Admin login failure (even with keep external persons checked)

By: Victor de Oliveira user 09 Oct 2015 at 10:16 a.m. CDT

12 Responses
Victor de Oliveira gravatar
Please excuse my ignorance, as I'm relatively new at all of this. I'm attempting to get Gluu up and working by stepping my way through the configuration docs here: http://www.gluu.org/docs/admin-guide/deployment/centos/ I got cache-refresh up and working. I kept external persons. Everything appeared good. I could login with AD accounts, etc. I went through the Manage LDAP Authentication and pointed it at our AD (this necessity was made evident by the chart on this page: http://www.gluu.org/docs/articles/cache-refresh/) Again, everything looked good... Except now I can't login to my admin account even though I kept external persons. I ran into this problem my first time around when I didn't check keep external persons... So I started a fresh installation, now it's happening regardless. Below is what I copied from wrapper log: INFO | jvm 1 | 2015/10/09 15:12:12 | 2015-10-09 15:12:12,742 ERROR [org.gluu.oxtrust.ldap.service.StatusCheckerTimer] There was an error executing command check_ssl INFO | jvm 1 | 2015/10/09 15:12:12 | 2015-10-09 15:12:12,743 ERROR [org.gluu.oxtrust.ldap.service.StatusCheckerTimer] check_ssl retuned an unexpected value INFO | jvm 1 | 2015/10/09 15:12:12 | 2015-10-09 15:12:12,762 DEBUG [org.gluu.oxtrust.ldap.service.StatusCheckerTimer] Appliance status update finished INFO | jvm 1 | 2015/10/09 15:12:15 | 2015-10-09 15:12:15,276 TRACE [org.xdi.service.custom.script.CustomScriptManager] Last finished time '10/9/15 3:12 PM' INFO | jvm 1 | 2015/10/09 15:12:20 | 2015-10-09 15:12:20,256 TRACE [org.xdi.oxauth.service.SessionIdService] Found session_id cookie: 'e76a262f-0072-472b-a822-fe6b40d88331' INFO | jvm 1 | 2015/10/09 15:12:20 | 2015-10-09 15:12:20,264 TRACE [org.xdi.oxauth.service.SessionIdService] Try to get session by id: e76a262f-0072-472b-a822-fe6b40d88331 ... INFO | jvm 1 | 2015/10/09 15:12:20 | 2015-10-09 15:12:20,264 TRACE [org.xdi.oxauth.service.SessionIdService] Session dn: uniqueIdentifier=e76a262f-0072-472b-a822-fe6b40d88331,ou=session,o=@!DBEB.C586.EA38.F374!0001!72C3.D6E9,o=gluu INFO | jvm 1 | 2015/10/09 15:12:20 | 2015-10-09 15:12:20,267 DEBUG [org.xdi.oxauth.service.external.ExternalAuthenticationService] Executing python 'authenticate' authenticator method INFO | jvm 1 | 2015/10/09 15:12:20 | 2015-10-09 15:12:20,274 DEBUG [org.xdi.oxauth.service.AuthenticationService] Authenticating user with LDAP: username: admin INFO | jvm 1 | 2015/10/09 15:12:20 | 2015-10-09 15:12:20,275 DEBUG [org.xdi.oxauth.service.AuthenticationService] Attempting to find userDN by primary key: 'sAMAccountName' and key value: 'admin' INFO | jvm 1 | 2015/10/09 15:12:20 | 2015-10-09 15:12:20,275 DEBUG [org.xdi.oxauth.service.AuthenticationService] Getting user information from LDAP: attributeName = 'sAMAccountName', attributeValue = 'admin' INFO | jvm 1 | 2015/10/09 15:12:20 | 2015-10-09 15:12:20,278 DEBUG [org.xdi.oxauth.service.AuthenticationService] Found '0' entries INFO | jvm 1 | 2015/10/09 15:12:20 | 2015-10-09 15:12:20,279 DEBUG [org.xdi.oxauth.auth.Authenticator] Authentication result for user 'admin'. auth_step: '1', result: 'false' INFO | jvm 1 | 2015/10/09 15:12:20 | 2015-10-09 15:12:20,279 INFO [org.xdi.oxauth.auth.Authenticator] Authentication failed for 'admin' INFO | jvm 1 | 2015/10/09 15:12:20 | 2015-10-09 15:12:20,296 TRACE [org.xdi.oxauth.service.ClientService] Get client from cache by Dn 'inum=@!DBEB.C586.EA38.F374!0008!D6CB.5314,ou=clients,o=@!DBEB.C586.EA38.F374!0001!72C3.D6E9,o=gluu' INFO | jvm 1 | 2015/10/09 15:12:20 | 2015-10-09 15:12:20,297 DEBUG [org.xdi.oxauth.service.ClientService] Found 1 entries for client id = @!DBEB.C586.EA38.F374!0008!D6CB.5314 INFO | jvm 1 | 2015/10/09 15:12:20 | 2015-10-09 15:12:20,305 TRACE [org.xdi.oxauth.service.ClientService] Get client from cache by Dn 'inum=@!DBEB.C586.EA38.F374!0008!D6CB.5314,ou=clients,o=@!DBEB.C586.EA38.F374!0001!72C3.D6E9,o=gluu' INFO | jvm 1 | 2015/10/09 15:12:20 | 2015-10-09 15:12:20,305 DEBUG [org.xdi.oxauth.service.ClientService] Found 1 entries for client id = @!DBEB.C586.EA38.F374!0008!D6CB.5314 INFO | jvm 1 | 2015/10/09 15:12:20 | 2015-10-09 15:12:20,306 TRACE [org.xdi.oxauth.service.ClientService] Get client from cache by Dn 'inum=@!DBEB.C586.EA38.F374!0008!D6CB.5314,ou=clients,o=@!DBEB.C586.EA38.F374!0001!72C3.D6E9,o=gluu' INFO | jvm 1 | 2015/10/09 15:12:20 | 2015-10-09 15:12:20,307 DEBUG [org.xdi.oxauth.service.ClientService] Found 1 entries for client id = @!DBEB.C586.EA38.F374!0008!D6CB.5314 INFO | jvm 1 | 2015/10/09 15:12:30 | 2015-10-09 15:12:30,004 DEBUG [org.gluu.oxtrust.ldap.service.MetadataValidationTimer] Starting metadata validation INFO | jvm 1 | 2015/10/09 15:12:30 | 2015-10-09 15:12:30,005 DEBUG [org.gluu.oxtrust.ldap.service.MetadataValidationTimer] Metadata validation finished INFO | jvm 1 | 2015/10/09 15:12:45 | 2015-10-09 15:12:45,277 TRACE [org.xdi.service.custom.script.CustomScriptManager] Last finished time '10/9/15 3:12 PM' INFO | jvm 1 | 2015/10/09 15:13:13 | 2015-10-09 15:13:13,002 DEBUG [org.gluu.oxtrust.ldap.service.StatusCheckerTimer] Starting update of appliance status INFO | jvm 1 | 2015/10/09 15:13:13 | 2015-10-09 15:13:13,013 DEBUG [org.gluu.oxtrust.ldap.service.StatusCheckerTimer] Setting facter attributes INFO | jvm 1 | 2015/10/09 15:13:13 | 2015-10-09 15:13:13,501 DEBUG [org.gluu.oxtrust.ldap.service.StatusCheckerTimer] Setting facter param: memoryfree INFO | jvm 1 | 2015/10/09 15:13:13 | 2015-10-09 15:13:13,501 DEBUG [org.gluu.oxtrust.ldap.service.StatusCheckerTimer] memoryfree => 1.88 GB INFO | jvm 1 | 2015/10/09 15:13:13 | 2015-10-09 15:13:13,502 DEBUG [org.gluu.oxtrust.ldap.service.StatusCheckerTimer] Setting facter param: memorysize INFO | jvm 1 | 2015/10/09 15:13:13 | 2015-10-09 15:13:13,502 DEBUG [org.gluu.oxtrust.ldap.service.StatusCheckerTimer] memorysize => 3.74 GB INFO | jvm 1 | 2015/10/09 15:13:13 | 2015-10-09 15:13:13,502 DEBUG [org.gluu.oxtrust.ldap.service.StatusCheckerTimer] Setting facter param: swapfree INFO | jvm 1 | 2015/10/09 15:13:13 | 2015-10-09 15:13:13,502 DEBUG [org.gluu.oxtrust.ldap.service.StatusCheckerTimer] swapfree => 3.20 GB INFO | jvm 1 | 2015/10/09 15:13:13 | 2015-10-09 15:13:13,502 DEBUG [org.gluu.oxtrust.ldap.service.StatusCheckerTimer] Setting facter param: swapsize INFO | jvm 1 | 2015/10/09 15:13:13 | 2015-10-09 15:13:13,502 DEBUG [org.gluu.oxtrust.ldap.service.StatusCheckerTimer] swapsize => 3.20 GB INFO | jvm 1 | 2015/10/09 15:13:13 | 2015-10-09 15:13:13,503 DEBUG [org.gluu.oxtrust.ldap.service.StatusCheckerTimer] Setting facter param: hostname INFO | jvm 1 | 2015/10/09 15:13:13 | 2015-10-09 15:13:13,503 DEBUG [org.gluu.oxtrust.ldap.service.StatusCheckerTimer] hostname => ce INFO | jvm 1 | 2015/10/09 15:13:13 | 2015-10-09 15:13:13,503 DEBUG [org.gluu.oxtrust.ldap.service.StatusCheckerTimer] Setting facter param: ipaddress INFO | jvm 1 | 2015/10/09 15:13:13 | 2015-10-09 15:13:13,503 DEBUG [org.gluu.oxtrust.ldap.service.StatusCheckerTimer] ipaddress => 10.10.11.27 INFO | jvm 1 | 2015/10/09 15:13:13 | 2015-10-09 15:13:13,503 DEBUG [org.gluu.oxtrust.ldap.service.StatusCheckerTimer] Setting facter param: load_average INFO | jvm 1 | 2015/10/09 15:13:13 | 2015-10-09 15:13:13,503 DEBUG [org.gluu.oxtrust.ldap.service.StatusCheckerTimer] Setting facter param: bandwidth_usage INFO | jvm 1 | 2015/10/09 15:13:13 | 2015-10-09 15:13:13,503 DEBUG [org.gluu.oxtrust.ldap.service.StatusCheckerTimer] Setting bandwidth attributes INFO | jvm 1 | 2015/10/09 15:13:13 | 2015-10-09 15:13:13,504 DEBUG [org.gluu.oxtrust.ldap.service.StatusCheckerTimer] Setting facter param: uptime_seconds INFO | jvm 1 | 2015/10/09 15:13:13 | 2015-10-09 15:13:13,504 DEBUG [org.gluu.oxtrust.ldap.service.StatusCheckerTimer] uptime_seconds => 773 INFO | jvm 1 | 2015/10/09 15:13:13 | 2015-10-09 15:13:13,504 DEBUG [org.gluu.oxtrust.ldap.service.StatusCheckerTimer] Setting df attributes INFO | jvm 1 | 2015/10/09 15:13:13 | 2015-10-09 15:13:13,508 DEBUG [org.gluu.oxtrust.ldap.service.StatusCheckerTimer] Setting httpd attributes INFO | jvm 1 | 2015/10/09 15:13:14 | org.apache.commons.exec.ExecuteException: Process exited with an error: 1 (Exit value: 1) INFO | jvm 1 | 2015/10/09 15:13:14 | at org.apache.commons.exec.DefaultExecutor.executeInternal(DefaultExecutor.java:377) INFO | jvm 1 | 2015/10/09 15:13:14 | at org.apache.commons.exec.DefaultExecutor.execute(DefaultExecutor.java:160) INFO | jvm 1 | 2015/10/09 15:13:14 | at org.apache.commons.exec.DefaultExecutor.execute(DefaultExecutor.java:147) INFO | jvm 1 | 2015/10/09 15:13:14 | at org.xdi.util.process.ProcessHelper.executeProgram(ProcessHelper.java:150) INFO | jvm 1 | 2015/10/09 15:13:14 | at org.xdi.util.process.ProcessHelper.executeProgram(ProcessHelper.java:65) INFO | jvm 1 | 2015/10/09 15:13:14 | at org.xdi.util.process.ProcessHelper.executeProgram(ProcessHelper.java:45) INFO | jvm 1 | 2015/10/09 15:13:14 | at org.xdi.util.process.ProcessHelper.executeProgram(ProcessHelper.java:39) INFO | jvm 1 | 2015/10/09 15:13:14 | at org.gluu.oxtrust.ldap.service.StatusCheckerTimer.runCheck(StatusCheckerTimer.java:196) INFO | jvm 1 | 2015/10/09 15:13:14 | at org.gluu.oxtrust.ldap.service.StatusCheckerTimer.setCertificateExpiryAttributes(StatusCheckerTimer.java:170) INFO | jvm 1 | 2015/10/09 15:13:14 | at org.gluu.oxtrust.ldap.service.StatusCheckerTimer.process(StatusCheckerTimer.java:130) INFO | jvm 1 | 2015/10/09 15:13:14 | at org.gluu.oxtrust.ldap.service.StatusCheckerTimer.scheduleStatusChecking(StatusCheckerTimer.java:93) INFO | jvm 1 | 2015/10/09 15:13:14 | at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) INFO | jvm 1 | 2015/10/09 15:13:14 | at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:57) INFO | jvm 1 | 2015/10/09 15:13:14 | at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43) INFO | jvm 1 | 2015/10/09 15:13:14 | at java.lang.reflect.Method.invoke(Method.java:606) INFO | jvm 1 | 2015/10/09 15:13:14 | at org.jboss.seam.util.Reflections.invoke(Reflections.java:22) INFO | jvm 1 | 2015/10/09 15:13:14 | at org.jboss.seam.intercept.RootInvocationContext.proceed(RootInvocationContext.java:32) INFO | jvm 1 | 2015/10/09 15:13:14 | at org.jboss.seam.intercept.SeamInvocationContext.proceed(SeamInvocationContext.java:56) INFO | jvm 1 | 2015/10/09 15:13:14 | at org.jboss.seam.transaction.RollbackInterceptor.aroundInvoke(RollbackInterceptor.java:28) INFO | jvm 1 | 2015/10/09 15:13:14 | at org.jboss.seam.intercept.SeamInvocationContext.proceed(SeamInvocationContext.java:68) INFO | jvm 1 | 2015/10/09 15:13:14 | at org.jboss.seam.core.BijectionInterceptor.aroundInvoke(BijectionInterceptor.java:79) INFO | jvm 1 | 2015/10/09 15:13:14 | at org.jboss.seam.intercept.SeamInvocationContext.proceed(SeamInvocationContext.java:68) INFO | jvm 1 | 2015/10/09 15:13:14 | at org.jboss.seam.core.MethodContextInterceptor.aroundInvoke(MethodContextInterceptor.java:44) INFO | jvm 1 | 2015/10/09 15:13:14 | at org.jboss.seam.intercept.SeamInvocationContext.proceed(SeamInvocationContext.java:68) INFO | jvm 1 | 2015/10/09 15:13:14 | at org.jboss.seam.async.AsynchronousInterceptor.aroundInvoke(AsynchronousInterceptor.java:52) INFO | jvm 1 | 2015/10/09 15:13:14 | at org.jboss.seam.intercept.SeamInvocationContext.proceed(SeamInvocationContext.java:68) INFO | jvm 1 | 2015/10/09 15:13:14 | at org.jboss.seam.intercept.RootInterceptor.invoke(RootInterceptor.java:107) INFO | jvm 1 | 2015/10/09 15:13:14 | at org.jboss.seam.intercept.JavaBeanInterceptor.interceptInvocation(JavaBeanInterceptor.java:196) INFO | jvm 1 | 2015/10/09 15:13:14 | at org.jboss.seam.intercept.JavaBeanInterceptor.invoke(JavaBeanInterceptor.java:114) INFO | jvm 1 | 2015/10/09 15:13:14 | at org.gluu.oxtrust.ldap.service.StatusCheckerTimer_$$_javassist_seam_7.scheduleStatusChecking(StatusCheckerTimer_$$_javassist_seam_7.java) INFO | jvm 1 | 2015/10/09 15:13:14 | at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) INFO | jvm 1 | 2015/10/09 15:13:14 | at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:57) INFO | jvm 1 | 2015/10/09 15:13:14 | at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43) INFO | jvm 1 | 2015/10/09 15:13:14 | at java.lang.reflect.Method.invoke(Method.java:606) INFO | jvm 1 | 2015/10/09 15:13:14 | at org.jboss.seam.util.Reflections.invoke(Reflections.java:22) INFO | jvm 1 | 2015/10/09 15:13:14 | at org.jboss.seam.util.Reflections.invokeAndWrap(Reflections.java:144) INFO | jvm 1 | 2015/10/09 15:13:14 | at org.jboss.seam.async.AsynchronousInvocation$1.process(AsynchronousInvocation.java:62) INFO | jvm 1 | 2015/10/09 15:13:14 | at org.jboss.seam.async.Asynchronous$ContextualAsynchronousRequest.run(Asynchronous.java:80) INFO | jvm 1 | 2015/10/09 15:13:14 | at org.jboss.seam.async.AsynchronousInvocation.execute(AsynchronousInvocation.java:44) INFO | jvm 1 | 2015/10/09 15:13:14 | at org.jboss.seam.async.ThreadPoolDispatcher$RunnableAsynchronous.run(ThreadPoolDispatcher.java:142) INFO | jvm 1 | 2015/10/09 15:13:14 | at java.util.concurrent.Executors$RunnableAdapter.call(Executors.java:471) INFO | jvm 1 | 2015/10/09 15:13:14 | at java.util.concurrent.FutureTask.runAndReset(FutureTask.java:304) INFO | jvm 1 | 2015/10/09 15:13:14 | at java.util.concurrent.ScheduledThreadPoolExecutor$ScheduledFutureTask.access$301(ScheduledThreadPoolExecutor.java:178) INFO | jvm 1 | 2015/10/09 15:13:14 | at java.util.concurrent.ScheduledThreadPoolExecutor$ScheduledFutureTask.run(ScheduledThreadPoolExecutor.java:293) INFO | jvm 1 | 2015/10/09 15:13:14 | at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1145) INFO | jvm 1 | 2015/10/09 15:13:14 | at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:615) INFO | jvm 1 | 2015/10/09 15:13:14 | at java.lang.Thread.run(Thread.java:745) INFO | jvm 1 | 2015/10/09 15:13:14 | 2015-10-09 15:13:14,096 ERROR [org.gluu.oxtrust.ldap.service.StatusCheckerTimer] There was an error executing command check_ssl INFO | jvm 1 | 2015/10/09 15:13:14 | 2015-10-09 15:13:14,096 ERROR [org.gluu.oxtrust.ldap.service.StatusCheckerTimer] check_ssl retuned an unexpected value INFO | jvm 1 | 2015/10/09 15:13:14 | 2015-10-09 15:13:14,121 DEBUG [org.gluu.oxtrust.ldap.service.StatusCheckerTimer] Appliance status update finished INFO | jvm 1 | 2015/10/09 15:13:15 | 2015-10-09 15:13:15,276 TRACE [org.xdi.service.custom.script.CustomScriptManager] Last finished time '10/9/15 3:13 PM' INFO | jvm 1 | 2015/10/09 15:13:19 | 2015-10-09 15:13:19,754 INFO [org.jasig.cas.services.DefaultServicesManagerImpl] - <Reloading registered services.> INFO | jvm 1 | 2015/10/09 15:13:19 | 2015-10-09 15:13:19,754 INFO [org.jasig.cas.services.DefaultServicesManagerImpl] - <Loaded 1 services.> INFO | jvm 1 | 2015/10/09 15:13:33 | 2015-10-09 15:13:33,004 DEBUG [org.gluu.oxtrust.ldap.service.MetadataValidationTimer] Starting metadata validation INFO | jvm 1 | 2015/10/09 15:13:33 | 2015-10-09 15:13:33,005 DEBUG [org.gluu.oxtrust.ldap.service.MetadataValidationTimer] Metadata validation finished INFO | jvm 1 | 2015/10/09 15:13:45 | 2015-10-09 15:13:45,282 TRACE [org.xdi.service.custom.script.CustomScriptManager] Last finished time '10/9/15 3:13 PM'
None
closed

Answers

By Victor de Oliveira user 09 Oct 2015 at 11:27 a.m. CDT

Copy
Victor de Oliveira gravatar
I found the following after looking at oxauth.log, in case it helps: 2015-10-09 16:18:05,280 TRACE [org.xdi.service.custom.script.CustomScriptManager] Last finished time '10/9/15 4:18 PM' 2015-10-09 16:18:29,563 TRACE [org.xdi.oxauth.service.SessionIdService] Found session_id cookie: '66aa51af-f2b3-4b9e-92b5-7792f914a461' 2015-10-09 16:18:29,575 TRACE [org.xdi.oxauth.service.SessionIdService] Try to get session by id: 66aa51af-f2b3-4b9e-92b5-7792f914a461 ... 2015-10-09 16:18:29,575 TRACE [org.xdi.oxauth.service.SessionIdService] Session dn: uniqueIdentifier=66aa51af-f2b3-4b9e-92b5-7792f914a461,ou=session,o=@!DBEB.C586.EA38.F374!0001!72C3.D6E9,o=gluu 2015-10-09 16:18:29,576 TRACE [org.xdi.oxauth.auth.Authenticator] authenticateBySessionId, sessionId = '66aa51af-f2b3-4b9e-92b5-7792f914a461', session = 'SessionId [dn=uniqueIdentifier=66aa51af-f2b3-4b9e-92b5-7792f914a461,ou=session,o =@!DBEB.C586.EA38.F374!0001!72C3.D6E9,o=gluu, id=66aa51af-f2b3-4b9e-92b5-7792f914a461, lastUsedAt=Fri Oct 09 14:00:15 UTC 2015, userDn=inum=@!DBEB.C586.EA38.F374!0001!72C3.D6E9!0000!5ECD.398C,ou=people,o=@!DBEB.C586.EA38.F374!0001!72C 3.D6E9,o=gluu, authenticationTime=Fri Oct 09 13:11:09 UTC 2015, state=authenticated, permissionGranted=null, permissionGrantedMap=org.xdi.oxauth.model.common.SessionIdAccessMap@1006f443, sessionAttributes={scope=openid profile email u ser_name, response_type=code id_token, nonce=nonce, redirect_uri=https://gluu.network.ncf.edu/identity/authentication/authcode, auth_step=1, client_id=@!DBEB.C586.EA38.F374!0008!D6CB.5314, acr=internal}]', state= 'authenticated' 2015-10-09 16:18:29,605 TRACE [org.xdi.oxauth.service.SessionIdService] Try to get session by id: 66aa51af-f2b3-4b9e-92b5-7792f914a461 ... 2015-10-09 16:18:29,605 TRACE [org.xdi.oxauth.service.SessionIdService] Session dn: uniqueIdentifier=66aa51af-f2b3-4b9e-92b5-7792f914a461,ou=session,o=@!DBEB.C586.EA38.F374!0001!72C3.D6E9,o=gluu 2015-10-09 16:18:29,638 ERROR [xdi.oxauth.authorize.ws.rs.AuthorizeAction] There is already existing session which has another acr then internal, session: 66aa51af-f2b3-4b9e-92b5-7792f914a461 2015-10-09 16:18:29,638 ERROR [xdi.oxauth.authorize.ws.rs.AuthorizeAction] Please perform logout in order to be able login with new ACR value. 2015-10-09 16:18:29,638 TRACE [xdi.oxauth.authorize.ws.rs.AuthorizeAction] permissionDenied 2015-10-09 16:18:29,640 DEBUG [org.xdi.oxauth.model.error.ErrorResponseFactory] Looking for the error with id: access_denied 2015-10-09 16:18:29,640 DEBUG [org.xdi.oxauth.model.error.ErrorResponseFactory] Found error, id: access_denied 2015-10-09 16:18:29,647 DEBUG [org.xdi.oxauth.service.ClientService] Found 1 entries for client id = @!DBEB.C586.EA38.F374!0008!D6CB.5314 2015-10-09 16:18:29,648 TRACE [org.xdi.oxauth.service.ClientService] Get client from cache by Dn 'inum=@!DBEB.C586.EA38.F374!0008!D6CB.5314,ou=clients,o=@!DBEB.C586.EA38.F374!0001!72C3.D6E9,o=gluu' 2015-10-09 16:18:29,649 DEBUG [org.xdi.oxauth.service.ClientService] Found 1 entries for client id = @!DBEB.C586.EA38.F374!0008!D6CB.5314 2015-10-09 16:18:29,649 DEBUG [org.xdi.oxauth.service.RedirectionUriService] Validating redirection URI: clientIdentifier = @!DBEB.C586.EA38.F374!0008!D6CB.5314, redirectionUri = https://gluu.network.ncf.edu/identity/authentication/au thcode, found = 3 2015-10-09 16:18:29,649 DEBUG [org.xdi.oxauth.service.RedirectionUriService] Comparing https://gluu.network.ncf.edu/identity/scim/auth == https://gluu.network.ncf.edu/identity/authentication/authcode 2015-10-09 16:18:29,650 DEBUG [org.xdi.oxauth.service.RedirectionUriService] Comparing https://gluu.network.ncf.edu/identity/authentication/authcode == https://gluu.network.ncf.edu/identity/authentication/authcode 2015-10-09 16:18:29,653 TRACE [xdi.oxauth.authorize.ws.rs.AuthorizeAction] checkPermissionGranted, user = org.xdi.oxauth.model.common.User@1b8c797f 2015-10-09 16:18:29,669 TRACE [xdi.oxauth.authorize.ws.rs.AuthorizeAction] permissionGranted, redirectTo: seam/resource/restv1/oxauth/authorize?response_type=code id_token I tried the recommendations found here: https://support.gluu.org/view/installation/unable-to-login-after-modifying-manage-authentication/2120 But they did not address my problem. Thank you.

By Mohib Zico staff 09 Oct 2015 at 11:38 a.m. CDT

Copy
Mohib Zico gravatar
>> INFO | jvm 1 | 2015/10/09 15:12:20 | 2015-10-09 15:12:20,275 DEBUG [org.xdi.oxauth.service.AuthenticationService] Getting user information from LDAP: attributeName = 'sAMAccountName', attributeValue = 'admin' >> INFO | jvm 1 | 2015/10/09 15:12:20 | 2015-10-09 15:12:20,278 DEBUG [org.xdi.oxauth.service.AuthenticationService] Found '0' entries Seems like 'admin' user is gone after cache refresh. Now.. you can add one of your backend AD credential into 'Gluu manager' group. Then you will get all administrative privilege of 'admin' from this user as well.

By Victor de Oliveira user 09 Oct 2015 at 11:43 a.m. CDT

Copy
Victor de Oliveira gravatar
mohib, Can you tell me how to accomplish this, please?

By Victor de Oliveira user 12 Oct 2015 at 1:04 p.m. CDT

Copy
Victor de Oliveira gravatar
Zamil, I really appreciate you taking the time to help, but despite Gluu reporting: Processing MODIFY request for inum=@!DBEB.C586.EA38.F374!0001!72C3.D6E9!0003!60B7,ou=groups,o=@!DBEB.C586.EA38.F374!0001!72C3.D6E9,o=gluu MODIFY operation successful for DN inum=@!DBEB.C586.EA38.F374!0001!72C3.D6E9!0003!60B7,ou=groups,o=@!DBEB.C586.EA38.F374!0001!72C3.D6E9,o=gluu I still cannot login. I checked the oxauth.log file and found this: 2015-10-12 18:01:20,248 TRACE [org.xdi.oxauth.service.SessionIdService] Found session_id cookie: '8b286d0e-a4b5-4c79-8e83-de116ebe9fcb' 2015-10-12 18:01:20,253 TRACE [org.xdi.oxauth.service.SessionIdService] Try to get session by id: 8b286d0e-a4b5-4c79-8e83-de116ebe9fcb ... 2015-10-12 18:01:20,253 TRACE [org.xdi.oxauth.service.SessionIdService] Session dn: uniqueIdentifier=8b286d0e-a4b5-4c79-8e83-de116ebe9fcb,ou=session,o=@!DBEB.C586.EA38.F374!0001!72C3.D6E9,o=gluu 2015-10-12 18:01:20,254 TRACE [org.xdi.oxauth.service.SessionIdService] Failed to get session by id: 8b286d0e-a4b5-4c79-8e83-de116ebe9fcb 2015-10-12 18:01:20,254 ERROR [org.xdi.oxauth.auth.Authenticator] Failed to get session attributes 2015-10-12 18:01:20,255 INFO [org.xdi.oxauth.auth.Authenticator] Authentication failed for 'gluu_admin1' 2015-10-12 18:01:23,788 TRACE [org.xdi.oxauth.service.SessionIdService] Found session_id cookie: '8b286d0e-a4b5-4c79-8e83-de116ebe9fcb' 2015-10-12 18:01:23,794 TRACE [org.xdi.oxauth.service.SessionIdService] Try to get session by id: 8b286d0e-a4b5-4c79-8e83-de116ebe9fcb ... 2015-10-12 18:01:23,794 TRACE [org.xdi.oxauth.service.SessionIdService] Session dn: uniqueIdentifier=8b286d0e-a4b5-4c79-8e83-de116ebe9fcb,ou=session,o=@!DBEB.C586.EA38.F374!0001!72C3.D6E9,o=gluu 2015-10-12 18:01:23,794 TRACE [org.xdi.oxauth.service.SessionIdService] Failed to get session by id: 8b286d0e-a4b5-4c79-8e83-de116ebe9fcb 2015-10-12 18:01:23,798 TRACE [org.xdi.oxauth.service.SessionIdService] Try to get session by id: 8b286d0e-a4b5-4c79-8e83-de116ebe9fcb ... 2015-10-12 18:01:23,798 TRACE [org.xdi.oxauth.service.SessionIdService] Session dn: uniqueIdentifier=8b286d0e-a4b5-4c79-8e83-de116ebe9fcb,ou=session,o=@!DBEB.C586.EA38.F374!0001!72C3.D6E9,o=gluu 2015-10-12 18:01:23,799 TRACE [org.xdi.oxauth.service.SessionIdService] Failed to get session by id: 8b286d0e-a4b5-4c79-8e83-de116ebe9fcb 2015-10-12 18:01:23,801 DEBUG [org.xdi.oxauth.service.external.ExternalAuthenticationService] Executing python 'getPageForStep' authenticator method 2015-10-12 18:01:23,802 TRACE [org.xdi.oxauth.service.SessionIdService] Generated new session, id = '78ccffc3-8b45-45fb-940b-4a4ff1d44f80', state = 'unauthenticated', persisted = 'false' 2015-10-12 18:01:23,807 TRACE [xdi.oxauth.authorize.ws.rs.AuthorizeAction] Session '78ccffc3-8b45-45fb-940b-4a4ff1d44f80' persisted to LDAP 2015-10-12 18:01:23,821 TRACE [org.xdi.oxauth.service.SessionIdService] Found session_id cookie: '78ccffc3-8b45-45fb-940b-4a4ff1d44f80' 2015-10-12 18:01:23,825 TRACE [org.xdi.oxauth.service.SessionIdService] Try to get session by id: 78ccffc3-8b45-45fb-940b-4a4ff1d44f80 ... 2015-10-12 18:01:23,825 TRACE [org.xdi.oxauth.service.SessionIdService] Session dn: uniqueIdentifier=78ccffc3-8b45-45fb-940b-4a4ff1d44f80,ou=session,o=@!DBEB.C586.EA38.F374!0001!72C3.D6E9,o=gluu 2015-10-12 18:01:23,826 DEBUG [org.xdi.oxauth.service.external.ExternalAuthenticationService] Validating auth_mode: 'internal' 2015-10-12 18:01:23,826 DEBUG [org.xdi.oxauth.service.external.ExternalAuthenticationService] Executing python 'isValidAuthenticationMethod' authenticator method 2015-10-12 18:01:23,827 DEBUG [org.xdi.oxauth.service.external.ExternalAuthenticationService] Executing python 'prepareForStep' authenticator method 2015-10-12 18:01:23,843 DEBUG [org.xdi.oxauth.service.ClientService] Found 1 entries for client id = @!DBEB.C586.EA38.F374!0008!D6CB.5314 2015-10-12 18:01:23,850 TRACE [org.xdi.oxauth.service.ClientService] Get client from cache by Dn 'inum=@!DBEB.C586.EA38.F374!0008!D6CB.5314,ou=clients,o=@!DBEB.C586.EA38.F374!0001!72C3.D6E9,o=gluu' 2015-10-12 18:01:23,850 DEBUG [org.xdi.oxauth.service.ClientService] Found 1 entries for client id = @!DBEB.C586.EA38.F374!0008!D6CB.5314 2015-10-12 18:01:23,852 TRACE [org.xdi.oxauth.service.ClientService] Get client from cache by Dn 'inum=@!DBEB.C586.EA38.F374!0008!D6CB.5314,ou=clients,o=@!DBEB.C586.EA38.F374!0001!72C3.D6E9,o=gluu' 2015-10-12 18:01:23,852 DEBUG [org.xdi.oxauth.service.ClientService] Found 1 entries for client id = @!DBEB.C586.EA38.F374!0008!D6CB.5314 2015-10-12 18:01:30,253 TRACE [org.xdi.oxauth.service.SessionIdService] Found session_id cookie: '78ccffc3-8b45-45fb-940b-4a4ff1d44f80' 2015-10-12 18:01:30,258 TRACE [org.xdi.oxauth.service.SessionIdService] Try to get session by id: 78ccffc3-8b45-45fb-940b-4a4ff1d44f80 ... 2015-10-12 18:01:30,258 TRACE [org.xdi.oxauth.service.SessionIdService] Session dn: uniqueIdentifier=78ccffc3-8b45-45fb-940b-4a4ff1d44f80,ou=session,o=@!DBEB.C586.EA38.F374!0001!72C3.D6E9,o=gluu 2015-10-12 18:01:30,259 DEBUG [org.xdi.oxauth.service.external.ExternalAuthenticationService] Executing python 'authenticate' authenticator method 2015-10-12 18:01:30,260 DEBUG [org.xdi.oxauth.service.AuthenticationService] Authenticating user with LDAP: username: gluu_admin1 2015-10-12 18:01:30,261 DEBUG [org.xdi.oxauth.service.AuthenticationService] Attempting to find userDN by primary key: 'sAMAccountName' and key value: 'gluu_admin1' 2015-10-12 18:01:30,261 DEBUG [org.xdi.oxauth.service.AuthenticationService] Getting user information from LDAP: attributeName = 'sAMAccountName', attributeValue = 'gluu_admin1' 2015-10-12 18:01:30,263 DEBUG [org.xdi.oxauth.service.AuthenticationService] Found '0' entries 2015-10-12 18:01:30,263 DEBUG [org.xdi.oxauth.auth.Authenticator] Authentication result for user 'gluu_admin1'. auth_step: '1', result: 'false' 2015-10-12 18:01:30,264 INFO [org.xdi.oxauth.auth.Authenticator] Authentication failed for 'gluu_admin1' 2015-10-12 18:01:30,277 TRACE [org.xdi.oxauth.service.ClientService] Get client from cache by Dn 'inum=@!DBEB.C586.EA38.F374!0008!D6CB.5314,ou=clients,o=@!DBEB.C586.EA38.F374!0001!72C3.D6E9,o=gluu' 2015-10-12 18:01:30,278 DEBUG [org.xdi.oxauth.service.ClientService] Found 1 entries for client id = @!DBEB.C586.EA38.F374!0008!D6CB.5314 2015-10-12 18:01:30,284 TRACE [org.xdi.oxauth.service.ClientService] Get client from cache by Dn 'inum=@!DBEB.C586.EA38.F374!0008!D6CB.5314,ou=clients,o=@!DBEB.C586.EA38.F374!0001!72C3.D6E9,o=gluu' 2015-10-12 18:01:30,284 DEBUG [org.xdi.oxauth.service.ClientService] Found 1 entries for client id = @!DBEB.C586.EA38.F374!0008!D6CB.5314 2015-10-12 18:01:30,285 TRACE [org.xdi.oxauth.service.ClientService] Get client from cache by Dn 'inum=@!DBEB.C586.EA38.F374!0008!D6CB.5314,ou=clients,o=@!DBEB.C586.EA38.F374!0001!72C3.D6E9,o=gluu' 2015-10-12 18:01:30,285 DEBUG [org.xdi.oxauth.service.ClientService] Found 1 entries for client id = @!DBEB.C586.EA38.F374!0008!D6CB.5314 2015-10-12 18:01:35,271 TRACE [org.xdi.service.custom.script.CustomScriptManager] Last finished time '10/12/15 6:01 PM'

By Victor de Oliveira user 12 Oct 2015 at 1:44 p.m. CDT

Copy
Victor de Oliveira gravatar
Zamil, I did as instructed: 2015-10-12 18:40:50,032 DEBUG [org.xdi.oxauth.service.AppInitializer] Created ldapAuthEntryManager1: org.gluu.site.ldap.persistence.LdapEntryManager@5b86423 2015-10-12 18:40:50,045 DEBUG [org.xdi.oxauth.service.external.ExternalAuthenticationService] Executing python 'getPageForStep' authenticator method 2015-10-12 18:40:50,047 TRACE [org.xdi.oxauth.service.SessionIdService] Generated new session, id = '3d332eca-cac5-479a-b09b-d6d3f17a07eb', state = 'unauthenticated', persisted = 'false' 2015-10-12 18:40:50,103 TRACE [xdi.oxauth.authorize.ws.rs.AuthorizeAction] Session '3d332eca-cac5-479a-b09b-d6d3f17a07eb' persisted to LDAP 2015-10-12 18:40:50,147 TRACE [org.xdi.oxauth.service.SessionIdService] Found session_id cookie: '3d332eca-cac5-479a-b09b-d6d3f17a07eb' 2015-10-12 18:40:50,166 TRACE [org.xdi.oxauth.service.SessionIdService] Try to get session by id: 3d332eca-cac5-479a-b09b-d6d3f17a07eb ... 2015-10-12 18:40:50,167 TRACE [org.xdi.oxauth.service.SessionIdService] Session dn: uniqueIdentifier=3d332eca-cac5-479a-b09b-d6d3f17a07eb,ou=session,o=@!DBEB.C586.EA38.F374!0001!72C3.D6E9,o=gluu 2015-10-12 18:40:50,172 DEBUG [org.xdi.oxauth.service.external.ExternalAuthenticationService] Validating auth_mode: 'internal' 2015-10-12 18:40:50,173 DEBUG [org.xdi.oxauth.service.external.ExternalAuthenticationService] Executing python 'isValidAuthenticationMethod' authenticator method 2015-10-12 18:40:50,173 DEBUG [org.xdi.oxauth.service.external.ExternalAuthenticationService] Executing python 'prepareForStep' authenticator method 2015-10-12 18:40:50,818 DEBUG [org.xdi.oxauth.service.ClientService] Found 1 entries for client id = @!DBEB.C586.EA38.F374!0008!D6CB.5314 2015-10-12 18:40:50,834 TRACE [org.xdi.oxauth.service.ClientService] Get client from cache by Dn 'inum=@!DBEB.C586.EA38.F374!0008!D6CB.5314,ou=clients,o=@!DBEB.C586.EA38.F374!0001!72C3.D6E9,o=gluu' 2015-10-12 18:40:50,835 DEBUG [org.xdi.oxauth.service.ClientService] Found 1 entries for client id = @!DBEB.C586.EA38.F374!0008!D6CB.5314 2015-10-12 18:40:50,837 TRACE [org.xdi.oxauth.service.ClientService] Get client from cache by Dn 'inum=@!DBEB.C586.EA38.F374!0008!D6CB.5314,ou=clients,o=@!DBEB.C586.EA38.F374!0001!72C3.D6E9,o=gluu' 2015-10-12 18:40:50,837 DEBUG [org.xdi.oxauth.service.ClientService] Found 1 entries for client id = @!DBEB.C586.EA38.F374!0008!D6CB.5314 2015-10-12 18:40:58,442 TRACE [org.xdi.oxauth.service.SessionIdService] Found session_id cookie: '3d332eca-cac5-479a-b09b-d6d3f17a07eb' 2015-10-12 18:40:58,455 TRACE [org.xdi.oxauth.service.SessionIdService] Try to get session by id: 3d332eca-cac5-479a-b09b-d6d3f17a07eb ... 2015-10-12 18:40:58,455 TRACE [org.xdi.oxauth.service.SessionIdService] Session dn: uniqueIdentifier=3d332eca-cac5-479a-b09b-d6d3f17a07eb,ou=session,o=@!DBEB.C586.EA38.F374!0001!72C3.D6E9,o=gluu 2015-10-12 18:40:58,459 DEBUG [org.xdi.oxauth.service.external.ExternalAuthenticationService] Executing python 'authenticate' authenticator method 2015-10-12 18:40:58,468 DEBUG [org.xdi.oxauth.service.AuthenticationService] Authenticating user with LDAP: username: tempadmin 2015-10-12 18:40:58,493 DEBUG [org.xdi.oxauth.service.AuthenticationService] Attempting to find userDN by primary key: 'sAMAccountName' and key value: 'tempadmin' 2015-10-12 18:40:58,494 DEBUG [org.xdi.oxauth.service.AuthenticationService] Getting user information from LDAP: attributeName = 'sAMAccountName', attributeValue = 'tempadmin' 2015-10-12 18:40:58,527 DEBUG [org.xdi.oxauth.service.AuthenticationService] Found '0' entries 2015-10-12 18:40:58,530 DEBUG [org.xdi.oxauth.auth.Authenticator] Authentication result for user 'tempadmin'. auth_step: '1', result: 'false' 2015-10-12 18:40:58,531 INFO [org.xdi.oxauth.auth.Authenticator] Authentication failed for 'tempadmin' 2015-10-12 18:40:58,546 TRACE [org.xdi.oxauth.service.ClientService] Get client from cache by Dn 'inum=@!DBEB.C586.EA38.F374!0008!D6CB.5314,ou=clients,o=@!DBEB.C586.EA38.F374!0001!72C3.D6E9,o=gluu' 2015-10-12 18:40:58,547 DEBUG [org.xdi.oxauth.service.ClientService] Found 1 entries for client id = @!DBEB.C586.EA38.F374!0008!D6CB.5314 2015-10-12 18:40:58,553 TRACE [org.xdi.oxauth.service.ClientService] Get client from cache by Dn 'inum=@!DBEB.C586.EA38.F374!0008!D6CB.5314,ou=clients,o=@!DBEB.C586.EA38.F374!0001!72C3.D6E9,o=gluu' 2015-10-12 18:40:58,553 DEBUG [org.xdi.oxauth.service.ClientService] Found 1 entries for client id = @!DBEB.C586.EA38.F374!0008!D6CB.5314 2015-10-12 18:40:58,554 TRACE [org.xdi.oxauth.service.ClientService] Get client from cache by Dn 'inum=@!DBEB.C586.EA38.F374!0008!D6CB.5314,ou=clients,o=@!DBEB.C586.EA38.F374!0001!72C3.D6E9,o=gluu' 2015-10-12 18:40:58,555 DEBUG [org.xdi.oxauth.service.ClientService] Found 1 entries for client id = @!DBEB.C586.EA38.F374!0008!D6CB.5314

By Mohib Zico staff 12 Oct 2015 at 2:40 p.m. CDT

Copy
Mohib Zico gravatar
>> 2015-10-12 18:40:58,493 DEBUG [org.xdi.oxauth.service.AuthenticationService] Attempting to find userDN by primary key: 'sAMAccountName' and key value: 'tempadmin' 2015-10-12 18:40:58,494 DEBUG [org.xdi.oxauth.service.AuthenticationService] Getting user information from LDAP: attributeName = 'sAMAccountName', attributeValue = 'tempadmin' >> 2015-10-12 18:40:58,527 DEBUG [org.xdi.oxauth.service.AuthenticationService] Found '0' entries >> 2015-10-12 18:40:58,530 DEBUG [org.xdi.oxauth.auth.Authenticator] Authentication result for user 'tempadmin'. auth_step: '1', result: 'false' Where is this 'tempadmin' user? In your backend?

By Victor de Oliveira user 12 Oct 2015 at 3:09 p.m. CDT

Copy
Victor de Oliveira gravatar
Hi mohib, I have now tried with users not in my AD and users in my AD (myself). I can log-in with my AD account, but I still do not have access to the admin_dashboard. In the oxauth.log file I find the following: 2015-10-12 20:06:40,669 DEBUG [org.xdi.oxauth.service.UserService] Getting user information from LDAP: userId = vdeoliveira 2015-10-12 20:06:40,673 DEBUG [org.xdi.oxauth.service.UserService] Found 2 entries for user id = vdeoliveira 2015-10-12 20:06:40,674 TRACE [org.xdi.oxauth.service.ClientService] Get client from cache by Dn 'inum=@!DBEB.C586.EA38.F374!0008!D6CB.5314,ou=clients,o=@!DBEB.C586.EA38.F374!0001!72C3.D6E9,o=gluu' 2015-10-12 20:06:40,674 DEBUG [org.xdi.oxauth.service.ClientService] Found 1 entries for client id = @!DBEB.C586.EA38.F374!0008!D6CB.5314 2015-10-12 20:06:40,752 DEBUG [xdi.oxauth.userinfo.ws.rs.UserInfoRestWebServiceImpl] Attempting to request User Info, Access token = e2f19cee-b848-4c2b-831b-4510729d4a99, Is Secure = true 2015-10-12 20:06:40,759 DEBUG [org.xdi.oxauth.service.UserService] Getting user information from LDAP: userId = vdeoliveira 2015-10-12 20:06:40,764 DEBUG [org.xdi.oxauth.service.UserService] Found 2 entries for user id = vdeoliveira 2015-10-12 20:06:40,766 TRACE [org.xdi.oxauth.service.ClientService] Get client from cache by Dn 'inum=@!DBEB.C586.EA38.F374!0008!D6CB.5314,ou=clients,o=@!DBEB.C586.EA38.F374!0001!72C3.D6E9,o=gluu' 2015-10-12 20:06:40,766 DEBUG [org.xdi.oxauth.service.ClientService] Found 1 entries for client id = @!DBEB.C586.EA38.F374!0008!D6CB.5314 2015-10-12 20:06:40,780 TRACE [org.xdi.oxauth.service.AttributeService] Get attribute from cache by Dn 'inum=@!DBEB.C586.EA38.F374!0001!72C3.D6E9!0005!42E0,ou=attributes,o=@!DBEB.C586.EA38.F374!0001!72C3.D6E9,o=gluu' 2015-10-12 20:06:40,795 TRACE [org.xdi.oxauth.service.AttributeService] Get attribute from cache by Dn 'inum=@!DBEB.C586.EA38.F374!0001!72C3.D6E9!0005!8F88,ou=attributes,o=@!DBEB.C586.EA38.F374!0001!72C3.D6E9,o=gluu' 2015-10-12 20:06:40,796 TRACE [org.xdi.oxauth.service.AttributeService] Get attribute from cache by Dn 'inum=@!DBEB.C586.EA38.F374!0001!72C3.D6E9!0005!CAE3,ou=attributes,o=@!DBEB.C586.EA38.F374!0001!72C3.D6E9,o=gluu' 2015-10-12 20:06:40,804 TRACE [org.xdi.oxauth.service.AttributeService] Get attribute from cache by Dn 'inum=@!DBEB.C586.EA38.F374!0001!72C3.D6E9!0005!29DA,ou=attributes,o=@!DBEB.C586.EA38.F374!0001!72C3.D6E9,o=gluu' 2015-10-12 20:06:40,816 TRACE [org.xdi.oxauth.service.AttributeService] Get attribute from cache by Dn 'inum=@!DBEB.C586.EA38.F374!0001!72C3.D6E9!0005!2B29,ou=attributes,o=@!DBEB.C586.EA38.F374!0001!72C3.D6E9,o=gluu' 2015-10-12 20:06:40,817 TRACE [org.xdi.oxauth.service.AttributeService] Get attribute from cache by Dn 'inum=@!DBEB.C586.EA38.F374!0001!72C3.D6E9!0005!0C85,ou=attributes,o=@!DBEB.C586.EA38.F374!0001!72C3.D6E9,o=gluu' 2015-10-12 20:06:40,818 TRACE [org.xdi.oxauth.service.AttributeService] Get attribute from cache by Dn 'inum=@!DBEB.C586.EA38.F374!0001!72C3.D6E9!0005!B4B0,ou=attributes,o=@!DBEB.C586.EA38.F374!0001!72C3.D6E9,o=gluu' 2015-10-12 20:06:40,818 TRACE [org.xdi.oxauth.service.AttributeService] Get attribute from cache by Dn 'inum=@!DBEB.C586.EA38.F374!0001!72C3.D6E9!0005!A0E8,ou=attributes,o=@!DBEB.C586.EA38.F374!0001!72C3.D6E9,o=gluu' 2015-10-12 20:06:40,819 TRACE [org.xdi.oxauth.service.AttributeService] Get attribute from cache by Dn 'inum=@!DBEB.C586.EA38.F374!0001!72C3.D6E9!0005!5EC6,ou=attributes,o=@!DBEB.C586.EA38.F374!0001!72C3.D6E9,o=gluu' 2015-10-12 20:06:40,820 TRACE [org.xdi.oxauth.service.AttributeService] Get attribute from cache by Dn 'inum=@!DBEB.C586.EA38.F374!0001!72C3.D6E9!0005!B52A,ou=attributes,o=@!DBEB.C586.EA38.F374!0001!72C3.D6E9,o=gluu' 2015-10-12 20:06:40,820 TRACE [org.xdi.oxauth.service.AttributeService] Get attribute from cache by Dn 'inum=@!DBEB.C586.EA38.F374!0001!72C3.D6E9!0005!64A0,ou=attributes,o=@!DBEB.C586.EA38.F374!0001!72C3.D6E9,o=gluu' 2015-10-12 20:06:40,821 TRACE [org.xdi.oxauth.service.AttributeService] Get attribute from cache by Dn 'inum=@!DBEB.C586.EA38.F374!0001!72C3.D6E9!0005!EC3A,ou=attributes,o=@!DBEB.C586.EA38.F374!0001!72C3.D6E9,o=gluu' 2015-10-12 20:06:40,822 TRACE [org.xdi.oxauth.service.AttributeService] Get attribute from cache by Dn 'inum=@!DBEB.C586.EA38.F374!0001!72C3.D6E9!0005!3B47,ou=attributes,o=@!DBEB.C586.EA38.F374!0001!72C3.D6E9,o=gluu' 2015-10-12 20:06:40,822 TRACE [org.xdi.oxauth.service.AttributeService] Get attribute from cache by Dn 'inum=@!DBEB.C586.EA38.F374!0001!72C3.D6E9!0005!3692,ou=attributes,o=@!DBEB.C586.EA38.F374!0001!72C3.D6E9,o=gluu' 2015-10-12 20:06:40,823 TRACE [org.xdi.oxauth.service.AttributeService] Get attribute from cache by Dn 'inum=@!DBEB.C586.EA38.F374!0001!72C3.D6E9!0005!98FC,ou=attributes,o=@!DBEB.C586.EA38.F374!0001!72C3.D6E9,o=gluu' 2015-10-12 20:06:40,824 TRACE [org.xdi.oxauth.service.AttributeService] Get attribute from cache by Dn 'inum=@!DBEB.C586.EA38.F374!0001!72C3.D6E9!0005!A901,ou=attributes,o=@!DBEB.C586.EA38.F374!0001!72C3.D6E9,o=gluu' 2015-10-12 20:06:40,824 TRACE [org.xdi.oxauth.service.AttributeService] Get attribute from cache by Dn 'inum=@!DBEB.C586.EA38.F374!0001!72C3.D6E9!0005!36D9,ou=attributes,o=@!DBEB.C586.EA38.F374!0001!72C3.D6E9,o=gluu' 2015-10-12 20:06:40,825 TRACE [org.xdi.oxauth.service.AttributeService] Get attribute from cache by Dn 'inum=@!DBEB.C586.EA38.F374!0001!72C3.D6E9!0005!BE64,ou=attributes,o=@!DBEB.C586.EA38.F374!0001!72C3.D6E9,o=gluu' 2015-10-12 20:06:40,825 TRACE [org.xdi.oxauth.service.AttributeService] Get attribute from cache by Dn 'inum=@!DBEB.C586.EA38.F374!0001!72C3.D6E9!0005!6493,ou=attributes,o=@!DBEB.C586.EA38.F374!0001!72C3.D6E9,o=gluu' Thank you.

By Victor de Oliveira user 13 Oct 2015 at 7:51 a.m. CDT

Copy
Victor de Oliveira gravatar
Zamil, Thank you for your continued support. I put this together in the requested file: **dn: inum=@!DBEB.C586.EA38.F374!0001!72C3.D6E9!0003!60B7,ou=groups,o=@!DBEB.C586. EA38.F374!0001!72C3.D6E9,o=gluu changetype: modify add: member member: inum=@!DBEB.C586.EA38.F374!0001!72C3.D6E9!0000!5ECD.398C,ou=people,o=@!DBEB. C586.EA38.F374!0001!72C3.D6E9,o=gluu ** But I get this error when I run it: **GLUU.[root@gluu ~]# /opt/opendj/bin/ldapmodify -h localhost -p 1389 -D "cn=directory manager" -w '#########' -f ~/modify.ldif Error at or near line 1 in LDIF file /root/modify.ldif: org.opends.server.util.LDIFException: Error in the LDIF change record entry. Invalid value "modify " for the changetype specified. Expecting one of the following values "add, delete, modify, moddn, modrdn"** I do believe my user is already in the manager group. Here is the output of: /opt/opendj/bin/ldapsearch -h localhost -p 1389 -D "cn=directory manager" -w <password> -b 'o=gluu' 'uid=vdeoliveira' is: **dn: inum=@!DBEB.C586.EA38.F374!0001!72C3.D6E9!0000!5ECD.398C,ou=people,o=@!DBEB. C586.EA38.F374!0001!72C3.D6E9,o=gluu objectClass: gluuPerson objectClass: inetOrgPerson objectClass: top objectClass: eduPerson objectClass: ox-DBEBC586EA38F374000172C3D6E9 gluuStatus: active uid: vdeoliveira cn: Victor deOliveira sn: deOliveira mail: vdeoliveira@ncf.edu oxLastLogonTime: 20151012203925.196Z displayName: Victor deOliveira inum: @!DBEB.C586.EA38.F374!0001!72C3.D6E9!0000!5ECD.398C dn: inum=vdeoliveira,ou=people,o=@!DBEB.C586.EA38.F374!0001!72C3.D6E9,o=gluu objectClass: gluuPerson objectClass: top givenName: victor gluuStatus: active uid: vdeoliveira sn: deOliveira userPassword: {SSHA}gTHnbBZYyJ26lxEnbJwRm2AbMeDRo0F46OGDVQ== inum: vdeoliveira**

By Mohib Zico staff 13 Oct 2015 at 8:12 a.m. CDT

Copy
Mohib Zico gravatar
>> Invalid value "modify " for the changetype specified. Expecting one of the following values "add, delete, modify, moddn, modrdn" Please make sure there is no 'space' character after 'modify'. Or newline. >> I do believe my user is already in the manager group. Here is the output of: I don't see any information like this ( user is in manager group ) from your user. Plus, remove this `dn: inum=vdeoliveira,ou=people,o=@!DBEB.C586.EA38.F374!0001!72C3.D6E9,o=gluu`. It's better not to keep multiple users of same UID.

Post an answer