java.security.SecureClassLoader.defineClass(SecureClassLoader.java, Compiled Code)
at java.net.URLClassLoader.defineClass(URLClassLoader.java, Compiled Code)
at java.net.URLClassLoader.access$1(URLClassLoader.java, Compiled Code)
at java.net.URLClassLoader$1.run(URLClassLoader.java, Compiled Code)
at java.security.AccessController.doPrivileged(Native Method)
at java.net.URLClassLoader.findClass(URLClassLoader.java, Compiled Code)
at java.lang.ClassLoader.loadClass(ClassLoader.java, Compiled Code)
at sun.misc.Launcher$AppClassLoader.loadClass(Launcher.java, Compiled Code)
at java.lang.ClassLoader.loadClass(ClassLoader.java, Compiled Code)
at com.sun.jndi.ldap.LdapCtxFactory.getInitialContext(LdapCtxFactory.java:77)
at javax.naming.spi.NamingManager.getInitialContext(NamingManager.java:671)
at javax.naming.InitialContext.getDefaultInitCtx(InitialContext.java:242)
at javax.naming.InitialContext.init(InitialContext.java:218)
at javax.naming.InitialContext.<init>(InitialContext.java:194)
at javax.naming.directory.InitialDirContext.<init>(InitialDirContext.java:87)
at LDAPSearch.doPost(LDAPSearch.java, Compiled Code)
at LDAPSearch.doGet(LDAPSearch.java:34)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:701)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:826)
at com.netscape.server.http.servlet.NSServletRunner.Service(NSServletRunner.java:462)
I have included ldap.jar and jndi.jar in the CLASSPATH for IPlanetWebServer that I am using.
Please get back.java.lang.NoClassDefFoundError: com/sun/jndi/toolkit/ctx/ComponentDirContext
Seems pretty straight forward to me. That class isn't there, and it wants it. Check all your classpaths to verify that class is in them. I bet it's not. Also, a side note. You see where it says "compiled code" in the stack trace instead of a line number. You can force the VM to interpret to give you a line number by setting your JAVA_COMPILER variable to "none" Or depending on the version of the VM you are using you can supply the -Xint switch which forces interpretation. -
OWSM won't connect to ldap for authentication in policy
System: 10.1.3 on Windows with SOA Suite
I've got a web service deployed, got OWSM running, have registered the web service with a gateway component and have built a basic policy (just to log) in the Pipeline "request" and Pipeline "Response" parts of the governing policy; this basic policy works correctly. However, when I try to add an "Ldap Authenticate" step to the Pipeline "Request" part of the policy, OWSM doesn't seem to really try to connect to the LDAP. I have tried two LDAPs (Lotus Notes and OID) that are operational - I can access both of them via command line using the same credentials with which I configured the "Ldap Authenticate" step. Yet, when I invoke the web service with the "Ldap Authenticate" step configured in the policy I get the following exception:
A fault was thrown in the step Client.AuthenticationFault:Invalid username or password
I'm pretty dang sure I have entered the correct credentials in the "Ldap Authenticate" configuration (I checked it 45,000 times) - it seems that OWSM really isn't trying to connect to the LDAPs - and there's no logging that I've found that will tell me what it's really trying to do.
Anyone have any hints or know what's going on?I have the same problem.
With the help of Vikas's instuctions for changing log level I could log the gateway's activities:
security.WSBasicCredsExtractor - Element Value:farbod
security.WSBasicCredsExtractor - Element Value:mypassword
security.WSBasicCredsExtractor - Successfully retrieved username and password
security.WSBasicCredsExtractor - Removing the UsernameToken Header
ldap.DirContextHolder - Creating new directory context
ldap.LDAPAuthenticatorStep - Failed to connect to ldap server.
I am unsure whether my LDAP settings in OWSM are correct:
my server name is nfsserver.com(OID Server) and I have this user in OID:
cn=farbod,cn=Users,dc=nfsserver,dc=com
so I think these settings should work:
LDAP host (*) nfsserver
LDAP port (*) 389
User objectclass (*) inetOrgPerson
LDAP baseDN (*) cn=Users,dc=nfsserver,dc=com
LDAP adminDN (*) cn=orcladmin,cn=Users,dc=nfsserver,dc=com
LDAP admin password ******
LDAP admin login enabled (*) true
Uid Attribute (*) string uid
User Attributes to be retrieved uid
Is the bold part correct?
Regards
Farbod -
Error in people search when connecting through ldaps port
Hello,
I am getting following error when doing windows people search through ldaps port(636).
The specified directory service could not be reached.
The service may be temporarily unavailable or the server name may be incorrect.
It is working fine when i am connecting thro ldap port.
Could any one help me in this regard
-malaJust setting the port in the console does not enable SSL. Do you have a certificate installed on that instance? If so, does your ldap client have that certificate (or its CA certificate) as a trusted cert? If not, you may need to run certutil to create/update the client certificate database.
-
Hi,
where may I find information/documentatio/toturials of how to connect to LDAP from java classes?
Please help.
Thankyou,
Nadir.Nadir,
Here:
http://java.sun.com/products/jndi/docs.html
You can find many things there and the tutorial is good.
Follow the links in http://java.sun.com/products/jndi/index.html#DOWNLOAD12, you can get many useful examples (great!).
Some code work fine in my app:
import javax.naming.*;
import javax.naming.directory.*;
env = new Hashtable(5, 0.75f);
env.put(Context.INITIAL_CONTEXT_FACTORY, "com.sun.jndi.ldap.LdapCtxFactory");
env.put(Context.PROVIDER_URL, URL);
env.put(Context.REFERRAL, "ignore");
env.put(Context.SECURITY_AUTHENTICATION, "simple");
env.put(Context.SECURITY_PRINCIPAL, DN); //use your own one
env.put(Context.SECURITY_CREDENTIALS, PassWord); //use your own one
try {
ctx = new InitialDirContext(env);
} catch (NamingException e) {
e.printStackTrace();
Hope this helps.
Cheers,
George -
How to resolve "Connection to LDAP server failed." error?
Hello,
I have installed Coldfusion8 on one of my server that was having ColdFusionMX earlier.
The ColdFusionMX admin settings are automatically transferred to the new Coldfusion8 admin page after installation.
Also I have configured all my websites at the time of installation.
After all when I am trying to login into one of my website system is throwing the below error.
"Connection to LDAP server failed."
Prevously it was working well with coldfusionMX. After installed Coldfusion8 I am facing this problem.
Is there anything to do more with cf admin settings page or is this problem is with the code? (Infact I havent modified my cfm code)
Please find the piece of code that I am using.
<cfldap action="QUERY" server="#application.LDAPServer#" port="#application.LDAPPort#" start="#application.LDAPBase#" name="search" attributes="alias, dn, uid, technicalCareerLevel, locationorgunit, givenName, sn" filter="#filter#" scope="SUBTREE" maxRows="2">
Anybody can assist me on this?
Thanks in advance.
Manoz.I have fixed this problem successfully.
The problem was with the referral attribute of the cfldap tag.
After adding this (referral="yes") attribute to my code I am able to login into my website.
<cfldap action="QUERY" server="#application.LDAPServer#" port="#application.LDAPPort#" start="#application.LDAPBase#" name="search" attributes="alias, dn, uid, technicalCareerLevel, locationorgunit, givenName, sn" filter="#filter#" scope="SUBTREE" maxRows="2" referral="yes">
Any way thanks for your assistance!!!!! -
Post Author: trueblueg8tor
CA Forum: Data Connectivity and SQL
Thanks for reading. I'm trying to write Crystal reports against ldap, more specifically, MS ADAM. Does anyone have any experience/ideas about how I can go about doing this?Hi,
I am having the same question.
I am using Crystal Reports 2008. From Designer, I want to establish a connection to LDAP (Microsoft Active Directory). Can anyone share info on how to accomplish this?
Thank You! -
Connect with ldap.ora and sqlnet.ora
Hi
I am trying to connect Raptor to 9i oracle server. Our server connects using ldap.ora and sqlnet.ora files. I looked at some threads about this issue but do not understand how to connect. Is there a step by step instruction for connecting this way?
Thanks
DHHi VRamirez,
That's a pretty cool workaround. I'm sorry to hear it didn't work perfectly.
Here is the "low tech" workaround anyone can use -
From the %ORACLE_HOME% where your sqlnet.ora is, run %ORACLE_HOME%\bin\tnsping eg.
C:\> tnsping oracle.world
TNS Ping Utility for 32-bit Windows: Version 10.2.0.1.0 - Production on 21-APR-2006 22:56:31
Copyright (c) 1997, 2005, Oracle. All rights reserved.
Used parameter files:
c:\oracle\oracli92\network\admin\sqlnet.ora
Used LDAP adapter to resolve the alias
Attempting to contact (DESCRIPTION=(SOURCE_ROUTE=OFF)(ADDRESS_LIST=(ADDRESS=(PROTOCOL=TCP)(HOST=oracle.xxxx.xx)(
PORT=xxxx)))(CONNECT_DATA=(SID=ORCL))(SRVR=SHARED))
OK (200 msec)
C:\>
Now copy the (DESCRIPTION=...) and paste it into the advanced TNS info tab in the Connections dialog. This works for me for everything but RAC TNS aliases which have load balancing and failover configured -- the advanced TNS info tab chokes on those. For such connections, I was able to use the JDBC string.
-Natalka
http://toolkit.rdbms-insight.com -
Connecting to LDAP wtth current security credentials
Hey All
I want to connect to LDAP SERVER(Active Directory in my case)
without specified security credentials in my code.
I want Ldap to use security credentials of my user.
Thanks
IshayHad you bothered to look a little further down the first page of the forum, you would have found the answer to your question.
http://forum.java.sun.com/thread.jspa?threadID=732433&tstart=0 -
Hi,
I need open a conenction to ldap to verify if user exists in group, but i haven't password of user ORCLADMIN or PORTAL. I need create a user what open a connection to ldap. A single user not connect sucessfull.
with a single user a have the error:
javax.naming.AuthenticationException: [LDAP: error code 49 - Invalid Credentials]
the same code with user orcladmin connect sucessfull.
thanks,
Marcio MestiThanks group,
but i resolve my problem alone. -
Trouble with Unity Connection and LDAP
Our CUCM 8.6 is currently integrated with LDAP, this was done before I started with the company, I'm working on getting the CUC integrated as well, but I keep getting the following error message:
Error while Connecting to ldap://xx.xx.xx.xx:389, null
I took the exact same settings that was used on the cucm (the LDAP syncs fine with CUCM)
LDAP Configuration name: ActiveDirectory
LDAP Manager Distinguished Name: [email protected]
LDAP Password: *******
LDAP User Search Base: DC=xyz,DC=net
User ID: sAMAccountName
Middle Name: middleName
Manage ID: manager
phone number: ipPhone
First name: givenName
Last Name: sn
Department: department
Mail ID: mail
User ID: sAMAccountName
Middle Name: middleName
Manage ID: manager
phone number: ipPhone
First name: givenName
Last Name: sn
Department: department
Mail ID: mail
Any ideas what could be causing that error? I've ran into this before somewhere but was able to figure out that it was something with the way I had put in the OU..This time I'm really I have not idea, especially since I took the settings from the LDAP setup in CUCM.Hi Chris,
Yes I'm sure the sync is still working, I've went into CUCM and did a full sync and it was successful, I also hit save and that was successful as well, that was the first thing I did just to make sure it was working, I was thinking like you that maybe it wasn't working properly ...I'll take some screen shots and post shortly
Fred
Here's a screenshot of both CUCM and CUC
Message was edited by: Fred Rawlings -
Problem while connecting through ldap console
hi ,
we have our directory server 5.2 sp4 on red hat linux 4.
i am able to connect through ldap broswer and ldapsearch is working but when i mtrying to connect through console it is saying as incorrect password or directory problem.i m not able to figure out what can be the problem. any help is appreciated.
Thanks
Message was edited by:
ap7926yes admin server is up and here is the log
- Sun Java(TM) System Directory Server/5.2_Patch_4 B2005.230.0415 (32-bit) starting up
[18/Aug/2007:09:55:11 -0400] - Listening on all interfaces port 389 for LDAP requests
[18/Aug/2007:09:55:11 -0400] - slapd started.
[18/Aug/2007:09:55:11 -0400] - INFO: 100 entries in the directory database.
[18/Aug/2007:09:55:11 -0400] - INFO: add:0, modify:0, modrdn:0, search:0, delete:0, compare:0, bind:0 since startup.
and here is log from access
conn=37 op=-1 msgId=-1 - fd=30 slot=30 LDAP connection from 192.168.1.43 to 192.168.1.4
conn=37 op=-1 msgId=-1 - closing - B1
conn=37 op=-1 msgId=-1 - closed.
Maybe you are looking for
-
How do I combine a group of songs into an album?
I downloaded a group of songs from a single artist into my iTunes on my PC and created a playlist, but when I sync with my iPod, they sinc as single songs. How do I group them so that they are in a single folder and sync'd that way?
-
I'm a little confused here about how timecode is displayed or even if it can be displayed short of some video effect helper tool or whatever. I use a Sony (sd) VX2100 that shoots with miniDV and produces DV-avi capture clips. Those clips are named wi
-
Can't load photos into iphoto 6
Have many hundreds of small Sony Mavica cd-r discs that will not import into iphoto and cannot be read by Preview. Disc is read by external Qfire cdrw drive and files are displayed on desktop but each time I try to open a .jpg photo file it states:"C
-
My search box types repeated letters without my input, eg. "cccccccccccccccccccccccccccccccc"
Is it a virus that would make my search box type letters on its own like "ccccccccccccccccccccccccccccccccc" or would this be an error with my keyboard?
-
Viewing or closing an Report causes an GPF
Good evening from Italy! Some of mine reports are causing an GPF when opening or closing them from my VB6 application; in the details of the Microsoft GPF Error Window - when it opens - I found sometimes the <cslibu-2-0-0.dll> and sometimes the <crax