GithubHelp home page GithubHelp logo

Comments (7)

olsib avatar olsib commented on June 10, 2024 1

Seems I made it work.

The following worked for me:
auth.ldapServerUrl=ldap://ldapserverurl:3268/dc=domain,dc=com auth.ldapUserSearchFilter=(sAMAccountName={0}) auth.ldapManagerDn=CN=binduser,OU=xxx,OU=yyyy,OU=zzz,DC=domain,DC=com auth.ldapManagerPassword=bindpassword

from api.

Sbrenthughes avatar Sbrenthughes commented on June 10, 2024 1

Awesome! Thanks @sidbha007 For PR that resolved this!!

from api.

olsib avatar olsib commented on June 10, 2024

Ok I built latest API and re-ran.

Now I do get the following:
... 49 common frames omitted 2019-07-10 11:16:10,904 [http-nio-8080-exec-6] DEBUG c.c.d.a.ldap.LdapLoginRequestFilter - Authentication request failed: org.springframework.security.authentication.InternalAuthenticationServiceException: invalid attribute description; nested exception is javax.naming.directory.I**nvalidSearchFilterException:** invalid attribute description; remaining name '/' 2019-07-10 11:16:10,904 [http-nio-8080-exec-6] DEBUG c.c.d.a.ldap.LdapLoginRequestFilter - Updated SecurityContextHolder to contain null Authentication 2019-07-10 11:16:10,904 [http-nio-8080-exec-6] DEBUG c.c.d.a.ldap.LdapLoginRequestFilter - Delegating to authentication failure handler org.springframework.security.web.authentication.SimpleUrlAuthenticationFailureHandler@3c28f776

from api.

olsib avatar olsib commented on June 10, 2024

Removed auth.ldapUserDnPattern & also the double quotes from auth.ldapUserSearchFilter

`# dashboard.properties
dbname=dashboarddb
dbusername=dashboarduser
dbpassword=ENC(xxcxcsdfsfdsdf)
dbhost=127.0.0.1
dbport=27017
dbreplicaset=[false if you are not using MongoDB replicaset]
server.contextPath=/api
server.port=8080
[email protected]@

logging.level.com.capitalone.dashboard=DEBUG

auth.expirationTime=1200000
auth.authenticationProviders=LDAP,STANDARD

#LDAP Server Url, including port of your LDAP server
auth.ldapServerUrl=ldap://ldapserverurl:389/dc=domain,dc=com

If using standard LDAP
LDAP User Dn Pattern, where the username is replaced with '{0}'
auth.ldapUserSearchFilter=(&(objectClass=user)(sAMAccountName={0}))

#Bind DN & Password
auth.ldapBindUser=username
auth.ldapBindPass=password

feature.dynamicPipeline=enabled`

Now I do get the following message:

... 49 common frames omitted 2019-07-10 11:31:04,144 [http-nio-8080-exec-10] DEBUG c.c.d.a.ldap.LdapLoginRequestFilter - Authentication request failed: org.springframework.security.authentication.InternalAuthenticationServiceException: Uncategorized exception occured during LDAP processing; nested exception is javax.naming.NamingException: [LDAP: error code 1 - 000004DC: LdapErr: DSID-0C090A4C, comment: In order to perform this operation a successful bind must be completed on the connection., data 0, v3839^@]; remaining name '/'

from api.

Sbrenthughes avatar Sbrenthughes commented on June 10, 2024

@sidbha007 do you have any recommendations here?

from api.

sidbha007 avatar sidbha007 commented on June 10, 2024

we do use bind name + manager password in ldap settings. i'm not too sure, but we could give a try with below config, as something similar is working for us with the exception of additional manager password.

auth.ldapServerUrl=ldap://ldapserverurl:389/
auth.ldapUserSearchFilter=(&(objectClass=user)(sAMAccountName={0}))
auth.ldapManagerDn=DC=domain,DC=com

auth.ldapBindUser=username
auth.ldapBindPass=password

from api.

olsib avatar olsib commented on June 10, 2024

I do get same issue. Here's how my ldap config looks like:
auth.expirationTime=1200000 auth.authenticationProviders=LDAP,STANDARD auth.ldapServerUrl=ldap://ldapserverurl:389/ auth.ldapUserSearchFilter=(&(objectClass=user)(sAMAccountName={0})) auth.ldapManagerDn=DC=domain,DC=com auth.ldapBindUser=username auth.ldapBindPass=password

Logs:
-07-11 04:31:33,579 [http-nio-8080-exec-10] DEBUG c.c.d.a.ldap.LdapLoginRequestFilter - Authentication request failed: org.springframework.security.authentication.InternalAuthenticationServiceException: Uncategorized exception occured during LDAP processing; nested exception is javax.naming.NamingException: [LDAP: error code 1 - 000004DC: LdapErr: DSID-0C090A4C, comment: In order to perform this operation a successful bind must be completed on the connection., data 0, v3839]; remaining name '/' 2019-07-11 04:31:33,579 [http-nio-8080-exec-10] DEBUG c.c.d.a.ldap.LdapLoginRequestFilter - Updated SecurityContextHolder to contain null Authentication

from api.

Related Issues (20)

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. 📊📈🎉

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google ❤️ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.