LDAP / ASP integration

Similar Messages

• Webcenter dicussion forum - Ldap Group Integration with JSSO

  Hi,
  We want to implement LDAP Group integration for the authorization purposes in
  webcenter Jive Disucussions deployed in our IAS 10.1.3.2 application server.
  Though jive provides support for the same, yet the JIve documentation says
  that we need to implement the JIve's LDAP User authentication steps in order
  to leverage LDAP Groups integration. In case of Webcenter if we use Java SSO
  for the authentication purpose, we need opt for the 'Default' in the Jive
  Admin's authentication page instead of LDAP settings. Opting for 'Default'
  scheme doesn't allow us to configure the LDAP group settings. We are not able
  find any documentation for LDAP Group Integration along with Java SSO. Could
  provide us the steps required for the same? Or has anyone tried the same?
  Thanks and Regards,
  ABhijit

  Hi Abhijit,
  You can ignore 'Default', and implement your own user authentication mechanism, which can include LDAP group settings. You will have to follow:
  - OC4J security documentation for using Java SSO in your own implementation (I think this is the right link - confirm the version numbers - http://download.oracle.com/docs/cd/B32110_01/web.1013/b28957/javasso.htm#BABEJFDI)
  - Jive documentation for implementing user authentication
  Navneet.

• Webcenter dicussion forum - Ldap Group Integration issue

  Hi All,
  I am trying to implement LDAP Group integration in our jive forums 5.1.0 installed in an Oracle IAS 10.1.3.2 server.
  I have followed the steps mentioned in the LDAP documentation and setup the following system properties:
  ldap.groupNameField cn
  ldap.groupMemberField uniquemember
  ldap.groupDescriptionField description
  ldap.groupSearchFilter (cn={0})
  I just restarted the server after setting up these , but the forums instance is not coming up in the server. Throwing the following error:
  08/01/21 14:52:33.550 jiveforums: http://CompressingFilter/1.4.4 CompressingFilter has initialized
  08/01/21 15:23:04.597 jiveforums: Servlet error
  java.io.IOException: An established connection was aborted by the software in your host machine
  at sun.nio.ch.SocketDispatcher.write0(Native Method)
  at sun.nio.ch.SocketDispatcher.write(SocketDispatcher.java:33)
  at sun.nio.ch.IOUtil.writeFromNativeBuffer(IOUtil.java:104)
  at sun.nio.ch.IOUtil.write(IOUtil.java:75)
  at sun.nio.ch.SocketChannelImpl.write(SocketChannelImpl.java:302)
  at java.nio.channels.Channels.write(Channels.java:60)
  at java.nio.channels.Channels.access$000(Channels.java:47)
  at java.nio.channels.Channels$1.write(Channels.java:134)
  at com.evermind.server.http.AJPOutputStream.endRequest(AJPOutputStream.java:117)
  at com.evermind.server.http.AJPRequestHandler.run(AJPRequestHandler.java:309)
  at com.evermind.server.http.AJPRequestHandler.run(AJPRequestHandler.java:190)
  at oracle.oc4j.network.ServerSocketReadHandler$SafeRunnable.run(ServerSocketReadHandler.java:260)
  at com.evermind.util.ReleasableResourcePooledExecutor$MyWorker.run(ReleasableResourcePooledExecutor.java:303)
  at java.lang.Thread.run(Thread.java:595)
  08/01/21 15:25:59.956 jiveforums: Exception thrown during contextDestroyed
  java.lang.ExceptionInInitializerError
  at com.jivesoftware.forum.database.DbForumFactory.getAttachmentManager(DbForumFactory.java:798)
  at com.jivesoftware.forum.database.DbForumFactory.destroy(DbForumFactory.java:410)
  at com.jivesoftware.forum.database.DbForumFactory.shutdown(DbForumFactory.java:381)
  at com.jivesoftware.forum.util.ForumsLifeCycleListener.contextDestroyed(ForumsLifeCycleListener.java:88)
  at com.evermind.server.http.HttpApplication.destroyContextListeners(HttpApplication.java:5877)
  at com.evermind.server.http.HttpApplication.destroy(HttpApplication.java:5843)
  at com.evermind.server.http.HttpSite.destroy(HttpSite.java:877)
  at com.evermind.server.http.HttpServer.destroy(HttpServer.java:548)
  at com.evermind.server.ApplicationServer.destroy(ApplicationServer.java:2030)
  at com.evermind.server.ApplicationServerShutdownHandler.run(ApplicationServerShutdownHandler.java:93)
  at java.lang.Thread.run(Thread.java:595)
  Caused by: java.lang.IllegalStateException: Timer already cancelled.
  at java.util.Timer.sched(Timer.java:354)
  at java.util.Timer.scheduleAtFixedRate(Timer.java:296)
  at com.jivesoftware.util.TaskEngine.scheduleTask(TaskEngine.java:218)
  at com.jivesoftware.util.TaskEngine.scheduleTask(TaskEngine.java:202)
  at com.jivesoftware.forum.database.DbAttachmentManager.<init>(DbAttachmentManager.java:160)
  at com.jivesoftware.forum.database.DbAttachmentManager.<clinit>(DbAttachmentManager.java:48)
  Can anyone please throw a light?
  Thanks and regards,
  ABhijit

  Hi Guneet,
  We are using jive 5.5.9 instead of 5.1.0 that comes with webcenter.
  Also we are just trying to validate the JIve's authorization scheme so didn't integrate the Java SSO part. Jive forum is just a standalone OC4J instance in the IAS server and we are using the LDAP configuration in the User,Groups Authentication page instead or default which is required for Java SSO.
  Thanks,
  ABhijit

• Steps for portal and Microsoft LDAP server integration

  Hi,
  Could any one guide me steps for portal and Microsoft LDAP server integration. Need it urgently.
  Thanks in advance.
  Regards,
  Niraj

  Please don't cross post in multiple forums..

• UCM 6.1 LDAP Directory Integration

  What happen if I enable, and then disable the LDAP Directory Integration?
  Do I loose all the users?
  I ask because will see how many users there maybe will bee inactive.

  the new directory sync takes a copy of the directory into the server, so all the users will still be in the directory
  you can find more here:
  LDAP Directory Integration
  http://www.cisco.com/en/US/docs/voice_ip_comm/cucm/srnd/6x/directry.html
  HTH
  javalenc
  if this helps, please rate

• Portal and Netscape LDAP server integration

  Hi,
  I am trying to integrate Netscape LDAP server (6.0) with portal server 7, but
  having lots of trouble doing that.
  I've followed the instructions in the developer guide and completed the following
  steps:
  1. added a CustomRealm named defaultLDAPRealmForNetscapeDirectoryServer in config.xml
  and modified the entries to fit my environment.
  2. Deployed ldapprofile.jar and customized the env variables.
  After these two steps, nothing happened. Then I did the third step:
  3. added a iPlanet Authenticator to the realm CompatibilityRealm, which is my
  default realm for the server.
  However, after step 3, I wasn't able to boot weblogic server. Please note I have
  create two users, system and weblogic in my LDAP server.
  I copied the stack trace below. Any suggestions will be greatly appreciated.
  Weiguo
  C:\prog\bea\user_projects\portalDemoDomain>"C:\prog\bea\jdk131_03\bin\java" -hotspot
  -Xms128m -Xmx128m -XX:MaxPermSize=128m -Dcommerce.properties="C:\prog\bea\weblogic700\portal\weblogiccommerce.properties"
  -Dweblogic.Name=portalDemoServer
  -Dbea.home="C:\prog\bea" -Dweblogic.management.username= -Dweblogic.management.p
  assword= -Dweblogic.ProductionModeEnabled=true -Dweblogic.management.discover=fa
  lse -Djava.security.policy=="C:\prog\bea\weblogic700\server\lib\weblogic.policy"
  weblogic.Server
  <Nov 4, 2002 1:18:45 PM EST> <Info> <Security> <090065> <Getting boot identity
  from user.>
  Enter username to boot WebLogic server:weblogic
  Enter password to boot WebLogic server:
  Starting WebLogic Server...
  <Nov 4, 2002 1:19:06 PM EST> <Notice> <Management> <140005> <Loading configuration
  C:\prog\bea\user_projects\portalDemoDomain\.\config.xml>
  <Nov 4, 2002 1:19:21 PM EST> <Notice> <Security> <090093> <No configuration data
  was found on server portalDemoServer for realm CompatibilityRealm.>
  <Nov 4, 2002 1:19:21 PM EST> <Notice> <Security> <090082> <Security initializing
  using realm CompatibilityRealm.>
  <Nov 4, 2002 1:19:21 PM EST> <Critical> <WebLogicServer> <000364> <Server failed
  during initialization. Exception:java.lang.SecurityException: Authentication for
  user weblogic denied
  java.lang.SecurityException: Authentication for user weblogic denied at
  weblogic.security.service.SecurityServiceManager.doBootAuthorization(
  SecurityServiceManager.java:1028)
  at weblogic.security.service.SecurityServiceManager.initialize(SecurityS
  erviceManager.java:1166)
  at weblogic.t3.srvr.T3Srvr.initialize1(T3Srvr.java:697)
  at weblogic.t3.srvr.T3Srvr.initialize(T3Srvr.java:589)
  at weblogic.t3.srvr.T3Srvr.run(T3Srvr.java:277)
  at weblogic.Server.main(Server.java:32)
  >
  <Nov 4, 2002 1:19:21 PM EST> <Emergency> <WebLogicServer> <000342> <Unable to
  in
  itialize the server: Fatal initialization exception
  Throwable: java.lang.SecurityException: Authentication for user weblogic denied
  java.lang.SecurityException: Authentication for user weblogic denied
  at weblogic.security.service.SecurityServiceManager.doBootAuthorization(
  SecurityServiceManager.java:1028)
  at weblogic.security.service.SecurityServiceManager.initialize(SecurityS
  erviceManager.java:1166)
  at weblogic.t3.srvr.T3Srvr.initialize1(T3Srvr.java:697)
  at weblogic.t3.srvr.T3Srvr.initialize(T3Srvr.java:589)
  at weblogic.t3.srvr.T3Srvr.run(T3Srvr.java:277)
  at weblogic.Server.main(Server.java:32)
  >
  The WebLogic Server did not start up properly.
  Exception raised:
  java.lang.SecurityException: Authentication for user weblogic denied
  at weblogic.security.service.SecurityServiceManager.doBootAuthorization(
  SecurityServiceManager.java:1028)
  at weblogic.security.service.SecurityServiceManager.initialize(SecurityS
  erviceManager.java:1166)
  at weblogic.t3.srvr.T3Srvr.initialize1(T3Srvr.java:697)
  at weblogic.t3.srvr.T3Srvr.initialize(T3Srvr.java:589)
  at weblogic.t3.srvr.T3Srvr.run(T3Srvr.java:277)
  at weblogic.Server.main(Server.java:32)
  Reason: Fatal initialization exception
  Throwable: java.lang.SecurityException: Authentication for user weblogic denied
  java.lang.SecurityException: Authentication for user weblogic denied
  at weblogic.security.service.SecurityServiceManager.doBootAuthorization(
  SecurityServiceManager.java:1028)
  at weblogic.security.service.SecurityServiceManager.initialize(SecurityS
  erviceManager.java:1166)
  at weblogic.t3.srvr.T3Srvr.initialize1(T3Srvr.java:697)
  at weblogic.t3.srvr.T3Srvr.initialize(T3Srvr.java:589)
  at weblogic.t3.srvr.T3Srvr.run(T3Srvr.java:277)
  at weblogic.Server.main(Server.java:32)

  Thanks a lot Scott. I followed your instructions and got it working to a certain
  degree. I am pretty happy about the results.
  There are still a few issues:
  1. I had to create groups and users in my directory server in order to boot up
  and logon to the server. This is expected, but is it possible to export these
  user/group settings from the embedded LDAP server so that I can import them into
  my directory server? Currently, the only way is manual and it's error prone. A
  lot of trial and error has to happen to get there.
  2. It seems that using Netscape LDAP server only allows read-only access. This
  means we have to create new users/groups outside of the portal server and one
  other side effect is self-registration is impossible, unless we use custom security
  providers. Is this assessment correct? Since LDAP integration is so important,
  wouldn't it be nice if BEA have that built-in and all we need to do is to switch
  to and configure it?
  3. I got duplicate users and groups in compatibility security. Obviously, one
  set is from my LDAP server and the other is from the embedded one. I tried to
  remove to embedded LDAP authenticator, but the duplicates are still there. How
  can I get rid of the duplicates - I only want the ones from my LDAP server?
  Thanks again Scott.
  Weiguo
  Scott Dunbar <[email protected]> wrote:
  Weiguo,
  WLP 7.0 uses a compatibility realm only and will not work with the
  custom realm that you created for the Netscape directory server.
  Configuring an LDAP compatibility realm isn't too bad and its
  configuration is much like 4.0. However, it can be hard to configure
  initially from the console. One way is to shut your server down and
  modify config.xml directly - but make sure you make a backup copy first!
  Then add something like:
  <CachingRealm BasicRealm="myRealm" CacheCaseSensitive="true"
  Name="wlcsCachingRealm"/>
  <CustomRealm
  ConfigurationData="user.filter=(&(uid=%u)(objectclass=person));
  user.dn=ou=people,dc=beasys,dc=com;
  server.principal=uid=dirmanager,ou=people,dc=beasys,dc=com;
  membership.filter=(&(uniquemember=%M)(objectclass=groupofuniquenames));
  group.filter=(&(cn=%g)(objectclass=groupofuniquenames));
  server.host=somehost.beasys.com;
  group.dn=ou=groups,dc=beasys,dc=com"
  Name="myRealm" Password="your_password_here"
  RealmClassName="weblogic.security.ldaprealmv2.LDAPRealm"/>
  will enable your LDAP server. After this is setup it will be much
  easier to configure via the console. Obviously you'll need to update
  the parameters above for your configuration.
  Weiguo Wang wrote:
  Hi,
  I am trying to integrate Netscape LDAP server (6.0) with portal server7, but
  having lots of trouble doing that.
  I've followed the instructions in the developer guide and completedthe following
  steps:
  1. added a CustomRealm named defaultLDAPRealmForNetscapeDirectoryServerin config.xml
  and modified the entries to fit my environment.
  2. Deployed ldapprofile.jar and customized the env variables.
  After these two steps, nothing happened. Then I did the third step:
  3. added a iPlanet Authenticator to the realm CompatibilityRealm, whichis my
  default realm for the server.
  However, after step 3, I wasn't able to boot weblogic server. Pleasenote I have
  create two users, system and weblogic in my LDAP server.
  I copied the stack trace below. Any suggestions will be greatly appreciated.
  Weiguo
  C:\prog\bea\user_projects\portalDemoDomain>"C:\prog\bea\jdk131_03\bin\java"-hotspot
  -Xms128m -Xmx128m -XX:MaxPermSize=128m -Dcommerce.properties="C:\prog\bea\weblogic700\portal\weblogiccommerce.properties"
  -Dweblogic.Name=portalDemoServer
  -Dbea.home="C:\prog\bea" -Dweblogic.management.username= -Dweblogic.management.p
  assword= -Dweblogic.ProductionModeEnabled=true -Dweblogic.management.discover=fa
  lse -Djava.security.policy=="C:\prog\bea\weblogic700\server\lib\weblogic.policy"
  weblogic.Server
  <Nov 4, 2002 1:18:45 PM EST> <Info> <Security> <090065> <Getting bootidentity
  from user.>
  Enter username to boot WebLogic server:weblogic
  Enter password to boot WebLogic server:
  Starting WebLogic Server...
  <Nov 4, 2002 1:19:06 PM EST> <Notice> <Management> <140005> <Loadingconfiguration
  C:\prog\bea\user_projects\portalDemoDomain\.\config.xml>
  <Nov 4, 2002 1:19:21 PM EST> <Notice> <Security> <090093> <No configurationdata
  was found on server portalDemoServer for realm CompatibilityRealm.>
  <Nov 4, 2002 1:19:21 PM EST> <Notice> <Security> <090082> <Securityinitializing
  using realm CompatibilityRealm.>
  <Nov 4, 2002 1:19:21 PM EST> <Critical> <WebLogicServer> <000364> <Serverfailed
  during initialization. Exception:java.lang.SecurityException: Authenticationfor
  user weblogic denied
  java.lang.SecurityException: Authentication for user weblogic deniedat
  weblogic.security.service.SecurityServiceManager.doBootAuthorization(
  SecurityServiceManager.java:1028)
  at weblogic.security.service.SecurityServiceManager.initialize(SecurityS
  erviceManager.java:1166)
  at weblogic.t3.srvr.T3Srvr.initialize1(T3Srvr.java:697)
  at weblogic.t3.srvr.T3Srvr.initialize(T3Srvr.java:589)
  at weblogic.t3.srvr.T3Srvr.run(T3Srvr.java:277)
  at weblogic.Server.main(Server.java:32)
  <Nov 4, 2002 1:19:21 PM EST> <Emergency> <WebLogicServer> <000342><Unable to
  in
  itialize the server: Fatal initialization exception
  Throwable: java.lang.SecurityException: Authentication for user weblogicdenied
  java.lang.SecurityException: Authentication for user weblogic denied
  at weblogic.security.service.SecurityServiceManager.doBootAuthorization(
  SecurityServiceManager.java:1028)
  at weblogic.security.service.SecurityServiceManager.initialize(SecurityS
  erviceManager.java:1166)
  at weblogic.t3.srvr.T3Srvr.initialize1(T3Srvr.java:697)
  at weblogic.t3.srvr.T3Srvr.initialize(T3Srvr.java:589)
  at weblogic.t3.srvr.T3Srvr.run(T3Srvr.java:277)
  at weblogic.Server.main(Server.java:32)
  The WebLogic Server did not start up properly.
  Exception raised:
  java.lang.SecurityException: Authentication for user weblogic denied
  at weblogic.security.service.SecurityServiceManager.doBootAuthorization(
  SecurityServiceManager.java:1028)
  at weblogic.security.service.SecurityServiceManager.initialize(SecurityS
  erviceManager.java:1166)
  at weblogic.t3.srvr.T3Srvr.initialize1(T3Srvr.java:697)
  at weblogic.t3.srvr.T3Srvr.initialize(T3Srvr.java:589)
  at weblogic.t3.srvr.T3Srvr.run(T3Srvr.java:277)
  at weblogic.Server.main(Server.java:32)
  Reason: Fatal initialization exception
  Throwable: java.lang.SecurityException: Authentication for user weblogicdenied
  java.lang.SecurityException: Authentication for user weblogic denied
  at weblogic.security.service.SecurityServiceManager.doBootAuthorization(
  SecurityServiceManager.java:1028)
  at weblogic.security.service.SecurityServiceManager.initialize(SecurityS
  erviceManager.java:1166)
  at weblogic.t3.srvr.T3Srvr.initialize1(T3Srvr.java:697)
  at weblogic.t3.srvr.T3Srvr.initialize(T3Srvr.java:589)
  at weblogic.t3.srvr.T3Srvr.run(T3Srvr.java:277)
  at weblogic.Server.main(Server.java:32)
  scott dunbar bea systems,
  inc.
  [email protected] boulder, co
  303 998 2125 usa

• Siebel new LDAP adapter integration with BI Publisher

  Hi All!!
  We have configured our Siebel (8.1.1.3) security adapter with LDAP. BI Publisher is using Siebel security model.
  We had to clone our AOM (fins_esn which is using the security adapter LDAP) to finsxx_esn because we are migrating the AD 2000 to 2008 (we are also changing the domain). The roll out will last 2 month, users will be migrated by branch, it wont be a big bang.
  We have to generate a new LDAP security adapter to authenticate users who are logging to finsxx_esn to the AD 2008 (AD 2008 is on a diferent domain than AD 2000. This is working for application autehtication, no problems found here)
  On a standalone environment report generation is working. But for a distributed environment (1 AOM, 1 NAOM, 1 Web Server) is not working.
  Does anyone knows how to integrate to BI Publisher when you have two LDAP security adapters on Siebel Application? Or is there any authentication method to use instead of "Siebel Security" so as to achieve this?
  Regards

  We actually ran into a similar problem where I work. I created a support web ticket for our issue and the response is that BIP 11G is not supported for integration with Siebel 8.1, or any other version for that matter. Oracle is currently working on a fix to integrated the latest version of Siebel with BIP.
  There advice to me was to downgrade to BIP 10G for the time being.

• PeopleTools - LDAP (MSAD) integration

  I'm tooling around with creating a process to create a shell/disabled Active Directory (AD) account when a new person is hired in the HR database. I've already successfully utilized the LDAP_SEARCH and LDAP_MODIFY business interlinks to read from and update the AD accounts that are linked with a PS Operator, so I know the server and search configurations are correct. We are also using LDAP authentication with these same servers in production.
  Today I thought I'd try the LDAP_ADD Business Interlink so I loaded and executed the BI after pulling individual attributes from my own AD account. I added a "9" to the sn attribute and did a replace of the sn portion of the DN to make it unique, and appended the same "9" to the sAMAccountName to make it unique also. Then I added the attributes :
  sn, givenName, displayName, department, company, name, employeeID, and sAMAccountName
  to the Business Interlink and performed the Execute().
  The BI returned with return status 65 and return status message “Object class violation”.
  Someone suggested leaving the DN blank and allowing AD to format it itself, so I did that. That time the BI returned with status 64 and status message ‘Naming violation’.
  I'm not an LDAP or AD expert (in fact don't even have access to AD), so keep it simple. Any suggestions ?
  TIA!

  Lots of views, but no responses. Is there any interest out there in LDAP integration ?
  I've resolved this issue, I had not been giving the full object path to the new user I was adding to AD.
  &inAttrDoc = &inAddDirectoryEntries.AddDoc("Attribute");
  &biReturn = &inAttrDoc.AddValue("Attribute_Name", "objectclass");
  &biReturn = &inAttrDoc.AddValue("Value", "top");
  &biReturn = &inAttrDoc.AddValue("Value", "person");
  &biReturn = &inAttrDoc.AddValue("Value", "organizationalPerson");
  &biReturn = &inAttrDoc.AddValue("Value", "user");
  Originally I had been givning only the user value not the top>person>organizationalPerson>user values. When that was added, I was in business.
  Edited by: user632288 on Jul 15, 2009 9:34 AM

• Outlook IMAP client authen to CUCMBE-UC with LDAP/AD integration

  I have a CUCME 7.1(3). instlallation which is integrated into AD's LDAP for user population and authentication.  Users can log into the UC PCA (/ciscopca)
  and authenticate their username/password against AD successfully.
  I'm trying to setup Outlook clients but I cannot authenticate my client when testing the connection to UC. My username's SMTP address is [email protected]
  and when I set-up my IMAP outlook client I am using an email address of [email protected], server information for IMAP has incoming and outgoing server address 10.1.1.1 (10.1.1.1 is my CUCMBE-UC address). I am using my username and password which works for ciscopca access (via AD authen). But when I test my connection it just kicks back the test that the log in failed.
  Is there a problem with authentication IMAP clients to UC-IMAP when AD auth/integration is used in Business Edition or am I missing something.
  THANKS!!

  So, there is one portion of the document that I sent you I'd like to focus in on and ask if you've tried this and, if not,
  please do:
  Configure the corporate email address of each user  as an SMTP proxy address for the user. When setting up the Connection  IMAP account on user workstations, use the corporate email address of  the user, rather than the Connection-specific email address, in the IMAP  settings. In this way, users do not need to know an extra set of email  addresses for addressing voice messages in the email client, and are  insulated from changes to the Connection-specific addresses if the  Connection SMTP domain is changed.
  In other words, you would have the following:
  AD User = jdoe
  CUC User = jdoe (synced from AD)
  Corporate SMTP/Email Address = [email protected]
  CUC SMTP/Email Address = [email protected]
  For jdoe's CUC user account, configure the SMTP proxy address to be the corporate email address ([email protected]).
  When you set the IMAP connection in Outlook, specify the SMTP Proxy Address as the connection name NOT the CUC SMTP address.  You would also provide your AD password just like you do with PCA.
  Have you tried to see if that yields different results?
  Hailey

• LDAP (OID) integration with java appilcation

  OID issue Urgent
  Currently we are using the OID-LDAP as the repository for storing username, passwds
  and other attributes. All applications that need authentication will essentially
  be using the OID.
  In our effort to do the same we are encountering the following problems
  - Creation of an identity corresponding the application
  - Giving this identity certain LDAP authorizations (Which authorizations are these)
  We have been successful creating LDAP entries for users and getting the initial
  JNDI contexts to do the lookups.
  When we are creating the user lookup from java code using oracle.ldap.util.User pakage ,
  at the run time it's throwing error(no classfound oracle/net/config/ConfigException ).
  why and where this is needed and how to resolve that. is that because we haven't added
  the application in oid and configured authorizations for it.
  Need an urgent answer to this since all applications will be using LDAP(OID).
  here is code of java which tries to connect to OID.
  ================================================================================================
  import oracle.ldap.util.*;
  import oracle.ldap.util.jndi.*;
  import java.io.*;
  import java.util.*;
  import javax.naming.*;
  import java.Exception.*;
  import javax.naming.directory.*;
  public class hello {
  public static void main(String argv[])
  throws NamingException {
  // Create InitialDirContext
       System.out.println("INSIDE SERVLET");
  InitialDirContext ctx = ConnectionUtil.getDefaultDirCtx( "hire11.kmfl.kg","4032","cn=orcladmin", "ias123" );
  // Create Subscriber object
       System.out.println("GOT CONTEXT" +ctx);
  Subscriber mysub = null;
  /* commented for time being -----------------------------
  try {
  // Creation using DN
  System.out.println("CREATING subscriber");
       mysub = new Subscriber( ctx, Util.IDTYPE_DN, "o=oracle,dc=com", false
       System.out.println("GOT subscriber");
  catch (UtilException e) {
            System.out.println("error");
  // Create User Objects
  User myuser = null, myuser1 = null;
  try {
  // Create User using a subscriber DN and the User DN
       System.out.println("CREATING USERl");
  myuser = new User ( ctx,Util.IDTYPE_DN,           "cn=abhishek,cn=users,dc=kmfl,dc=kg",Util.IDTYPE_DN,"dc=kmfl,dc=kg", true );
       System.out.println("GOT USER");
  // Create User using a subscriber object and the User
  // simple name
  // commented for time being -----------------------------
  myuser1 = new User ( ctx, Util.IDTYPE_SIMPLE, "abhishek", mysub, true );
  catch ( UtilException e ) {
  System.out.println("COUDN'T GET USER"+e.toString());
  // Authenticate User
  try {
       System.out.println("gOING FOR AUTHENTICATION");     
  myuser.authenticateUser(ctx,User.CREDTYPE_PASSWD,"abhi123");
       System.out.println("AUTHENTICATION SuccessFull");
       System.out.println("AUTHENTICATION SUCCESSfULL");
       System.out.println("AUTHENTICATION sUCCESSfULL");
  catch ( UtilException e ) {
  System.out.println("AUTHENTICATION FAILED");
  // Perform User operations
  /* commented for time being -----------------------------
  try {
  PropertySetCollection result = null;
  // Get telephonenumber of user
  String[] userAttrList = {"telephonenumber"};
  result = myuser1.getProperties(ctx,userAttrList);
  Util.printResults(result);
  // Set telephonenumber of user
  // Create JNDI ModificationItem
  ModificationItem[] mods = new ModificationItem[1];
  mods[0] = new ModificationItem(DirContext.REPLACE_ATTRIBUTE,
  new BasicAttribute("telephonenumber", "444-6789"));
  // Perform modification using User object
  myuser.setProperties(ctx, mods);
  catch ( UtilException e ) {
  } // End of SampleUser.java
  ==============================================================================================================

  What about SSL or LDAPS !
  Can't seem to find any java examples which would support services of type:
  ldapbind -U 1,2 for java API !

• LDAP (OID) integration with java appilcation( Urgent imp.)

  Currently we are using the OID-LDAP as the repository for storing username, passwds
  and other attributes. All applications that need authentication will essentially
  be using the OID.
  In our effort to do the same we are encountering the following problems
  - Creation of an identity corresponding the application
  - Giving this identity certain LDAP authorizations (Which authorizations are these)
  We have been successful creating LDAP entries for users and getting the initial
  JNDI contexts to do the lookups.
  When we are creating the user lookup from java code using oracle.ldap.util.User pakage ,
  at the run time it's throwing error(no classfound oracle/net/config/ConfigException ).
  why and where this is needed and how to resolve that. is that because we haven't added
  the application in oid and configured authorizations for it.
  Need an urgent answer to this since all applications will be using LDAP(OID).
  here is code of java which tries to connect to OID.
  ================================================================================================
  import oracle.ldap.util.*;
  import oracle.ldap.util.jndi.*;
  import java.io.*;
  import java.util.*;
  import javax.naming.*;
  import java.Exception.*;
  import javax.naming.directory.*;
  public class hello {
  public static void main(String argv[])
  throws NamingException {
  // Create InitialDirContext
  System.out.println("INSIDE SERVLET");
  InitialDirContext ctx = ConnectionUtil.getDefaultDirCtx( "hire11.kmfl.kg","4032","cn=orcladmin", "ias123" );
  // Create Subscriber object
  System.out.println("GOT CONTEXT" +ctx);
  Subscriber mysub = null;
  /* commented for time being -----------------------------
  try {
  // Creation using DN
  System.out.println("CREATING subscriber");
  mysub = new Subscriber( ctx, Util.IDTYPE_DN, "o=oracle,dc=com", false
  System.out.println("GOT subscriber");
  catch (UtilException e) {
  System.out.println("error");
  // Create User Objects
  User myuser = null, myuser1 = null;
  try {
  // Create User using a subscriber DN and the User DN
  System.out.println("CREATING USERl");
  myuser = new User ( ctx,Util.IDTYPE_DN, "cn=abhishek,cn=users,dc=kmfl,dc=kg",Util.IDTYPE_DN,"dc=kmfl,dc=kg", true );
  System.out.println("GOT USER");
  // Create User using a subscriber object and the User
  // simple name
  // commented for time being -----------------------------
  myuser1 = new User ( ctx, Util.IDTYPE_SIMPLE, "abhishek", mysub, true );
  catch ( UtilException e ) {
  System.out.println("COUDN'T GET USER"+e.toString());
  // Authenticate User
  try {
  System.out.println("gOING FOR AUTHENTICATION");
  myuser.authenticateUser(ctx,User.CREDTYPE_PASSWD,"abhi123");
  System.out.println("AUTHENTICATION SuccessFull");
  System.out.println("AUTHENTICATION SUCCESSfULL");
  System.out.println("AUTHENTICATION sUCCESSfULL");
  catch ( UtilException e ) {
  System.out.println("AUTHENTICATION FAILED");
  // Perform User operations
  /* commented for time being -----------------------------
  try {
  PropertySetCollection result = null;
  // Get telephonenumber of user
  String[] userAttrList = {"telephonenumber"};
  result = myuser1.getProperties(ctx,userAttrList);
  Util.printResults(result);
  // Set telephonenumber of user
  // Create JNDI ModificationItem
  ModificationItem[] mods = new ModificationItem[1];
  mods[0] = new ModificationItem(DirContext.REPLACE_ATTRIBUTE,
  new BasicAttribute("telephonenumber", "444-6789"));
  // Perform modification using User object
  myuser.setProperties(ctx, mods);
  catch ( UtilException e ) {
  } // End of SampleUser.java
  ==============================================================================================================

  Hi,
  Make sure you have the netcfg.jar in the same directory as that of ldapjclnt9.jar (in $ORACLE_HOME/jlib).
  Regards
  Radhika

• LDAP Security Integration to JSF

  I would like to integrate a security system that we use to the JSF project I'm developing. The setting is as follows:
  We have a centralized single signon authentication system (OBLIX) that present the user with a login screen. Once the user logs in successfully, the system will direct the user to a url of my choice. The login information, such as user id, will be stored in the request as parameters.
  I'm new to JSF. So far I have not have to use any servlets in jsf. All I have done in my application with JSF are backing beans and control beans. The business logic resides in the control beans which invoke the backend model programs (which deals with database etc.).
  The question is how to integrate this OBLIX security nicely into my application. Can I have OBLIX direct a successful login to a jsp that triggers a control bean automatically? I need to read off the request parameters to find out who the login user is.
  Is this something that should be done with JSF listeners?
  Thanks in advance. I hope to hear from you experts soon.

  Hi Gary,
  maybe get in contact with Scott Spendolini from Sumner Technologies (http://sumnertechnologies.com/), I think these guys have some experience integrating APEX with eBusiness Suite.
  Patrick
  My APEX Blog: http://inside-apex.blogspot.com
  The ApexLib Framework: http://apexlib.sourceforge.net
  The APEX Builder Plugin: http://sourceforge.net/projects/apexplugin/

• SAP HR to LDAP Server Integration

  Dear Experts,
  We are trying to integrate HR data from SAP ECC to an LDAP server using the built in LDAP connector settings in ECC.
  It is working well with the exception that the KEY field from HR is being populated into one of the spare fields on Activie Directory. Is there anyway to prevent this. It is required in the LDAP Mapping synchronization but is not required in LDAP server.
  We have tried the various combinations of import and export parameters but nothing works.
  Many thanks in advance.
  Mark

  Hello Mark,
  Check this link
  http://www.sdn.sap.com/irj/scn/go/portal/prtroot/docs/library/uuid/06187a32-0a01-0010-709b-e664a61eab08?QuickLink=index&overridelayout=true
  Also have a look at OSS notes
  - 718383 - NetWeaver: Supported UME Data Sources and Change.
  - 352295 - Microsoft Windows Single Sign-On options
  regards,

• Jsp and asp integration

  This might sound like a stupid thing to do.
  If I have a main website developed in jsp and I want to pass information (variables) from it to another component of the same site developed in asp on a separate server is this possible?
  If so how might one do it?
  Many thanks
  Paul

  It's not a stupid question! You can even have both ASP and JSP on the same server - IIS! Of course, you have to have JSP container installed to process your JSP/Servlets.
  How to do that? Install IIS (Microsoft Internet Information Server) (usually working on standard web port 80), also install Tomcat on the same server. After that you have to install ISAPI filter on IIS. That's the component that will filter all HTTP requests for pages with JSP extension from your IIS server and redirect them on Tomcat for JSP/Servlet processing.
  E.g. if you have installed ISAPI filter for Tomcat container and you have INFO.ASP and INFO.JSP on your site. IIS will process ASP and send the result to your client. Also, if client requests INFO.JSP, ISAPI filter will recognoze from HTTP request that this client is asking for JSP page and it will redirect this request on Tomcat which will process this JSP and return the result to the user again.
  APS and JSP pages can communicate among each other through POST or GET methods. For example if you request INFO.ASP?user=John or INFO.ASP?user=John both of them are capable of dealing with parameters (user) and each of them can redirect request to other one.

• ASP Integration Getting Started Help

  Hi I have a booking and despatch program that displays data
  across 3 screens
  in ASP. What I need to do is display all this data in a Flash
  SAP by using
  the already created ASP pages as data source.
  Can anybody help me get started, point me in the right
  direction for
  resources.
  Many Thanks
  Simon
  Simon Gare
  The Gare Group Limited
  website: www.thegaregroup.co.uk
  website: www.privatehiresolutions.co.uk

  Welcome to our community, Ian
  I just sent you a personal E-Mail. Hopefully it will help.
  Cheers... Rick