LDAP and CF8
Hi everyone,
I have been unsuccessful in getting CFLDAP to query a LDAP
from Site Server. I did get it to work in ASP. Could it be that ASP
has a better way of connecting to the datasource?
Ravi.
Here is the code:
<cfoutput>
<cftry>
Passing Values to the CFLDAP...<br><br>
<cfflush interval="10" />
Trying to connect...
<cfflush interval="10" />
<cfldap action="query"
server="127.0.0.1"
username="cn=Administrator,ou=Members,o=CompuSport"
password="CompuSport"
port="1003"
scope="onelevel"
name="Results"
start="ou=Members,o=CompuSport"
filter="(objectclass=*)"
attributes = "cn" />
<cfcatch type="any">
Compiling Message Errors:
<cfflush interval="10" />
<br><br>
Error Message:#cfcatch.message#
<br><br>
Error Detail:#cfcatch.detail#
<br><br>
Error Type:#cfcatch.type#
<br><br>
Extended Info: #cfcatch.ExtendedInfo#
<cfrethrow />
</cfcatch>
</cftry>
</cfoutput>
quote:
Originally posted by:
ravigehlot
Hi everyone,
I have been unsuccessful in getting CFLDAP to query a LDAP
from Site Server. I did get it to work in ASP. Could it be that ASP
has a better way of connecting to the datasource?
Ravi.
Similar Messages
-
I am new to LDAP and I believe I have everything setup correctly on the server (everything under Open Directory in SA says "Running", logs don't show any errors). However, I can not access the LDAP server from a client machine using Directory Access. I suspect that client machines still can not "see" my LDAP server.
I believe the issue may be with DNS and I am trying to understand the interaction between DNS and OD, etc. First off, I do not have DNS turned on for my Mac OS X Server since my ISP has always hosted our DNS. Is this a problem? Do I need DNS activated on the same server that I am running this LDAP server? I have tried entering the IP and DNS name on the client server using Directory Access and neither worked.The requirement is that references using your server's Fully Qualified Domain Name look up to its IP Address and its IP Address looks up to its Fully Qualified Domain Name. If your ISP does that for you, and does it correctly, Merry Christmas!
All others must set up their own tiny DNS service to do the lookups. If you are behind an NAT firewall, you can Make Up whatever names you like and look them up locally, because they are invisible from the Internet.
Remember that each workstation must have the address of the DNS available to it. It needs to be configured in the TCP/IP setup or dispensed via DHCP. If you use your own DNS (highly recommended) you must also dispense or configure the next upstream DNS (your ISP's DNS Address).
"An Open Directory master requires properly configured DNS so it can provide single sign-on Kerberos authentication.
Make sure DNS service is configured to resolve fully qualified DNS names and provide corresponding reverse lookups.
DNS must resolve the fully qualified DNS name and provide reverse lookups for the Open Directory master server, all replica servers, and other servers that are members of the Kerberos realm.
You can use the Lookup pane of Network Utility (in /Applications/Utilities/) to do a DNS lookup of a server's DNS name and a reverse lookup of the server's IP address.
For instructions on setting up DNS service, browse Network Services Overview."
-- from Server Admin 10.4 Help: Kerberos is Stopped on an Open Directory Master or Replica
Message was edited by: Grant Bennet-Alder -
10.6.6 Server Combo Update Crashes LDAP and Kerberos Services
Just updated apple server from 10.6.4 to 10.6.6 with combo server overnight.
Everything was working fine under 10.6.4
All users can no longer authenticate to server via mail or ldap logins
LDAP and Kerberos Services stopped.
Will downgrade from an open directory master to standalone then back to master again and post status...I think there is something with LDAP on 10.6.6
I was forced to make clean install in combo from 10.6.0 to 10.6.6 and today LDAP crashed.
It seems to be an issue on ldap ACL.
Message was edited by: Xalio -
MAC OS and LDAP and Samba Server
How can I make my Mac OS authenticate against LDAP and automatically map shared by a Samba server folders? (samba domain)? The idea is that any person who is registered in the database of LDAP can log into any Mac machine and automatically access the folders stored on the Samba server.
Are you using TopLink 11g or TopLink Essentials?
You seem to be wanting to use TopLink 11g, but you have the provider set to Essentials in your persistence.xml.
<provider>oracle.toplink.essentials.PersistenceProvider</provider>
Change this to,
<provider>oracle.toplink.PersistenceProvider</provider>
The sessions-xml properties are only supported with TopLink 11g.
Note that currently in 11g when using a sessions-xml it must contain a project xml that completely defines the mappings. It will not merge with annotations nor defaults. -
FYI: I am new to Oracle (<1 month), and new to APEX (<3 weeks) so forgive me if I am asking the obvious.
I would like to have APEX authenticate against LDAP (active directory), and went about trying to set that up. Got all AD settings from our sys admin, and then tried them in the LDAP test tool. I kept getting " Authentication failed!" no matter what I did. Due to the detailed nature of that error message, I started trying to track down every possible avenue so I talked to one of our DBA's about DBMS_LDAP.SIMPLE_BIND_S. The answer I got back was that we don't have access to it because it is part of OIN which we would have to pay outrageous amounts of money for if we wanted to use it. Not likely to happen, so I was hoping that there was another way to authenticate APEX via LDAP.
Any suggestions would be most helpful.John - DBMS_LDAP is not part of OID so you can use it as part of your existing database product installation. Search this forum for LDAP and AD and you'll find lots of discussions about what you are trying to do.
Also, just to clarify, you're not trying to authenticate Application Express using AD, you'll be authenticating users to your application (essentially a PL/SQL application in the database) using account information stored in AD. The authentication code that gets executed will belong to your application.
Scott -
Client variables not working in Apache and CF8
I have Apache and CF8 set up with multiple virtual hosts
locally for development(win xp pro, apache 2.2.4)
Client variables are not working. I can log into CF
administrator fine(not sure if authentication uses client variables
or not). Any site that I work on that uses client variables behaves
as if the variable is not defined after setting it then going to
another page that checks for its existence. I have verified that
client variables are set up in cf administrator.
Thanks for any helpThanks a lot. I understood the mistake. Pls do not spend time on this.
Thanks,
Swarna -
Hi,
As a part of a project requirement, we are trying to integrate Solution manager with LDAP (Lightweight Directory Access Protocol).
Using the directory service, we are trying to synchronize the CUA (Central user administration within Solution manager) with Active directory of LDAP so that we can maintain the User data centrally from a single point in LDAP.
Problem description:
Currently, Client has implemented the LDAP and CUA integration and when a new user is added in LDAP, it is automatically getting copied in all SAP systems and at real time, when the useru2019s u201CLASTNAMEu201D field is updated in LDAP, it is automatically getting synchronized in all SAP systems.
But, If any attribute other than u201CLASTNAMEu201D is changed (i.e. The expiry /validity date of the User in LDAP, GLTGB in SAP), then the field value is not getting synchronized in the SAP Central User Adm.
Our Findings:
We have checked the configurations and imported mappings in SAP Solution Manager and everything looks fine. We have debugged the standard program RSLDAPSYNC_USER extensively and found out that an RFC call to function module LDAPRFC_SEARCH is not returning the expected values.
Thanks
DebHi Deb,
It would be really nice if you can elaborate on the configurations that need to be done as part of this integration. I hope, you have been successfull by now.
Actually, I too need to perform the same as part of a project.
Thanks in advance. -
Coexistence of CF7 and CF8 on one server
I have CFMX 7.2 running on a server using the external web
server, IIS6. I have installed CF8 in the multiserver configuration
onto the same server. What I read is that for these to coexist the
CF8 needs to be installed on the built-in web server (also what CF
apparently automatically does when the multiserver configuration is
installed).
One of my questions is this - if I have CF7 using the
external web server can I NOT run the web configuration tool and
connect my CF8 instances to the external web server also?
Another question is this - CF8 uses the webroot of
jrun4\servers\instancename\instance-ear\instance-war . I want the
developers to store their documents somewhere else. I have done the
virtual mapping in the jrun-web.xml but I can't get anything to
work when I do that. Is there anyway to point something to the
location of the users files and have them resolve them on a
website?You can get ColdFusion 7 and 8 running in both server install
mode connected via an external webserver and also via the JRun
multiserver setup. Here's some links to guides on doing both which
should help. Note they'll both need some manually config file
changing, you can't do it all with the wsconfig util.
Server Install
http://rickosborne.org/blog/index.php/2007/05/30/run-cf7-and-cf8-side-by-side-with-the-sam e-apache-server/
JRun
http://www.boyzoid.com/blog/index.cfm?mode=entry&entry=26E23F51-3048-55C9-437503C10E470E13
http://www.alagad.com/go/blog-entry/running-cf8-and-cf-7-on-jrun-with-apache -
Hello, Identity manager fail to add entries in the LDAP and database table
Hello,
Well I installed identity manager 7 in a windows 2003 advanced server.
I I appended an NT server resource, a Mysql table, a solaris server resource and an ldap server resource.
I created the roles for these resources and then I assigned them to an account that I created for testing purposes.
After the aprooval, in the solaris machine, the user has been added in the user database but no home directory has been created as I didn't set the apropriate flag to true.
I the windows resource everything worked very smooth and with no problem.
In the ldap and mysql table resources I recieved a failure having error message null. and from a sniffing that I did for investigation I never saw a sigle packed arrive to the mysql server or to the directory server from the idm server.
Any ideas or suggestions on what to do ?Well the problem with the directory server just solved.
But the problem with mysql remains.
The first thing that I do when I add a resource is to test the connection.
The problem with the LDAP is that the dn was not present in the directory server. They gave me an ou that didn't exist. -
Domino ldap and weblogic server 6.1
Hi,
I am trying to use domino ldap for authentication in weblogic server 6.1
I configured a custom ldap realm.
But the users were not listed from domino ldap and authentication also failed.
Can anybody help me?
Thanx in advance.
- prabha.at the moment it is possible for me to work, though. i worked around the
problem and i set web.xml as a read only file. i still can't use wizards to
create servlets and i can't edit web.xml with jbuilder. -
Windows Updates Causing CFMX7 and CF8 to no longer run.
My CFMX7 and CF8 developer's copy will no longer run on my
computer. The only thing I've done is install window's updates.
Now, every time I reboot, I have to restore to a date about 2 weeks
ago. Then it will run until I have to reboot again. Then I have to
restore again. I have no idea what to do about this. Any help would
be appreciated.
I have both CFMX7 and CF8 installed to run as stand alone
concurrent systems. CFMX7 is supposed to run on port 8500. CF8 is
set to run on 8501. And both DO run, but only when I restore after
reboots.
The only thing I can think of doing at this point is
uninstalling both CF servers and reinstalling them. This will be a
hastle, though, since I'll have to re-setup all my ODBC sources and
copy my wwwroot folders, hoping I don't forget anything else that
I'll have to reset in the adminstrators after I reinstall. This
would be my last choice of action, but I have to act soon as this
is interfering with my dev work with customers.
Anyone have any suggestions?Zy Forever wrote:
> Thanks Ian. Can you give me more information on this, or
tell me where to look to find it?
The exact location depends on what flavor of CF you have
installed,
server, multi-home, j2ee, etc.
But there are a collection that in CF 7 where all called
neo-xxx.xml. I
believe the xml file names are similar for CF 8.
If you copy the desired xml file from your old installation
into a new
installation and then restart the CF server all the settings
can be
restored.
If you are using enterprise or development license servers
you can also
achieve the above using the built in CAR (ColdFusion Archive)
feature of
the administrator. -
A partner client asked about automatically authenticating
users from their web site to ours using SAML. I googled for a while
today and came across one older 6 part tutorial where most of it
seemed to be relatively specific to CF7. Knowing all of the great
new changes in CF8 that I now have at my disposal, is anyone aware
of any articles or tutorials about SAML and CF8?
Thanks,A partner client asked about automatically authenticating
users from their web site to ours using SAML. I googled for a while
today and came across one older 6 part tutorial where most of it
seemed to be relatively specific to CF7. Knowing all of the great
new changes in CF8 that I now have at my disposal, is anyone aware
of any articles or tutorials about SAML and CF8?
Thanks, -
Hi,
I configured iis7 and cf8. The question is that, do i put my
application under inetpub or under coldfusion 8 directory?
Weird things happening when i put it on both locations.
Sometimes changes dont effect etc.
Thank you,
SyedHi, I would put it under inetpub, but both are not an issue,
you can do either one.
What is your problem, as there should not really be any
problem here. -
Authentication against both LDAP and BI repository
I have a lot of user who are authenticated against LDAP. I need add few users who aren't exist in LDAP. I can create user in BI repository and if this user is in an Administrator group he is able to log in. But if this user isn't in an Administrator group he get error "Succesfull execution of intitializtion block LDAP is required". Is there any way how to authenticate users agains both LDAP and BI repository?
Hi,
why dont you create a group in ldap and add the correspondng users to that group.
You can configure the LDAP server with that group and try...
Hope it works...
Regards
Venkat -
I am using wls version 5.1 with service pack 7. I still need to add all
users the the "everyone" group in order to be able to authenticate. I
thought this issue was resolved in the latest service pack. But I still
get an exception thrown if my user is not in "everyone" group. Does
anyone know what the status of this bug is? Is it resolved or not?
Here is the exception:
java.rmi.RemoteException: Security violation: insufficient permission to
access method
at
weblogic.ejb.internal.BaseEJBObject.preInvoke(BaseEJBObject.java:431)
at
com.itginc.webtrade.ejb.LoginBeanEOImpl.loginUser(LoginBeanEOImpl.java:143)
at
com.itginc.webtrade.ejb.LoginBeanEOImpl_ServiceStub.loginUser(LoginBeanEOImpl_ServiceStub.java:112)
at
com.itginc.webtrade.servlets.LoginServlet.service(LoginServlet.java:190)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:865)
at
weblogic.servlet.internal.ServletStubImpl.invokeServlet(ServletStubImpl.java:106)
at
weblogic.servlet.internal.ServletContextImpl.invokeServlet(ServletContextImpl.java:907)
at
weblogic.servlet.internal.ServletContextImpl.invokeServlet(ServletContextImpl.java:851)
at
weblogic.servlet.internal.ServletContextManager.invokeServlet(ServletContextManager.java:252)
at
weblogic.socket.MuxableSocketHTTP.invokeServlet(MuxableSocketHTTP.java:364)
at
weblogic.socket.MuxableSocketHTTP.execute(MuxableSocketHTTP.java:252)
at weblogic.kernel.ExecuteThread.run(ExecuteThread.java:129)Glen wrote:
>
I just encountered this error and deleted the 'everyone' group as a workaround.We authenticate with LDAP and WL always complained about not finding the group 'everyone'. The app worked fine but I thought I'd be a good guy and add the group to LDAP. Once I did, I got your error.Could the issue be that the 'everyone' group is OK but the permissions on the group deny access? I'm searching BEA to find out the expected permissions when I found your posting.I still need the expected permissions for the 'everyone' group.According to http://www.weblogic.com/docs51/admindocs/ldap.html#changes
.. you don't need to define the everyone group in any version after WLS 5.0
because of the introduction of the CachingRealm.
Maybe you are looking for
-
Macbook pro will not boot, gets stuck on great apple logo with spinning wheel.
I have a Macbook Pro A1287 13" Core2Duo Intel running Mavericks. This morning it would not boot and got stuck at the grey apple logo with the spinning wheel. I have tried: 1. Resetting PRAM 2. Resetting SMC 3. Starting in Safe Mode 4. Boting to recov
-
My MacBook Pro suddenly started running slow
Hi, My MacBook Pro started running extremely slow a couple of days ago. I tried to search for help and found this forum where people had the same problem. I see that people are advised to check with etrecheck software and post it here to have further
-
Freezing That Never Ends...
I just got my Ipod exchanged at the apple store, so it should have no pre-existing problems with it. I just put songs on it and tried to disconnect it, but it froze. The screen isnt blinking like it should. I reset it and the same thing happens, If y
-
Make positive vertical position change = UP when moving object? CS6
When moving an object, entering a positive value for vertical position sends objects DOWN. How do I reverse this such that entering a positive value will move objects UP?Thanks.
-
Adding Time and Local Weather Data in a page
Can anybody tell me or point me to a tutorial that shows how to add the current time and weather report into a page? Thank you sal