By: Praveen Srinivasan user 28 Apr 2020 at 9:52 a.m. CDT

5 Responses
Praveen Srinivasan gravatar
I am using GLUU cluster. Cluster is three node. When we create new users, the user is not reflected in all three cluster node. When we search ldap with the user there is no entry. Also for sometime, even if the user is created, login is not happening. If I goto Oxtrust GUI I can see the user. I tried to change password manually. But nothing helps. I presume replication is not happening properly. But I couldn't find the proper logs. Also I don't know what is the issue. And when I get into oxtrust logs, I am only getting the below error continuously all the time with the specific time interval (60 seconds). I checked Ldap logs also, nothing shows fishy. Ldap is synced with csync2. But I couldn't find any error also. Here is the log I am getting. I couldn't figure it out the issue in detail. Let me know if you need more info from other logs. ``` ========> oxtrust_persistence.log <======== 2020-04-28 08:55:53,368 INFO [main] [org.gluu.site.ldap.LDAPConnectionProvider] (LDAPConnectionProvider.java:223) - Attempting to create connection pool: 1 ========> oxtrust_persistence_ldap_statistics.log <======== 2020-04-28 08:55:58,406 INFO [main] [gluu.oxtrust.service.status.ldap.LdapStatusTimer] (LdapStatusTimer.java:56) - Initializing Ldap Status Timer ========> /var/log/oxtrust.log <======== UMA passport authentication is disabled org.gluu.site.ldap.persistence.exception.EntryPersistenceException: Failed to find entries with baseDN: ou=resetPasswordRequests,inum=@!BD99.C7F6.750B.647D!0002!EF85.1747,ou=appliances,o=gluu, filter: (&(&(objectClass=top)(objectClass=gluuPasswordResetRequest))(creationDate<=20200428135558.519Z)) #011at org.gluu.site.ldap.persistence.LdapEntryManager.findEntries(LdapEntryManager.java:405) #011at org.gluu.site.ldap.persistence.LdapEntryManager$Proxy$_$$_WeldClientProxy.findEntries(Unknown Source) #011at org.gluu.oxtrust.service.PasswordResetService$1.getChunkOrNull(PasswordResetService.java:162) #011at org.gluu.site.ldap.persistence.BatchOperation.iterateAllByChunks(BatchOperation.java:47) #011at org.gluu.oxtrust.service.PasswordResetService.cleanup(PasswordResetService.java:181) #011at org.gluu.oxtrust.service.CleanerTimer.processPasswordReset(CleanerTimer.java:102) #011at org.gluu.oxtrust.service.CleanerTimer$Proxy$_$$_WeldSubclass.processPasswordReset(Unknown Source) #011at org.gluu.oxtrust.service.CleanerTimer.process(CleanerTimer.java:90) #011at org.gluu.oxtrust.service.CleanerTimer$Proxy$_$$_WeldSubclass.process$$super(Unknown Source) #011at sun.reflect.GeneratedMethodAccessor629.invoke(Unknown Source) #011at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43) #011at java.lang.reflect.Method.invoke(Method.java:498) #011at org.jboss.weld.interceptor.proxy.TerminalAroundInvokeInvocationContext.proceedInternal(TerminalAroundInvokeInvocationContext.java:51) #011at org.jboss.weld.interceptor.proxy.AroundInvokeInvocationContext.proceed(AroundInvokeInvocationContext.java:78) #011at org.xdi.service.cdi.async.AsynchronousInterceptor$1.get(AsynchronousInterceptor.java:36) #011at java.util.concurrent.CompletableFuture$AsyncSupply.run(CompletableFuture.java:1590) #011at java.util.concurrent.CompletableFuture$AsyncSupply.exec(CompletableFuture.java:1582) #011at java.util.concurrent.ForkJoinTask.doExec(ForkJoinTask.java:289) #011at java.util.concurrent.ForkJoinPool$WorkQueue.runTask(ForkJoinPool.java:1056) #011at java.util.concurrent.ForkJoinPool.runWorker(ForkJoinPool.java:1692) #011at java.util.concurrent.ForkJoinWorkerThread.run(ForkJoinWorkerThread.java:157) Caused by: LDAPSearchException(resultCode=32 (no such object), numEntries=0, numReferences=0, errorMessage='Failed to scroll to specified startIndex') #011at org.gluu.site.ldap.OperationsFacade.search(OperationsFacade.java:329) #011at org.gluu.site.ldap.persistence.LdapEntryManager.findEntries(LdapEntryManager.java:399) #011... 20 more Caused by: LDAPSearchException(resultCode=32 (no such object), numEntries=0, numReferences=0, errorMessage='The search base entry 'ou=resetPasswordRequests,inum=@!BD99.C7F6.750B.647D!0002!EF85.1747,ou=appliances,o=gluu' does not exist', matchedDN='inum=@!BD99.C7F6.750B.647D!0002!EF85.1747,ou=appliances,o=gluu') #011at com.unboundid.ldap.sdk.LDAPConnection.search(LDAPConnection.java:3650) #011at org.gluu.site.ldap.OperationsFacade.search(OperationsFacade.java:300) #011... 21 more ```

By Aliaksandr Samuseu staff 28 Apr 2020 at 7:09 p.m. CDT

Aliaksandr Samuseu gravatar
Hi, Praveen. Are you associated with one of our customers or partners? I don't think we offer support for cluster solutions under Community Support, otherwise, sorry. But if your user entry is present in LDAP server at one node, but isn't at other nodes, that's almost certainly is an LDAP replication issue. You may need to re-initialize the replication, using one of the nodes as the source.

By Praveen Srinivasan user 28 Apr 2020 at 8:47 p.m. CDT

Praveen Srinivasan gravatar
I've re-initialize the replication using one of the node as source. But still I am getting the same logs in all the nodes. All the nodes are throwing the same. I can understand that clustering is not supported by community version. I will debug, but I just wanna know it is a ldap replication issue or not. Coz I didn't see any error in ldap. Only oxtrust is where the error I am getting. ``` ========> /var/log/oxtrust.log <======== UMA passport authentication is disabled org.gluu.site.ldap.persistence.exception.EntryPersistenceException: Failed to find entries with baseDN: ou=resetPasswordRequests,inum=@!BD99.C7F6.750B.647D!0002!EF85.1747,ou=appliances,o=gluu, filter: (&(&(objectClass=top)(objectClass=gluuPasswordResetRequest))(creationDate<=20200428135558.519Z)) #011at org.gluu.site.ldap.persistence.LdapEntryManager.findEntries(LdapEntryManager.java:405) #011at org.gluu.site.ldap.persistence.LdapEntryManager$Proxy$_$_WeldClientProxy.findEntries(Unknown Source) #011at org.gluu.oxtrust.service.PasswordResetService$1.getChunkOrNull(PasswordResetService.java:162) #011at org.gluu.site.ldap.persistence.BatchOperation.iterateAllByChunks(BatchOperation.java:47) #011at org.gluu.oxtrust.service.PasswordResetService.cleanup(PasswordResetService.java:181) #011at org.gluu.oxtrust.service.CleanerTimer.processPasswordReset(CleanerTimer.java:102) #011at org.gluu.oxtrust.service.CleanerTimer$Proxy$_$_WeldSubclass.processPasswordReset(Unknown Source) #011at org.gluu.oxtrust.service.CleanerTimer.process(CleanerTimer.java:90) #011at org.gluu.oxtrust.service.CleanerTimer$Proxy$_$_WeldSubclass.process$super(Unknown Source) #011at sun.reflect.GeneratedMethodAccessor629.invoke(Unknown Source) #011at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43) #011at java.lang.reflect.Method.invoke(Method.java:498) #011at org.jboss.weld.interceptor.proxy.TerminalAroundInvokeInvocationContext.proceedInternal(TerminalAroundInvokeInvocationContext.java:51) #011at org.jboss.weld.interceptor.proxy.AroundInvokeInvocationContext.proceed(AroundInvokeInvocationContext.java:78) #011at org.xdi.service.cdi.async.AsynchronousInterceptor$1.get(AsynchronousInterceptor.java:36) #011at java.util.concurrent.CompletableFuture$AsyncSupply.run(CompletableFuture.java:1590) #011at java.util.concurrent.CompletableFuture$AsyncSupply.exec(CompletableFuture.java:1582) #011at java.util.concurrent.ForkJoinTask.doExec(ForkJoinTask.java:289) #011at java.util.concurrent.ForkJoinPool$WorkQueue.runTask(ForkJoinPool.java:1056) #011at java.util.concurrent.ForkJoinPool.runWorker(ForkJoinPool.java:1692) #011at java.util.concurrent.ForkJoinWorkerThread.run(ForkJoinWorkerThread.java:157) Caused by: LDAPSearchException(resultCode=32 (no such object), numEntries=0, numReferences=0, errorMessage='Failed to scroll to specified startIndex') #011at org.gluu.site.ldap.OperationsFacade.search(OperationsFacade.java:329) #011at org.gluu.site.ldap.persistence.LdapEntryManager.findEntries(LdapEntryManager.java:399) #011... 20 more Caused by: LDAPSearchException(resultCode=32 (no such object), numEntries=0, numReferences=0, errorMessage='The search base entry 'ou=resetPasswordRequests,inum=@!BD99.C7F6.750B.647D!0002!EF85.1747,ou=appliances,o=gluu' does not exist', matchedDN='inum=@!BD99.C7F6.750B.647D!0002!EF85.1747,ou=appliances,o=gluu') #011at com.unboundid.ldap.sdk.LDAPConnection.search(LDAPConnection.java:3650) #011at org.gluu.site.ldap.OperationsFacade.search(OperationsFacade.java:300) #011... 21 more ```

By Michael Schwartz Account Admin 29 Apr 2020 at 12:35 p.m. CDT

Michael Schwartz gravatar
Cluster Manager is licensed. Did you read the license? You can trial for 30 days, but if you want support on these forums, you need to schedule a call with the sales team: https://gluu.org/booking

By Praveen Srinivasan user 05 May 2020 at 11:34 a.m. CDT

Praveen Srinivasan gravatar
It is not a default GLUU Cluster manager, it is just gluu multi node deployment with docker.

By Michael Schwartz Account Admin 05 May 2020 at 11:55 a.m. CDT

Michael Schwartz gravatar
Ah ok. We don't support home grown cluster deployments. We document issues around how to cluster, but it's one thing we don't support on the community forums. We see it as an enterprise issue--who else needs to go from 99.9% to 99.99% availability?