Failed Administrator login on WSO2 IS with external OpenLDAP
Posted
by
Marco Rivadeneyra
on Server Fault
See other posts from Server Fault
or by Marco Rivadeneyra
Published on 2012-08-11T14:13:50Z
Indexed on
2013/10/18
15:57 UTC
Read the original article
Hit count: 372
I have an installation of WSO2 Identity Server and I'm trying to make it work with an external OpenLDAP instance I have followed this guide: http://wso2.org/project/solutions/identity/3.2.3/docs/user-core/admin_guide.html#LDAP For the read-only mode.
But when I try to log-in I get a failed login and the following error on the console:
TID: [0] [WSO2 Identity Server] [2012-08-10 17:10:25,493] WARN {org.wso2.carbon.core.services.util.CarbonAuthenticationUtil} - Failed Administrator login attempt 'john[0]' at [2012-08-10 17:10:25,0493] from IP address 127.0.0.1 {org.wso2.carbon.core.services.util.CarbonAuthenticationUtil}
Full log: http://pastebin.com/pHUGXBqv
My configuration file looks as follows:
<UserManager>
<Realm>
<Configuration>
<AdminRole>admin</AdminRole>
<AdminUser>
<UserName>john</UserName>
<Password>johnldap</Password>
</AdminUser>
<EveryOneRoleName>everyone</EveryOneRoleName> <!-- By default users in this role sees the registry root -->
<ReadOnly>true</ReadOnly>
<MaxUserNameListLength>500</MaxUserNameListLength>
<Property name="url">jdbc:h2:repository/database/WSO2CARBON_DB</Property>
<Property name="userName">wso2carbon</Property>
<Property name="password">wso2carbon</Property>
<Property name="driverName">org.h2.Driver</Property>
<Property name="maxActive">50</Property>
<Property name="maxWait">60000</Property>
<Property name="minIdle">5</Property>
</Configuration>
<UserStoreManager class="org.wso2.carbon.user.core.ldap.LDAPUserStoreManager">
<Property name="ReadOnly">true</Property>
<Property name="MaxUserNameListLength">100</Property>
<Property name="ConnectionURL">ldap://192.168.81.144:389</Property>
<Property name="ConnectionName">cn=admin,dc=example,dc=com</Property>
<Property name="ConnectionPassword">admin</Property>
<Property name="UserSearchBase">ou=People,dc=example,dc=com</Property>
<Property name="UserNameListFilter">(objectClass=inetOrgPerson)</Property>
<Property name="UserNameAttribute">uid</Property>
<Property name="ReadLDAPGroups">false</Property>
<Property name="GroupSearchBase">ou=Groups,dc=example,dc=com</Property>
<Property name="GroupSearchFilter">(objectClass=groupOfNames)</Property>
<Property name="GroupNameAttribute">uid</Property>
<Property name="MembershipAttribute">member</Property>
</UserStoreManager>
<AuthorizationManager class="org.wso2.carbon.user.core.authorization.JDBCAuthorizationManager"></AuthorizationManager>
</Realm>
I followed this guide to configure my LDAP server up to Loggging: https://help.ubuntu.com/12.04/serverguide/openldap-server.html
Could you suggest what might be wrong?
The LDAP log is available at: http://pastebin.com/T9rFYEAW
© Server Fault or respective owner
