Invalid ID store configuration LDAP : Error code 32- No Such object

Similar Messages

• Use of LdapRealm results in [LDAP: error code 32 - No Such Object]

  Hi,
  I'm testing with the example 'basic-auth' of the SJSAS7 2004Q2 with the LdapRealm.
  This little test app can successfully authenticate my user against LDAP.
  package de.zdf.qmv.helloworld.test;
  import javax.naming.*;
  import javax.naming.directory.*;
  import java.util.Hashtable;
  public class TestLdap {
    public static void main(String[] args) {
      Hashtable env = new Hashtable();
      env.put(Context.INITIAL_CONTEXT_FACTORY, "com.sun.jndi.ldap.LdapCtxFactory");
      env.put(Context.PROVIDER_URL,            "ldap://123.123.123.123:389/o=aaa");
      env.put(Context.SECURITY_AUTHENTICATION, "simple");
      env.put(Context.SECURITY_PRINCIPAL,      "uid=myuser,ou=ddd,o=ccc,o=bbb,o=aaa");
      env.put(Context.SECURITY_CREDENTIALS,    "mypwd");
      try {
        DirContext ctx = new InitialDirContext(env);
        ctx.close();
      } catch (Exception e) {
        e.printStackTrace();
  }But when I try to use these Settings for the LDAP Security Realms in the AppServer it doesn't work.
  <auth-realm name="ldap" classname="com.iplanet.ias.security.auth.realm.ldap.LDAPRealm">
    <property value="ldap://123.123.123.123:389/o=aaa" name="directory"/>
    <property value="ou=ddd,o=ccc,o=bbb,o=aaa" name="base-dn"/>
    <property value="ldapRealm" name="jaas-context"/>
  </auth-realm>I get this error:
  AM: Processing login with credentials of type: class com.sun.enterprise.security.auth.login.PasswordCredential
  FEIN: Logging in user [myuser] into realm: ldap using JAAS module: ldapRealm
  AM: Login module initialized: class com.iplanet.ias.security.auth.login.LDAPLoginModule
  AM: search: baseDN: ou=ddd,o=ccc,o=bbb,o=aaa  filter: uid=myuser
  WARNUNG: SEC1106: Error during LDAP search with filter [uid=myuser].
  WARNUNG: SEC1000: Caught exception.
  javax.naming.NameNotFoundException: [LDAP: error code 32 - No Such Object]; remaining name 'ou=ddd,o=ccc,o=bbb,o=aaa'Is the base-dn of the LDAP Security Realms properties the equivalent to the SECURITY_PRINCIPAL (without uid= )?
  Is there a missing property in the LDAP Security Realms properties to get this work?
  Thanks for your help

  I have the same error with my code...
  Hashtable env = new Hashtable();
  env.put(Context.INITIAL_CONTEXT_FACTORY, "com.sun.jndi.ldap.LdapCtxFactory");
  env.put(Context.PROVIDER_URL, "ldap://localhost");
  Context ctx = new InitialContext(env);
  SQLServerDataSource mds = new SQLServerDataSource();
  ctx.bind("jdbc/, mds);
  // ERROR!!!!LDAP: error code 32 - No Such Object
  I just installed the qcslapd.exe, running qcslapd -debug i get the result:
  20030514 14:28:13 conn=6 fd=2 connection from e700 (127.0.0.1)
  20030514 14:28:13 conn=6 op=0 BIND dn="" method=128
  20030514 14:28:13 unknown version 3
  20030514 14:28:13 conn=6 op=1 BIND dn="" method=128
  20030514 14:28:13 conn=6 op=0 RESULT err=2 tag=97 nentries=0
  20030514 14:28:13 conn=6 op=1 RESULT err=0 tag=97 nentries=0
  20030514 14:28:13 conn=6 op=2 SRCH base="jdbc" scope=0 filter="(objectclass=*)"
  20030514 14:28:14 conn=6 op=2 RESULT err=32 tag=101 nentries=0
  can you help... HELP

• LDAP Error code:32

  Hi All
  I configured LDAP resource adapter in IDM 6.0. I was trying to reconcile and it was throwing this error
  Error iterating accounts for resource LDAP localhost:
  com.waveset.util.WavesetException: There was a problem enumerating accounts com.waveset.util.WavesetException: Error iterating over objects javax.naming.NameNotFoundException: [LDAP: error code 32 - No Such Object]
  Everything in LDAP looks good. Not able to figure out where i amde a mistake. Any help is appreciated
  Thanks
  sungirl

  Hi
  Answering my own question. There was a mistake in Base DN in resource configuration. Correcting that fixed the error.
  Thanks
  sungirl

• UMU gives LDAP: error code 32

  when i run umu phase=one then i get following message:
  Directory error::[LDAP: error code 32 - No Such Object]
  Here the content of my parfile:
  DBADMIN=system:******
  DBLOCATION=dwh12.pdp.postbank.nl:1521:tadm
  DIRLOCATION=dwh14.pdp.postbank.nl:3130
  ENTADMIN=cn=orcladmin:******
  USERS=LIST
  USERSLIST=lcornelis
  CONTEXT="dc=Users, dc=dwh, dc=postbank, dc=nl"
  It looks like there is a problem in the context ..but thats how it is in oid. Does anybody know what is going on.
  thanks

  That is the "no such Object" message in the LDAP protocol, maybe you should take a look at the rfc2251 before going on with LDAP. Maybe you are trying to access an unexisting entry in the ldap server.
  hope it helps

• Javax.naming.AuthenticationException: [LDAP: error code 49 - Invalid Cre...

  Sir/Madam,
  i am working on Windows Platform and I am getting this error when i want ot configure the LDAP.
  Please suggest
  javax.naming.AuthenticationException: [LDAP: error code 49 - Invalid Credentials]
       at com.sun.jndi.ldap.LdapCtx.mapErrorCode(LdapCtx.java:3005)
       at com.sun.jndi.ldap.LdapCtx.processReturnCode(LdapCtx.java:2951)
       at com.sun.jndi.ldap.LdapCtx.processReturnCode(LdapCtx.java:2753)
       at com.sun.jndi.ldap.LdapCtx.connect(LdapCtx.java:2667)
       at com.sun.jndi.ldap.LdapCtx.<init>(LdapCtx.java:287)
       at com.sun.jndi.ldap.LdapCtxFactory.getUsingURL(LdapCtxFactory.java:175)
       at com.sun.jndi.ldap.LdapCtxFactory.getUsingURLs(LdapCtxFactory.java:193)
       at com.sun.jndi.ldap.LdapCtxFactory.getLdapCtxInstance(LdapCtxFactory.java:136)
       at com.sun.jndi.ldap.LdapCtxFactory.getInitialContext(LdapCtxFactory.java:66)
       at javax.naming.spi.NamingManager.getInitialContext(NamingManager.java:667)
       at javax.naming.InitialContext.getDefaultInitCtx(InitialContext.java:288)
       at javax.naming.InitialContext.init(InitialContext.java:223)
       at javax.naming.InitialContext.<init>(InitialContext.java:197)
       at javax.naming.directory.InitialDirContext.<init>(InitialDirContext.java:82)
       at TestClient.main(TestClient.java:33)
  Thanks in advance.
  Regards
  Neelamadhab

  javax.naming.AuthenticationException: [LDAP: error code 49 - Invalid Credentials]LDAP is rejecting your credentials (username / password). Make sure your credentials are coorectly given, otherwise get help from LDAP admin.
  regards,
  Sekar

• [LDAP: error code 49 - Invalid Credentials]

  New to OID. Using Jdev 10.1.3 and then have following code. user is apenlast and password is penlast2.
  I want to get all the attributes for this user from OID. But I keep getting this error.
  javax.naming.AuthenticationException: [LDAP: error code 49 - Invalid Credentials]
  Actually from SSO login screen, if I try login using apenlast/penlast2 I can successfully login to OID. Then why this error from code ??
  InitialDirContext ctx1 = ConnectionUtil.getDefaultDirCtx
  ( "ormi://br-dev3.fjcs.net:399",
  "389",
  "cn=apenlast",
  "penlast2" );
  System.out.println("TTTTTTTTTTTTTTTTTTTTT "+ctx1.getAttributes("uid"));

  probably you're not using using the fully qualified DN.
  the users are stored by default under cn=users,dc=yourDOMAIN
  so u should try cn=apenlast,cn=users,dc=yourDOMAIN.
  regards,
  --Olaf                                                                                                                                                                                                                                                                                                                                                                                                   

• LDAP: error code 21 - Invalid Attribute Syntax

  I have written a java program to create an LDAP user. Sometime it works fine but sometimes it gives error. Detailed error is given below:
  createLDAPAgencyUser() : Inside Exception - javax.naming.directory.InvalidAttributeValueException: [LDAP: error code 21 - Invalid Attribute Syntax]; remaining name 'uid=VINMUMBAI,ou=fci,o=cw,c=in'
  javax.naming.directory.InvalidAttributeValueException: [LDAP: error code 21 - Invalid Attribute Syntax]; remaining name 'uid=VINMUMBAI,ou=fci,o=cw,c=in'
       at com.sun.jndi.ldap.LdapCtx.mapErrorCode(LdapCtx.java:3001)
       at com.sun.jndi.ldap.LdapCtx.processReturnCode(LdapCtx.java:2934)
       at com.sun.jndi.ldap.LdapCtx.processReturnCode(LdapCtx.java:2740)
       at com.sun.jndi.ldap.LdapCtx.c_createSubcontext(LdapCtx.java:777)
       at com.sun.jndi.toolkit.ctx.ComponentDirContext.p_createSubcontext(ComponentDirContext.java:319)
       at com.sun.jndi.toolkit.ctx.PartialCompositeDirContext.createSubcontext(PartialCompositeDirContext.java:248)
       at com.sun.jndi.toolkit.ctx.PartialCompositeDirContext.createSubcontext(PartialCompositeDirContext.java:236)
       at javax.naming.directory.InitialDirContext.createSubcontext(InitialDirContext.java:176)
       at LDAPAgencyCreation4C.createLDAPAgencyUser(LDAPAgencyCreation4C.java:123)
  Stop main method.
       at LDAPAgencyCreation4C.main(LDAPAgencyCreation4C.java:45)
  Does anyone have idea to resove it, please let me know.
  Thanks in advance,
  Vinod Shivhare

  I got the solution. One attribute which I was sending it's name was incorrect. Attribute names are very case sensitive.
  -Vinod.

• LDAP: error code 48 - Server is Configured to Deny Anonymous Binds

  Is it possible to authenticate user from java code when Anonymous binds in Oracle Internet Directory is disabled? I have been trying to make direct LDAP calls for authentication but it gives me error as below:
  javax.naming.AuthenticationNotSupportedException: [LDAP: error code 48 - Server is Configured to Deny Anonymous Binds];
  Appreciate help from fellow members.
  Thanks,
  Shivam

  You create a user entry in OID specifically to be used by your java application. Some folks refer to this type of user entry as a proxy or service or utility account. You may not want this service account to be located in your cn=users,dc=acme,dc=com container with the reset of your normal user entries. You may want to create a cn=serviceAccount,dc=acme,dc=com container (as an example) for all of these types of accounts. Or you can put it in your cn=users container, that's fine as well.
  cn=java-app-01,cn=serviceAccount,dc=acme,dc=com
  or
  cn=java-app-01,cn=users,dc=acme,dc=com
  Then your java app gets configured to use this account to perform an authenticated bind/search (in lieu of the anonymous bind/search) to find the full DN of the user logging into your java app. Most ldap enabled applications ask the user to provide only the common name (cn) or unixID (uid) and password at the application login prompt.
  1. The app then performs an anonymous bind/search for the full user entry DN of the user attempting to authenticate into the application.
  or
  2. The app then performs an authenticated bind/search (using the service account) for the full user entry DN of the user attempting to authenticate into the application.
  ...once the app receives back the full user entry DN, the app takes that full DN (dn: cn=gatesb,cn=users,dc=acme,dc=com) and the password provided by the user and attempts the user authentication.
  Hope this helps.....

• "[LDAP: error code 34 - Invalid DN]" Why?

  Hi all, I have the following problem, when I try to test my Plumtree connection to LDAP Sun One Server I get the following error message:
  Attempt to connect to LDAP Server failed. Double check your installation and logon credentials.
  Could not create InitialDirContext: [LDAP: error code 34 - Invalid DN] [LDAP: error code 34 - Invalid DN]
  I have entered LDAP URL: georgi.masq
  LDAP port: 49129
  ldap user: admin
  ldap pass: XXXXXXX
  With this parameters I can login into SunOne ADmin Console, unfortunately something's wrong and I don't know what, if anyone has any ideas please tell me .

  Hi all, I have the following problem, when I try to
  test my Plumtree connection to LDAP Sun One Server I
  get the following error message:
  Attempt to connect to LDAP Server failed. Double
  check your installation and logon credentials.
  Could not create InitialDirContext: [LDAP: error code
  34 - Invalid DN] [LDAP: error code 34 - Invalid DN]
  I have entered LDAP URL: georgi.masq
  LDAP port: 49129
  ldap user: admin
  ldap pass: XXXXXXX
  With this parameters I can login into SunOne ADmin
  Console, unfortunately something's wrong and I don't
  know what, if anyone has any ideas please tell me .
  Hi all, I have the following problem, when I try to
  test my Plumtree connection to LDAP Sun One Server I
  get the following error message:
  Attempt to connect to LDAP Server failed. Double
  check your installation and logon credentials.
  Could not create InitialDirContext: [LDAP: error code
  34 - Invalid DN] [LDAP: error code 34 - Invalid DN]
  I have entered LDAP URL: georgi.masq
  LDAP port: 49129
  ldap user: admin
  ldap pass: XXXXXXX
  With this parameters I can login into SunOne ADmin
  Console, unfortunately something's wrong and I don't
  know what, if anyone has any ideas please tell me .Hello actually I have the same error, maybe someone have the solution.
  Or what did you do for resolve this error?
  Thanks for your collaboration!!

• LDAP: error code 1 - Invalid query reference]; remaining name '

  I have the following function for a paged search operation.
  Data retrieved by this function is used somewhere else to modify the Ldap Directory context.
  Despite my setting for ctx and search control as "no timeout", i've been keeping thrown the exception for operations lasting more than 5 minutes(consistently) and for some short operations(sporadically):
  Paged Search failed : javax.naming.NamingException: [LDAP: error code 1 - Invalid query reference]; remaining name '<directory>'
  I am using DirX as LDAP directory.
  Is this a time-out related exception which can be fixed in the code?
  How can it be fixed?
  There's no clue all over the web about this.
  Thanks.
        * Returns the next page of the search results.
        * The returned result from this method can not exceed page size
        * set in the constructor.
        * @return
       public NamingEnumeration nextPage(){
            //1.step Set PagedResultsControl
            NamingEnumeration results = null;
            Control[] controls=null;          
            try {               
                 if( isSearchStarted==false ){
                      isSearchStarted=true;
                      if(sortingAttributes==null)
                           controls=new Control[]{ new PagedResultsControl(pageSize) };
                      else
                           controls=new Control[]{new SortControl(sortingAttributes, Control.NONCRITICAL), new PagedResultsControl(pageSize) };
                 }else {// examine the response controls
                      cookie = parseControls(ctx.getResponseControls());
                      if( cookie!=null && cookie.length!=0 ){
                           // pass the cookie back to the server for the next page
                           if(sortingAttributes==null)
                                controls=new Control[] { new PagedResultsControl(pageSize, cookie, Control.CRITICAL) };
                           else
                                controls=new Control[] {new SortControl(sortingAttributes, Control.NONCRITICAL), new PagedResultsControl(pageSize, cookie, Control.CRITICAL) };
                      }else{
                           //search is finished
                           return null;
                 ctx.setRequestControls(controls);
                 //ctx.getEnvironment().values();
                 //ctx.getEnvironment().put("com.sun.jndi.ldap.connect.timeout", "5000", 300000);
                 ctx.addToEnvironment("com.sun.jndi.ldap.connect.timeout", "0");
                 //ctx.getEnvironment().values();
            } catch (NamingException e) {
                 Tracer.getInstance().error("Paged Search failed while setting response controls: " + e);
                 return null;
            } catch (Exception e) {
                 Tracer.getInstance().error("Paged Search failed while setting response controls: " + e);
                 return null;
            //2.step: DO SEARCH
            for(int i=0;i<10;i++){
                 boolean reconnect=false;
                 try{     
                      results = ctx.search(searchBase, searchFilter, searchCtls);
                      Thread.sleep(300000);
                      //ctx.get
                      //Thread.sleep(300000);
                      break;
                 } catch (NamingException e) {
                      Tracer.getInstance().error("Paged Search failed : " + e);
                      reconnect=true;                    
                 } catch (Exception e) {
                      reconnect=true;
                      Tracer.getInstance().error("Paged Search failed : " + e);                    
                 if(reconnect){
                      try {
                           this.ctx = LDAPServer.getInstance().getDirContext();
                           ctx=ctx.newInstance(controls);
                           //ctx.getEnvironment().values();
                      } catch (NamingException e1) {
                           Tracer.getInstance().error("Could not reconnect the ldapcontext");
            return results;
       }

  It turned out to be a DirX "root DSE" entry "PAGP" that is disposing my paged results if a timeout occurs(300 seconds by default).
  So i have to modify this entry during runtime, which is unfortunately only can be accesed by dirxadm.exe.
  Is it possible to modify this attribute by a ldap context method?

• DPS7: LDAP error code 52

  env: DPS7 on RH5. we are running into many types of connection issues...the following 3 are frequent..
  1. LDAP: error code 52 - Unable to read BIND response from server
  2. LDAP: error code 52 - Unable to read SEARCH response from backend server : Connection reset by peer
  3. LDAP: error code 52 - Unable to read SEARCH response from backend server : Timeout when waiting to read from input stream
  Appreciate someone helping me understand under what circumstances the above errors occur and what needs to be tweaked to limit them.
  Also, is there a way to configure DPS not to use connection pools and instead open fresh connections for each client operation. Why would I do that. I believe DPS needs a lot of timeout and monitoring times tweaking to make sure that the connections in the pool are monitored properly and kept active. Any suggestions here.

  Hi,
  Looks like the connections between DPS and DS are invalid. This gives rise to a great variety of error message depending on when the error is detected (read, write, timeout etc).
  In most cases, this is related to aggressive idle-timeout set on the DS side or HW LB that impacts DPS connection pooling.
  The dpconf property "monitoring-inactivity-timeout" , defaulted to 120s may be used to keep pooled connection alive.
  Hope this helps
  -Sylvain

• LDAP: error code 65

  i am trying to connect to the LDAP using the JNDI
  and i am getting the following error i was unable to solve it
  here i am posting my sample slapd.cof file as well as my source program and the error
  import java.util.Properties;
  import javax.naming.Context;
  import javax.naming.NameAlreadyBoundException;
  import javax.naming.directory.DirContext;
  import javax.naming.directory.InitialDirContext;
  public class MakeRoot {
  final static String ldapServerName = "localhost";
  final static String rootdn = "cn=Manager, o=jndiTest";
  final static String rootpass = "secret";
  final static String subContext = "o=jndiTest";
  public static void main( String[] args ) {
  // set up environment to access the server
  Properties env = new Properties();
  env.put( Context.INITIAL_CONTEXT_FACTORY,
  "com.sun.jndi.ldap.LdapCtxFactory" );
  env.put( Context.PROVIDER_URL, "ldap://" + ldapServerName + "/" );
  env.put( Context.SECURITY_PRINCIPAL, rootdn );
  env.put( Context.SECURITY_CREDENTIALS, rootpass );
  try {
  // obtain initial directory context using the environment
  DirContext ctx = new InitialDirContext( env );
  // now, create the root context, which is just a subcontext
  // of this initial directory context.
  ctx.createSubcontext( subContext );
  } catch ( NameAlreadyBoundException nabe ) {
  System.err.println( subContext + " has already been bound!" );
  } catch ( Exception e ) {
  System.err.println( e );
  slapd.cof
  # See slapd.conf(5) for details on configuration options.
  # This file should NOT be world readable.
  ucdata-path     ./ucdata
  include          ./schema/core.schema
  include          ./schema/cosine.schema
  include          ./schema/inetorgperson.schema
  include          ./schema/java.schema
  # Define global ACLs to disable default read access.
  # Do not enable referrals until AFTER you have a working directory
  # service AND an understanding of referrals.
  #referral     ldap:/root.openldap.org
  pidfile          ./run/slapd.pid
  argsfile     ./run/slapd.args
  # Load dynamic backend modules:
  # modulepath     ./libexec/openldap
  # moduleload     back_bdb.la
  # moduleload     back_ldap.la
  # moduleload     back_ldbm.la
  # moduleload     back_passwd.la
  # moduleload     back_shell.la
  # Sample security restrictions
  #     Require integrity protection (prevent hijacking)
  #     Require 112-bit (3DES or better) encryption for updates
  #     Require 63-bit encryption for simple bind
  # security ssf=1 update_ssf=112 simple_bind=64
  # Sample access control policy:
  #     Root DSE: allow anyone to read it
  #     Subschema (sub)entry DSE: allow anyone to read it
  #     Other DSEs:
  #          Allow self write access
  #          Allow authenticated users read access
  #          Allow anonymous users to authenticate
  #     Directives needed to implement policy:
  # access to dn.base="" by * read
  # access to dn.base="cn=Subschema" by * read
  # access to *
  #     by self write
  #     by users read
  #     by anonymous auth
  # if no access controls are present, the default policy
  # allows anyone and everyone to read anything but restricts
  # updates to rootdn. (e.g., "access to * by * read")
  # rootdn can always read and write EVERYTHING!
  # BDB database definitions
  #database     bdb
  #suffix          "o=jndiTest"
  #rootdn          "cn=Manager,o=jndiTest"
  # Cleartext passwords, especially for the rootdn, should
  # be avoid. See slappasswd(8) and slapd.conf(5) for details.
  # Use of strong authentication encouraged.
  #rootpw          secret
  # The database directory MUST exist prior to running slapd AND
  # should only be accessible by the slapd and slap tools.
  # Mode 700 recommended.
  #directory     ./data
  # Indices to maintain
  #index     objectClass     eq
  database bdb
  #suffix "dc=stooges,dc=org"
  suffix "o=jndiTest"
  rootdn "cn=Manager,o=jndiTest"
  rootpw secret
  directory ./data
  defaultaccess read
  schemacheck off
  lastmod on
  error:
  javax.naming.directory.SchemaViolationException: [LDAP: error code 65 - object class 'javaContainer' requires attribute 'cn']; remaining name 'o=jndiTest'

  I have updated the ldap java.schema with below entries, it is working fine
  objectclass ( 1.3.6.1.4.1.42.2.27.4.2.1
       NAME 'javaContainer'
       DESC 'Container for a Java object'
       SUP top
       STRUCTURAL
       MAY ( o $ cn))

• Javax.naming.directory.InvalidAttributeValueException: [LDAP: error code 21

  I have collected the following code from "http://www.concentric.net/~adhawan/tutorial/"
  import javax.naming.Context;
  import javax.naming.InitialContext;
  import javax.naming.NamingException;
  import javax.naming.NameAlreadyBoundException;
  import javax.naming.directory.*;
  import java.util.*;
  public class MakeRoot {
          final static String ldapServerName = "localhost";
          final static String rootdn = "cn=Manager, o=jndiTest";
          final static String rootpass = "secret";
          final static String rootContext = "o=jndiTest";
          public static void main( String[] args ) {
                  // set up environment to access the server
                  Properties env = new Properties();
                  env.put( Context.INITIAL_CONTEXT_FACTORY,
                           "com.sun.jndi.ldap.LdapCtxFactory" );
                  env.put( Context.PROVIDER_URL, "ldap://" + ldapServerName + "/" );
                  env.put( Context.SECURITY_PRINCIPAL, rootdn );
                  env.put( Context.SECURITY_CREDENTIALS, rootpass );
                  try {
                          // obtain initial directory context using the environment
                          DirContext ctx = new InitialDirContext( env );
                          // now, create the root context, which is just a subcontext
                          // of this initial directory context.
                          ctx.createSubcontext( rootContext );
                  } catch ( NameAlreadyBoundException nabe ) {
                          System.err.println( rootContext + " has already been bound!" );
                  } catch ( Exception e ) {
                          System.err.println( e );
  }I am using the ldap server at here:
  http://download.bergmans.us/openldap/openldap-2.2.29/openldap-2.2.29-db-4.3.29-openssl-0.9.8a-win32_Setup.exe
  My slap.conf is:database     bdb
  suffix          "dc=jndiTest"
  rootdn          "cn=Manager,dc=jndiTest"
  # Cleartext passwords, especially for the rootdn, should
  # be avoid.  See slappasswd(8) and slapd.conf(5) for details.
  # Use of strong authentication encouraged.
  rootpw          secret
  # The database directory MUST exist prior to running slapd AND
  # should only be accessible by the slapd and slap tools.
  # Mode 700 recommended.
  directory     ./data
  # Indices to maintain
  index     objectClass     eqWhile running this code:
  ldap://localhost:389/
  javax.naming.directory.InvalidAttributeValueException: [LDAP: error code 21 - ob
  jectClass: value #0 invalid per syntax]; remaining name 'dc=jndiTest'
          at com.sun.jndi.ldap.LdapCtx.mapErrorCode(Unknown Source)
          at com.sun.jndi.ldap.LdapCtx.processReturnCode(Unknown Source)
          at com.sun.jndi.ldap.LdapCtx.processReturnCode(Unknown Source)
          at com.sun.jndi.ldap.LdapCtx.c_createSubcontext(Unknown Source)
          at com.sun.jndi.ldap.LdapCtx.c_createSubcontext(Unknown Source)
          at com.sun.jndi.toolkit.ctx.ComponentContext.p_createSubcontext(Unknown
  Source)
          at com.sun.jndi.toolkit.ctx.PartialCompositeContext.createSubcontext(Unk
  nown Source)
          at com.sun.jndi.toolkit.ctx.PartialCompositeContext.createSubcontext(Unk
  nown Source)
          at javax.naming.InitialContext.createSubcontext(Unknown Source)
          at MakeRoot.main(MakeRoot.java:35)It's obviously connecting with the given credentials and provider url. But then why is it not working?
  Any help would highly appreciated. Thanks in advance.

  That is right I agree. And I guess that happened because I was trying to doing different permutation-combination with the naming scheme and I forgot to update slapd.conf. And even after made that change it was showing the same error. The poster forgot to mention to include java.schema. That change made it work finally.
  Thanks for your reply.

• LDAP: error code 49 - 80090308

  I recently saw my log files as we were experiencing slowness in our application and found the follwoing error message :
  javax.naming.AuthenticationException: [LDAP: error code 49 - 80090308: LdapErr: DSID-0C09030B, comment: AcceptSecurityContext
  error, data 52e, v893]; remaining name 'dc=hess,dc=pri,dc=com'
  at com.sun.jndi.ldap.LdapCtx.mapErrorCode(LdapCtx.java:2988)
  at com.sun.jndi.ldap.LdapCtx.processReturnCode(LdapCtx.java:2934)
  at com.sun.jndi.ldap.LdapCtx.processReturnCode(LdapCtx.java:2735)
  at com.sun.jndi.ldap.LdapCtx.connect(LdapCtx.java:2649)
  at com.sun.jndi.ldap.LdapCtx.ensureOpen(LdapCtx.java:2549)
  at com.sun.jndi.ldap.LdapCtx.ensureOpen(LdapCtx.java:2523)
  at com.sun.jndi.ldap.LdapCtx.doSearch(LdapCtx.java:1904)
  at com.sun.jndi.ldap.LdapCtx.searchAux(LdapCtx.java:1809)
  at com.sun.jndi.ldap.LdapCtx.c_search(LdapCtx.java:1734)
  at com.sun.jndi.toolkit.ctx.ComponentDirContext.p_search(ComponentDirContext.java:368)
  at com.sun.jndi.toolkit.ctx.PartialCompositeDirContext.search(PartialCompositeDirContext.java:328)
  at com.sun.jndi.toolkit.ctx.PartialCompositeDirContext.search(PartialCompositeDirContext.java:313)
  at javax.naming.directory.InitialDirContext.search(InitialDirContext.java:238)
  at com.retek.rsw.persistence.ldap.LdapRswSecurityDao.getGroupNames(LdapRswSecurityDao.java:197)
  at com.retek.rsw.persistence.ldap.LdapRswSecurityDao.authenticateAndReadUser(LdapRswSecurityDao.java:92)
  at com.retek.rsw.service.RswSecurity.getUser(RswSecurity.java:47)
  at com.retek.rsw.ui.control.security.LoginDoneAction.perform(LoginDoneAction.java:37)
  at org.apache.struts.action.ActionServlet.processActionPerform(ActionServlet.java:1787)
  at org.apache.struts.action.ActionServlet.process(ActionServlet.java:1586)
  at com.retek.struts.action.ActionServlet.process(ActionServlet.java:227)
  at org.apache.struts.action.ActionServlet.doPost(ActionServlet.java:510)
  at javax.servlet.http.HttpServlet.service(HttpServlet.java:760)
  at javax.servlet.http.HttpServlet.service(HttpServlet.java:853)
  Can anyone please help me understand this message. I looked it up on the internet and it said that you DN's are not set properly, if that is the case then none of the users should be able to login then howcome users are able to login?
  Thanks in Advance,
  Joyce

  LDAP error code 49 means that invalid credentials were provided, so perhaps the application is trying to bind with the wrong dn/password.

• LDAP: error code 49 - 8009030C: LdapErr: DSID-0C0903A9, comment: AcceptSecurityContext error, data 534, v1db0^@]

  Hello,
  What does the following error code data 534 mean?
  LDAP: error code 49 - 8009030C: LdapErr: DSID-0C0903A9, comment: AcceptSecurityContext error, data 534, v1db0^@]

  Hi,
  Thanks for your patience.
  The error code 49 related to LDAP is caused by the invalid credentials. Please refer to the following most possible causes.
  1. The DN path or password which you have specified for the administrator is invalid. Any of the below will result in this error:
  1). Pointed to non-user DN
  2). Pointed to a non-existent user, but in existing DN
  3). Pointed to non existent DN
  4). Pointed to an existing user, but non existing DN
  5). Pointed to an incorrect admin DN, uid instead of cn
  6). Pointed to a non administrator user
  7). Pointed to a valid admin but password is incorrect
  2. Could not authenticate the user trying to login. This can be the result of an incorrect username or password, or an incorrect prefix and/or suffix specified in the Settings tab, depending on the type of LDAP/AD system. Could also mean the authentication
  type is incorrect.
  Best regards,
  Ann Zhu