[jboss-user] [JNDI/Naming/Network] - Re: LdapLoginModule talking to microsoft adam
rbartig
do-not-reply at jboss.com
Mon Oct 22 14:54:45 EDT 2007
I'm closer in getting microsoft adam and jboss talking. When I give it a bad login it throws an exception and writes the following message to the server.log file. But when I give it a correct login it keeps prompting me for a username/password. Anyone else have this issue with adam, active directory, or any other ldap servers? Why can't microsoft adam (which I heard is a 90% ldap compliant server) and jboss play nice?
2007-10-22 14:50:30,086 DEBUG [org.jboss.security.auth.spi.LdapLoginModule] Bad password for username=butt
javax.naming.AuthenticationException: [LDAP: error code 49 - 8009030C: LdapErr: DSID-0C090336, comment: AcceptSecurityContext error, data 2030, va28
<login-module code="org.jboss.security.auth.spi.LdapLoginModule" flag="required">
<module-option name="java.naming.factory.initial">com.sun.jndi.ldap.LdapCtxFactory</module-option>
<module-option name="java.naming.provider.url">ldap://127.0.0.1:389/</module-option>
<module-option name="java.naming.security.authentication">simple</module-option>
<module-option name="principalDNPrefix">CN=</module-option>
<module-option name="principalDNSuffix">,OU=users,O=my.org</module-option>
<module-option name="roleAttributeIsDN">true</module-option>
<module-option name="roleNameAttributeID">CN=</module-option>
<module-option name="rolesCtxDN">OU=groups,O=my.org</module-option>
<module-option name="uidAttributeID">member</module-option>
<module-option name="matchOnUserDN">true</module-option>
<module-option name="allowEmptyPasswords">false</module-option>
</login-module>
View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=4097593#4097593
Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=4097593
More information about the jboss-user
mailing list