By: prerna arote user 21 May 2015 at 4:16 a.m. CDT

11 Responses

I have followed the same steps as mentioned on gluu site to install gluu server on cent os. I have few problems: 1) when i click on update in manage ldap authentication or in cache refresh it is prompting mesg of 'Updated successfully' but my /opt/apache-tomcat/logs ... there wrapper.log and oxtrust_cache_refresh.log was not being updated.. not showing current date and time . 2) In configuration/server status: host name, ip address, system uptime is blank and last update is also very old. 3) once I log out from the gluu. It wont take my credential of admin (username admin and passwd: ldap password) 4) my cache refresh details: key attribute: sAMAccountName object class: user source attribute: cn custom LDAP filter: sn=* -------------- name: my backend ldap server name Bind DN: CN=Manager, CN=Users, DC=my, DC=org, DC=in use ssl: ticked Max connection: 3 Server: domain.my.org.in:389 Base DN: dc= my, dc=org,dc=in Bind password: same password for manager -------------- Name: auth_ldap_server Bind DN: cn=Directory Manager use ssl: ticked Max connection: 3 server:localldapserver:port (eg. localhost:1636) base dn: o=gluu bind password : same for ldap user used during installation -------------- refresh method: copy keep external person: ticked load source data: unticked ---------------- Attribute mapping : cn=Manager cn .................. polling interval: 15 min server IP: my backend ldap server ip address snapshot folder: path of folder i have created on desktop snapshot count:20 This is getting updated. 5)Configuration/Manage Authentication: name: backend server name Bind DN: CN=Manager, CN=Users, DC=my, DC=org, DC=in use ssl: ticked max connection:100 Server: my server:port Primary key: sAMAccountName Local Primary key:uid Bind Password: same for Manager used in backend ldap After clicking on Test LDAP Connection: I get "Failed to connect to LDAP server" Kindly, let me know where I am getting wrong. Thanks.

None

closed

By Mohib Zico Account Admin 21 May 2015 at 8:50 a.m. CDT

Copy

>> I get "Failed to connect to LDAP server" tail wrapper.log & oxtrust_cache_refresh.log while 'clicking on Test LDAP Connection'. You should get immediate response on this error.

By prerna arote user 21 May 2015 at 11:52 p.m. CDT

Copy

Hi, But, everyday when i come next day my gluu server wont work.It says use correct username and password. I am using admin (default user name) and ldap + oxtrust passwd (given while installing gluu). Everyday, morning I need to install it again. I have followed these steps: #wget http://repo.gluu.org/centos/Gluu.repo -O /etc/yum.repos.d/Gluu.repo # wget http://repo.gluu.org/centos/RPM-GPG-KEY-GLUU -O /etc/pki/rpm-gpg/RPM-GPG-KEY-GLUU # rpm --import /etc/pki/rpm-gpg/RPM-GPG-KEY-GLUU # yum clean all # yum install gluu-server # service gluu-server start #service gluu-server login # cd /install/community-edition-setup/ # ./setup.py IP adrr: my system ip address Host URL: gave url city: provided state: provided Country: provided organization: provided mail address: provided ldap and oxtrust superuser passwd: given rest all things: update host, resolv.conf, CAS, shibboleth, open dj, openid, oxauth, oxtrust: all values are YES it get installed. it asks me to point to that url: when i point : my credentials are: admin and same password which i gave during this installation (Ldap) it logins... i click on 'keep external person' after logging out ... after some time... it says use correct username and password. i have modified few files like in configuration/Json:oxauth authenticationfilterenabled: true in custom scripts: cache refresh enabled (ticked and updated) sometimes, I get error like"Oxtrust wont allow you to login" Then i close the browser and reopen with my url for oxauth.. it says use correct username and password. Do i need to modify something else somewhere. Kindly, help me.

By prerna arote user 22 May 2015 at 12:37 a.m. CDT

Copy

INFO | jvm 1 | 2015/05/22 17:34:37 | at java.util.concurrent.ScheduledThreadPoolExecutor$ScheduledFutureTask.access$301(ScheduledThreadPoolExecutor.java:178) INFO | jvm 1 | 2015/05/22 17:34:37 | at java.util.concurrent.ScheduledThreadPoolExecutor$ScheduledFutureTask.run(ScheduledThreadPoolExecutor.java:293) INFO | jvm 1 | 2015/05/22 17:34:37 | at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1145) INFO | jvm 1 | 2015/05/22 17:34:37 | at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:615) INFO | jvm 1 | 2015/05/22 17:34:37 | at java.lang.Thread.run(Thread.java:745) INFO | jvm 1 | 2015/05/22 17:34:39 | 2015-05-22 17:34:39,368 TRACE [org.xdi.service.custom.script.CustomScriptManager] Last finished time '5/22/15 5:34 PM' INFO | jvm 1 | 2015/05/22 17:34:40 | 2015-05-22 17:34:40,217 DEBUG [org.gluu.oxtrust.ldap.service.MetadataValidationTimer] Starting metadata validation INFO | jvm 1 | 2015/05/22 17:34:40 | 2015-05-22 17:34:40,218 DEBUG [org.gluu.oxtrust.ldap.service.MetadataValidationTimer] Metadata validation finished INFO | jvm 1 | 2015/05/22 17:34:56 | 2015-05-22 17:34:56,116 INFO [org.jasig.cas.services.DefaultServicesManagerImpl] - <Reloading registered services.> INFO | jvm 1 | 2015/05/22 17:34:56 | 2015-05-22 17:34:56,117 INFO [org.jasig.cas.services.DefaultServicesManagerImpl] - <Loaded 1 services.> This is my wrapper.log (Last 10 lines)

By prerna arote user 22 May 2015 at 12:39 a.m. CDT

Copy

2015-05-22 17:32:14,553 DEBUG [gluu.oxtrust.ldap.cache.service.CacheRefreshTimer] (pool-6-thread-8) Starting conditions aren't reached 2015-05-22 17:32:14,553 DEBUG [gluu.oxtrust.ldap.cache.service.CacheRefreshTimer] (pool-6-thread-8) Allowing to run new process exclusively 2015-05-22 17:33:14,553 DEBUG [gluu.oxtrust.ldap.cache.service.CacheRefreshTimer] (pool-6-thread-1) Starting conditions aren't reached 2015-05-22 17:33:14,553 DEBUG [gluu.oxtrust.ldap.cache.service.CacheRefreshTimer] (pool-6-thread-1) Allowing to run new process exclusively 2015-05-22 17:34:14,553 DEBUG [gluu.oxtrust.ldap.cache.service.CacheRefreshTimer] (pool-6-thread-9) Starting conditions aren't reached 2015-05-22 17:34:14,554 DEBUG [gluu.oxtrust.ldap.cache.service.CacheRefreshTimer] (pool-6-thread-9) Allowing to run new process exclusively 2015-05-22 17:35:14,553 DEBUG [gluu.oxtrust.ldap.cache.service.CacheRefreshTimer] (pool-6-thread-7) Starting conditions aren't reached 2015-05-22 17:35:14,553 DEBUG [gluu.oxtrust.ldap.cache.service.CacheRefreshTimer] (pool-6-thread-7) Allowing to run new process exclusively 2015-05-22 17:36:14,553 DEBUG [gluu.oxtrust.ldap.cache.service.CacheRefreshTimer] (pool-6-thread-2) Starting conditions aren't reached 2015-05-22 17:36:14,603 DEBUG [gluu.oxtrust.ldap.cache.service.CacheRefreshTimer] (pool-6-thread-2) Allowing to run new process exclusively and This is my oxtrust_cache_refresh.log

By Mohib Zico Account Admin 23 May 2015 at 7:49 a.m. CDT

Copy

Your provided last 10 lines has no indication of failure or anything regarding your problem; it actually never does. We generally examine last 500 or 1000 lines to get the reason. Anyways what I can understand you are not getting the whole Cache Refresh process. May be we will write a blog to describe it more. For now what you can try: 1. Install Gluu Server. 2. Configure Cache Refresh ( + enable `keep external person`) and wait for 10-15 mins. After that check if your users are available inside of your Gluu Server or not. `DO NOT touch Manage LDAP Authentication` yet. 3. If your users are available inside Gluu Server; then open a new browser and modify `Manage LDAP Authentication` for your AD. 4. Test authentication with new user who is in your backend AD. Please note that, you are locking yourself because you are modifying #3 without 100% successful completion of #2.

By prerna arote user 23 May 2015 at 8:05 a.m. CDT

Copy

Ok. Thanks. I will follow these steps. from where i can get list of users available inside my gluu server? is it people.ldif file? How to perform test authentication in gluu?

By Mohib Zico Account Admin 23 May 2015 at 9:14 a.m. CDT

Copy

>> from where i can get list of users available inside my gluu server? is it people.ldif file? You can check user's information from oxTrust ( Gluu Server GUI ) or from LDAP. In order to check it from oxTrust, just search for any user whose information is known to you. Say, you know user _arote.prerna@gmail.com_ is available in your AD. So search for this user in oxTrust by [this](http://www.gluu.org/docs/admin-guide/user-management/#local-user-management) way. If you want to search users from LDAP, users information are available under `ou=people,o=gluu` DN. >> How to perform test authentication in gluu? Try to log into IDP as user _arote.prerna@gmail.com_

By prerna arote user 24 May 2015 at 11:24 p.m. CDT

Copy

Form where I can modify oxIDPAuthentication attribute in Ldap? My login isue not getting resolved yet. Is it under configuration/Manage Custom Script?? Thanks.

By Mohib Zico Account Admin 25 May 2015 at midnight CDT

Copy

`oxIDPAuthentication` is under ou=appliance DN in ldap tree.

By prerna arote user 25 May 2015 at 2:17 a.m. CDT

Copy

After, keeping unticked ssl enabled in configuration/manage authentication, - I am getting mesg'Ldap Test connection succeeded' But, when i go to manage people, apart from admin entry, I am not getting those users info who are present in my backend AD. - How to go to ou=appliance DT? Is it inside AD backend? Let me know if in gluu server, i am supposed to change any configuration file. Thanks.

By Mohib Zico Account Admin 25 May 2015 at 6:54 a.m. CDT

Copy

>> But, when i go to manage people, apart from admin entry, I am not getting those users info who are present in my backend AD. Cache Refresh didn't take place properly. You can check oxtrust_cache_refresh.log to see for the reason. >> How to go to ou=appliance DT? Is it inside AD backend? No, there is a LDAP server ( named: Gluu-LDAP ) inside Gluu Server. ou=appliance DN is there. >> Let me know if in gluu server, i am supposed to change any configuration file. No, you just need to put proper value in `oxIDPAuthentication` attribute. You can either use any LDAP browser to browse `Gluu-LDAP` or use ldapsearch/ldapmodify commands from inside VM to administer `Gluu-LDAP`

You need to Login in order to post an answer

Gluu Setup and Gluu-Ldap Integration

By: prerna arote user 21 May 2015 at 4:16 a.m. CDT

Answers

By Mohib Zico Account Admin 21 May 2015 at 8:50 a.m. CDT

By prerna arote user 21 May 2015 at 11:52 p.m. CDT

By prerna arote user 22 May 2015 at 12:37 a.m. CDT

By prerna arote user 22 May 2015 at 12:39 a.m. CDT

By Mohib Zico Account Admin 23 May 2015 at 7:49 a.m. CDT

By prerna arote user 23 May 2015 at 8:05 a.m. CDT

By Mohib Zico Account Admin 23 May 2015 at 9:14 a.m. CDT

By prerna arote user 24 May 2015 at 11:24 p.m. CDT

By Mohib Zico Account Admin 25 May 2015 at midnight CDT

By prerna arote user 25 May 2015 at 2:17 a.m. CDT

By Mohib Zico Account Admin 25 May 2015 at 6:54 a.m. CDT

Post an answer

Gluu Setup and Gluu-Ldap Integration

By: prerna arote user 21 May 2015 at 4:16 a.m. CDT

Answers

By Mohib Zico Account Admin 21 May 2015 at 8:50 a.m. CDT

By prerna arote user 21 May 2015 at 11:52 p.m. CDT

By prerna arote user 22 May 2015 at 12:37 a.m. CDT

By prerna arote user 22 May 2015 at 12:39 a.m. CDT

By Mohib Zico Account Admin 23 May 2015 at 7:49 a.m. CDT

By prerna arote user 23 May 2015 at 8:05 a.m. CDT

By Mohib Zico Account Admin 23 May 2015 at 9:14 a.m. CDT

By prerna arote user 24 May 2015 at 11:24 p.m. CDT

By Mohib Zico Account Admin 25 May 2015 at midnight CDT

By prerna arote user 25 May 2015 at 2:17 a.m. CDT

By Mohib Zico Account Admin 25 May 2015 at 6:54 a.m. CDT

Post an answer

Login Options

New Support Portal

Will be deactivated on July 1, 2025