LDAP bind error in IDP

Peter Schober peter.schober at univie.ac.at
Mon May 30 09:30:25 EDT 2016

* Muthuraman Sethuraman Sethuraman (US - Advisory) <muthuraman.sethuraman at pwc.com> [2016-05-30 14:21]:
> I am able to connect offline to LDAP, but not through the IDP..

What does that mean, connecting "offline to LDAP", and "not through
the IDP"?

> org.ldaptive.LdapException: javax.naming.NamingException: [LDAP:
> error code 1 - 000004DC: LdapErr: DSID-0C0906DD, comment: In order
> to perform this operation a successful bind must be completed on the
> connection.

That comment seems very clear to me.

> ## Authenticator strategy, either anonSearchAuthenticator, bindSearchAuthenticator, directAuthenticator, adAuthenticator
> #idp.authn.LDAP.authenticator                   = anonSearchAuthenticator

I'd make sure the correct (for your deployment) authenticator is
configured. If anonSearchAuthenticator is being used (possibly as the
default, check the documentation) then specifying a bindDN and
bindDNCredential below won't have any effect:

> idp.authn.LDAP.bindDN=Administrator at idp.yourdomain.com
> idp.authn.LDAP.bindDNCredential=password


More information about the users mailing list