Subsonic Forum

forum.subsonic.org

Skip to content

LDAP Error, unable to log on using domain user

Need help? Post your questions here.

Moderator: moderators

Post a reply

LDAP Error, unable to log on using domain user

Postby primary » Fri May 21, 2010 8:59 pm

Hi, hope some one can help me here.

I use a Ubuntu 10.04 server and subsonic 4.0.1 ( Thanks Sindre for this great app )

My domain controller is a Windows 2003 SBS R2, I have not done anything to my domain controller regarding LDAP. I've reed more than one place that LDAP is enabled on SBS2003R2 by default. But I guess I am missing something, and I dont know what it is.

LDAP URL:
ldap://servername.domain.local:389/CN=U ... n,DC=local

I do have a little problem, I dont know what CN is.
I've tried to change it to OU and ad a user to OU Users
But no luck.. Please help :) :) :)

I get the error in subsonic.log:

[2010-05-21 22:36:21,628] INFO SubsonicLdapBindAuthenticator - Failed to authenticate user 'subsonic' in LDAP.
org.acegisecurity.ldap.LdapDataAccessException: LdapCallback;[LDAP: error code 1 - 00000000: LdapErr: DSID-0C090627, comment: In order to perform this operation a successful bind must be completed on the con
nection., data 0, veceted on the connection., data 0, vece
at org.acegisecurity.ldap.LdapTemplate$LdapExceptionTranslator.translate(LdapTemplate.java:295)
at org.acegisecurity.ldap.LdapTemplate.execute(LdapTemplate.java:128)
at org.acegisecurity.ldap.LdapTemplate.searchForSingleEntry(LdapTemplate.java:246)
at org.acegisecurity.ldap.search.FilterBasedLdapUserSearch.searchForUser(FilterBasedLdapUserSearch.java:119)
at org.acegisecurity.providers.ldap.authenticator.BindAuthenticator.authenticate(BindAuthenticator.java:71)
at net.sourceforge.subsonic.ldap.SubsonicLdapBindAuthenticator.authenticate(SubsonicLdapBindAuthenticator.java:72)
at org.acegisecurity.providers.ldap.LdapAuthenticationProvider.retrieveUser(LdapAuthenticationProvider.java:233)
at org.acegisecurity.providers.dao.AbstractUserDetailsAuthenticationProvider.authenticate(AbstractUserDetailsAuthenticationProvider.java:119)
at org.acegisecurity.providers.ProviderManager.doAuthentication(ProviderManager.java:195)
at org.acegisecurity.AbstractAuthenticationManager.authenticate(AbstractAuthenticationManager.java:45)
at org.acegisecurity.ui.webapp.AuthenticationProcessingFilter.attemptAuthentication(AuthenticationProcessingFilter.java:71)
at org.acegisecurity.ui.AbstractProcessingFilter.doFilter(AbstractProcessingFilter.java:252)
at org.acegisecurity.util.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:275)
at org.acegisecurity.ui.logout.LogoutFilter.doFilter(LogoutFilter.java:110)
at org.acegisecurity.util.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:275)
at org.acegisecurity.context.HttpSessionContextIntegrationFilter.doFilter(HttpSessionContextIntegrationFilter.java:249)
at org.acegisecurity.util.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:275)
at org.acegisecurity.util.FilterChainProxy.doFilter(FilterChainProxy.java:149)
at org.acegisecurity.util.FilterToBeanProxy.doFilter(FilterToBeanProxy.java:98)
at org.mortbay.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.java:1084)
at net.sourceforge.subsonic.filter.RequestEncodingFilter.doFilter(RequestEncodingFilter.java:43)
at org.mortbay.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.java:1084)
at net.sourceforge.subsonic.filter.ParameterDecodingFilter.doFilter(ParameterDecodingFilter.java:54)
at org.mortbay.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.java:1084)
at net.sourceforge.subsonic.filter.BootstrapVerificationFilter.doFilter(BootstrapVerificationFilter.java:54)
at org.mortbay.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.java:1084)
at org.mortbay.jetty.servlet.ServletHandler.handle(ServletHandler.java:360)
at org.mortbay.jetty.security.SecurityHandler.handle(SecurityHandler.java:216)
at org.mortbay.jetty.servlet.SessionHandler.handle(SessionHandler.java:181)
at org.mortbay.jetty.handler.ContextHandler.handle(ContextHandler.java:712)
at org.mortbay.jetty.webapp.WebAppContext.handle(WebAppContext.java:405)
at org.mortbay.jetty.handler.HandlerWrapper.handle(HandlerWrapper.java:139)
at org.mortbay.jetty.Server.handle(Server.java:313)
at org.mortbay.jetty.HttpConnection.handleRequest(HttpConnection.java:506)
at org.mortbay.jetty.HttpConnection$RequestHandler.content(HttpConnection.java:844)
at org.mortbay.jetty.HttpParser.parseNext(HttpParser.java:644)
at org.mortbay.jetty.HttpParser.parseAvailable(HttpParser.java:211)
at org.mortbay.jetty.HttpConnection.handle(HttpConnection.java:381)
at org.mortbay.io.nio.SelectChannelEndPoint.run(SelectChannelEndPoint.java:396)
at org.mortbay.thread.BoundedThreadPool$PoolThread.run(BoundedThreadPool.java:442)
Caused by: javax.naming.NamingException: [LDAP: error code 1 - 00000000: LdapErr: DSID-0C090627, comment: In order to perform this operation a successful bind must be completed on the connection., data 0, ve
ce
at com.sun.jndi.ldap.LdapCtx.mapErrorCode(LdapCtx.java:3072)
at com.sun.jndi.ldap.LdapCtx.processReturnCode(LdapCtx.java:2978)
at com.sun.jndi.ldap.LdapCtx.processReturnCode(LdapCtx.java:2785)
at com.sun.jndi.ldap.LdapCtx.searchAux(LdapCtx.java:1839)
at com.sun.jndi.ldap.LdapCtx.c_search(LdapCtx.java:1762)
at com.sun.jndi.ldap.LdapCtx.c_search(LdapCtx.java:1779)
at com.sun.jndi.toolkit.ctx.ComponentDirContext.p_search(ComponentDirContext.java:412)
at com.sun.jndi.toolkit.ctx.PartialCompositeDirContext.search(PartialCompositeDirContext.java:394)
at com.sun.jndi.toolkit.ctx.PartialCompositeDirContext.search(PartialCompositeDirContext.java:376)
at javax.naming.directory.InitialDirContext.search(InitialDirContext.java:284)
at org.acegisecurity.ldap.LdapTemplate$3.doInDirContext(LdapTemplate.java:249)
at org.acegisecurity.ldap.LdapTemplate.execute(LdapTemplate.java:126)
... 38 more
primary
 
Posts: 17
Joined: Sat Jul 18, 2009 1:14 pm
Top

Postby primary » Sat May 22, 2010 8:20 am

No one ??
primary
 
Posts: 17
Joined: Sat Jul 18, 2009 1:14 pm
Top

Postby primary » Wed May 26, 2010 12:47 pm

Come on people, some one must have some suggestions?
primary
 
Posts: 17
Joined: Sat Jul 18, 2009 1:14 pm
Top

Postby sliver4321 » Thu May 27, 2010 9:58 am

This probably means you have to pre-authenticate (log on) to the LDAP server before you authenticate users against the LDAP. See here:

http://groups.google.com/group/shibbole ... 0dad0a9557

Other links:

http://forums.sun.com/thread.jspa?threadID=791439
http://www.ldapbrowser.com/forum/viewto ... ?f=4&t=435
sliver4321
 
Posts: 7
Joined: Mon May 17, 2010 1:50 pm
Location: Trondheim, Norway
Top

Hi Silver4321

Postby primary » Fri May 28, 2010 9:07 am

Thanks for replying.
Unfortunatly LDAP is not one of the things I know to much about. So muct admit that the links you sent does not tell me anything.

Anyone have any simpler steps for me to try out?
primary
 
Posts: 17
Joined: Sat Jul 18, 2009 1:14 pm
Top

Problem solved

Postby primary » Fri May 28, 2010 11:34 pm

As I indicated in this post. I had no Idea what the "path" for LDAP would be on my domain. The answer to find it out was easier than I first thought. But...
It did require me to download Softerra LDAP brower. Util is free. Just install, make a profile, connect to domain using domain\user password. And brows for your Users OU.. The path is displayed selecting properties for the OU selected.. And there you go.. LDAP Path..
primary
 
Posts: 17
Joined: Sat Jul 18, 2009 1:14 pm
Top
Post a reply

Return to Help

Who is online

Users browsing this forum: No registered users and 29 guests

Powered by phpBB® Forum Software © phpBB Group
Protected by Anti-Spam ACP