I'd like a hint regarding ldap.properties
Joe Edwards
joee at uw.edu
Thu Apr 30 12:56:26 EDT 2015
I figure that others use the domain\samaccountname to bind.
And that the solution is straight forward.
How do I see what parameters are being sent to the ad server?
Do I have to get into the code and print?
What difference will getting debugging out of the ldap layer make?
I turned up debugging so that I could see what was happening.
How do I know if the username is testad\joeee not joeee?
Also, I tried an invalid user - joeee.
The password was invalid too, the log message. imo,
should state something like ("525", "user not found").
2015-04-30 09:16:25,688 - DEBUG
[net.shibboleth.idp.authn.impl.ValidateUsernamePasswordAgainstLDAP:175] -
Profile Action ValidateUsernamePasswordAgainstLDAP: Attempting to
authenticate user joeee
2015-04-30 09:16:25,715 - DEBUG
[org.springframework.webflow.execution.ActionExecutor:53] - Finished
executing
net.shibboleth.idp.authn.impl.ValidateUsernamePasswordAgainstLDAP at 1571f7ba;
result = InvalidPassword
Joe
P.S. I am using the jaas loginModule now, works fine, as far as I know....
I am adding the ad authentication.
On Thu, 30 Apr 2015, Cantor, Scott wrote:
> On 4/30/15, 12:52 AM, "Joe Edwards" <joee at uw.edu> wrote:
>>
>> How do I configure ldap.properties? I am connecting to the AD server.
>> The username and password is not being sent correctly. I'm seeing:
>
> I'd start by getting debug logging out of the ldap layer before you spend
> much time on anything else.
More information about the users
mailing list