LDAP bind error in IDP
Muthuraman Sethuraman Sethuraman (US - Advisory)
muthuraman.sethuraman at pwc.com
Mon May 30 09:58:02 EDT 2016
Hello Peter,
I meant i am able to connect to the LDAP using LDAP browser.
Now i un-commented the entry idp.authn.LDAP.authenticator and set it
to bindSearchAuthenticator
in ldap.properties.
And also updated this entry in authn/ldap-authn-config.xml
<alias name="%{idp.authn.LDAP.authenticator:*bindSearchAuthenticator*}"
alias="shibboleth.authn.LDAP.authenticator" />
Now i am getting "016-05-30 19:22:28,158 - INFO
[net.shibboleth.idp.authn.impl.ValidateUsernamePasswordAgainstLDAP:152] -
Profile Action ValidateUsernamePasswordAgainstLDAP: Login by 'shibuser1'
failed"
HTTP Response is "The password you entered was incorrect."
Thanks,
Muthu
On Mon, May 30, 2016 at 7:00 PM, Peter Schober <peter.schober at univie.ac.at>
wrote:
> * Muthuraman Sethuraman Sethuraman (US - Advisory) <
> muthuraman.sethuraman at pwc.com> [2016-05-30 14:21]:
> > I am able to connect offline to LDAP, but not through the IDP..
>
> What does that mean, connecting "offline to LDAP", and "not through
> the IDP"?
>
> > org.ldaptive.LdapException: javax.naming.NamingException: [LDAP:
> > error code 1 - 000004DC: LdapErr: DSID-0C0906DD, comment: In order
> > to perform this operation a successful bind must be completed on the
> > connection.
>
> That comment seems very clear to me.
>
> > ## Authenticator strategy, either anonSearchAuthenticator,
> bindSearchAuthenticator, directAuthenticator, adAuthenticator
> > #idp.authn.LDAP.authenticator = anonSearchAuthenticator
>
> I'd make sure the correct (for your deployment) authenticator is
> configured. If anonSearchAuthenticator is being used (possibly as the
> default, check the documentation) then specifying a bindDN and
> bindDNCredential below won't have any effect:
>
> > idp.authn.LDAP.bindDN=Administrator at idp.yourdomain.com
> > idp.authn.LDAP.bindDNCredential=password
>
> -peter
> --
> To unsubscribe from this list send an email to
> dev-unsubscribe at shibboleth.net
>
--
*Muthuraman S*
PwC | SDC Manager | IdAM
Office: +1 404-838-4445 | Mobile: +91-9886302072
Email: muthuraman.sethuraman at pwc.com
PricewaterhouseCoopers LLP
EGL Business Park, Bengaluru, India
http://www.pwc.com/us
______________________________________________________________________
The information transmitted, including any attachments, is intended only for the person or entity to which it is addressed and may contain confidential and/or privileged material. Any review, retransmission, dissemination or other use of, or taking of any action in reliance upon, this information by persons or entities other than the intended recipient is prohibited, and all liability arising therefrom is disclaimed. If you received this in error, please contact the sender and delete the material from any computer. PricewaterhouseCoopers LLP is a Delaware limited liability partnership. This communication may come from PricewaterhouseCoopers LLP or one of its subsidiaries.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://shibboleth.net/pipermail/users/attachments/20160530/6a1c6b47/attachment.html>
More information about the users
mailing list