[jboss-user] [Security & JAAS/JBoss] - JBOSS LDAP Authentification

indra_joy do-not-reply at jboss.com
Mon Jul 28 11:46:20 EDT 2008 

Hi,




I am trying to validate LDAP user before going to jmx_console. 

My jboss-web.xml under jmx_console.war has the java:/jaas/Ldap
My web.xml under jmx_console.war <!-- A security constraint is uncommented.
My Login-Config under conf has Application Policy Defined LDAP.


But I am getting error in my server Logs as below.

javax.naming.NamingException: [LDAP: error code 1 - 00000000: LdapErr: DSID-0C090627, comment: In order to perform this operation a successful bind must be completed on the connection., data 0, veceatePassword(LdapExtLoginModule.java:229)

        at org.jboss.security.auth.spi.UsernamePasswordLoginModule.login(UsernamePasswordLoginModule.java:210) 
        at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) 
        at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39) 
        at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25) 
        at java.lang.reflect.Method.invoke(Method.java:585) 
        at javax.security.auth.login.LoginContext.invoke(LoginContext.java:769) 
        at javax.security.auth.login.LoginContext.access$000(LoginContext.java:186) 
        at javax.security.auth.login.LoginContext$4.run(LoginContext.java:683) 
        at java.security.AccessController.doPrivileged(Native Method) 
        at javax.security.auth.login.LoginContext.invokePriv(LoginContext.java:680) 
        at javax.security.auth.login.LoginContext.login(LoginContext.java:579) 
        at org.jboss.security.plugins.JaasSecurityManager.defaultLogin(JaasSecurityManager.java:601) 
        at org.jboss.security.plugins.JaasSecurityManager.authenticate(JaasSecurityManager.java:535) 
        at org.jboss.security.plugins.JaasSecurityManager.isValid(JaasSecurityManager.java:344) 
        at org.jboss.web.tomcat.security.JBossSecurityMgrRealm.authenticate(JBossSecurityMgrRealm.java:491) 
        at org.apache.catalina.authenticator.BasicAuthenticator.authenticate(BasicAuthenticator.java:180) 
        at org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:490) 
        at org.jboss.web.tomcat.security.JaccContextValve.invoke(JaccContextValve.java:74) 
        at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:126) 
        at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:105) 
        at org.jboss.web.tomcat.tc5.jca.CachedConnectionValve.invoke(CachedConnectionValve.java:156) 
        at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:107) 
        at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:148) 
        at org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:869) 
        at org.apache.coyote.http11.Http11BaseProtocol$Http11ConnectionHandler.processConnection(Http11BaseProtocol.java:664)

        at org.apache.tomcat.util.net.PoolTcpEndpoint.processSocket(PoolTcpEndpoint.java:527) 
        at org.apache.tomcat.util.net.MasterSlaveWorkerThread.run(MasterSlaveWorkerThread.java:112) 
        at java.lang.Thread.run(Thread.java:595) 


Can anybody help me in this regards, Reason still it's not validating the LDAP USER in the window and return the error.

Thanks in advance 
Indrajoy


View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=4167099#4167099

Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=4167099

More information about the jboss-user mailing list