Help with LDAP Login

Avatar
Permanently deleted user
Created

Hi, we are trying to configure against ldap, we use the following string to connect:

java.naming.provider.url="ldap://fm.xxxgrp.net:389/OU=User Accounts,OU=CBFM,OU=User Environment,DC=fm,DC=xxxgrp,DC=net"

This returns:

Failed to login user 'davieoa'. Cause: javax.naming.NamingException: Cannot parse url: Environment,DC=fm,DC=xxxgrp,DC=net" [Root exception is java.net.MalformedURLException: Invalid URI: Environment,DC=fm,DC=xxxgrp,DC=net"]

Assuming that was because there are spaces in the name we added the escape characters %20

java.naming.provider.url=ldap://fm.xxxgrp.net:389/OU=User%20Accounts,OU=CBFM,OU=User%20Environment,DC=fm,DC=xxxgrp,DC=net

However this fails to authenticate:

Failed to login user 'davieoa' due to authentication error. Cause: Invalid credentials ([LDAP: error code 49 - 80090308: LdapErr: DSID-0C090334, comment: AcceptSecurityContext error, data 525, vece

Please could you help ?

Regards

Owen Davies

Votes

0

Share

1 comment
Avatar
Michael Kuzmin
Created

Hi Owen

It should point to the server, without specific containers, so correct syntax would be 

java.naming.provider.url=ldap://fm.xxxgrp.net:389/DC=fm,DC=xxxgrp,DC=net


Containers can be limited by separate parameter:
# The user base DN. Users are retrieved only from the LDAP subtree denoted by this DN.
# This DN should be "relative" to the root specified by "java.naming.provider.url".
# The search will be performed in LDAP subtree denoted by "java.naming.provider.url" and "teamcity.users.base" combined.
teamcity.users.base=CN=users


Michael
0

Please sign in to leave a comment.