By: Marek Grzybowski user 02 Nov 2015 at 6:46 p.m. CST

1 Response

Hi Sorry. I'm new. I'm trying to install gluu first time. Maybe i'm missing something obvious. I'm trying to get glu working with external openldap user database as authentication source . After installation on ubuntu 14.04 i configured "Cache Refresh", and synchronized: uid,cn,givenName,sn,mail . So far so good. Everything worked out of the box. Then i changed ldap server in "Manage Authentication" to my central openldap . I was under impression, that gluu should bind to my openldap, to check if user provided correct password, then check local DJ ldap for user attributes. From what i see, gluu after successful bind is looking for gluu attributes in this central openldap . Why is that happened ? Do I have to write custom script to authenticate user in external ldap ? If so is there any example how to use JAAS in custom authentication script ? > INFO | jvm 1 | 2015/11/03 00:25:14 | 2015-11-03 00:25:14,314 INFO [org.gluu.oxtrust.action.Authenticator] user uid:tu7 > INFO | jvm 1 | 2015/11/03 00:25:14 | 2015-11-03 00:25:14,363 INFO [org.gluu.oxtrust.action.Authenticator] Authenticating user 'tu7' > INFO | jvm 1 | 2015/11/03 00:25:14 | 2015-11-03 00:25:14,366 ERROR [org.gluu.oxtrust.action.Authenticator] Failed to find user 'tu7' in ldap > INFO | jvm 1 | 2015/11/03 00:25:14 | org.gluu.site.ldap.persistence.exception.EntryPersistenceException: Failed to find entries with baseDN: ou=people,o=@!D6C7.BD1C.AF05.1B96!0001!A6BA.ABD7,o=gluu, filter: (&(&(objectClass=top)(objectClass=gluuPerson))(&(uid=tu7))) > INFO | jvm 1 | 2015/11/03 00:25:14 | at org.gluu.site.ldap.persistence.LdapEntryManager.findEntries(LdapEntryManager.java:318) > INFO | jvm 1 | 2015/11/03 00:25:14 | at org.gluu.site.ldap.persistence.LdapEntryManager.findEntries(LdapEntryManager.java:275) > INFO | jvm 1 | 2015/11/03 00:25:14 | at org.gluu.site.ldap.persistence.LdapEntryManager.findEntries(LdapEntryManager.java:256) > INFO | jvm 1 | 2015/11/03 00:25:14 | at org.gluu.oxtrust.ldap.service.AuthenticationService.getUserByUid(AuthenticationService.java:250) > INFO | jvm 1 | 2015/11/03 00:25:14 | at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) > INFO | jvm 1 | 2015/11/03 00:25:14 | at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:57) > INFO | jvm 1 | 2015/11/03 00:25:14 | at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43) > INFO | jvm 1 | 2015/11/03 00:25:14 | at java.lang.reflect.Method.invoke(Method.java:606) > INFO | jvm 1 | 2015/11/03 00:25:14 | at org.jboss.seam.util.Reflections.invoke(Reflections.java:22) > ....

None

closed

By Mohib Zico staff 03 Nov 2015 at 2:41 a.m. CST

Copy

Hello Marek, Congratulations! >> Then i changed ldap server in "Manage Authentication" to my central openldap . I was under impression, that gluu should bind to my openldap, to check if user provided correct password, then check local DJ ldap for user attributes. From what i see, gluu after successful bind is looking for gluu attributes in this central openldap . Why is that happened ? Take a look at [this](http://ox.gluu.org/doku.php? id=oxtrust:cache_refresh&s[]=cache&s[]=refresh) unofficial doc, does it make any sense? If not, please let us know what confusing you; we will improve the doc. >> INFO | jvm 1 | 2015/11/03 00:25:14 | 2015-11-03 00:25:14,366 ERROR [org.gluu.oxtrust.action.Authenticator] Failed to find user 'tu7' in ldap >> INFO | jvm 1 | 2015/11/03 00:25:14 | Let's check if this user 'tu7' is available in Gluu's interal LDAP or not.

You need to Login in order to post an answer

What exactly does "Manage Authentication"

By: Marek Grzybowski user 02 Nov 2015 at 6:46 p.m. CST

Answers

By Mohib Zico staff 03 Nov 2015 at 2:41 a.m. CST

Post an answer