"no route to host" using LDAP and Active Directory

Tue, 01 Apr 2014 14:17:14 -0700 

I'm having intermittent issues authenticating with Jenkins.  I use LDAP 
with Active Directory.  My Jenkins server is on Ubuntu 12.04 Server, and AD 
is running on Windows 2008 R2.

When authentication fails, I see this in my logs:

Apr 01, 2014 2:15:04 PM hudson.security.AuthenticationProcessingFilter2 
onUnsuccessfulAuthentication
INFO: Login attempt failed
org.acegisecurity.AuthenticationServiceException: LdapCallback;null; nested 
exception is javax.naming.PartialResultException [Root exception is 
javax.naming.CommunicationException: mysubdomain.mydomain.org:389 [Root 
exception is java.net.NoRouteToHostException: No route to host]]; nested 
exception is org.acegisecurity.ldap.LdapDataAccessException: 
LdapCallback;null; nested exception is javax.naming
.PartialResultException [Root exception is 
javax.naming.CommunicationException: mysubdomain.mydomain.org:389 [Root 
exception is java.net.NoRouteToHostException: No route to host]]
        at 
org.acegisecurity.providers.ldap.LdapAuthenticationProvider.retrieveUser(LdapAuthenticationProvider.java:238)
        at 
org.acegisecurity.providers.dao.AbstractUserDetailsAuthenticationProvider.authenticate(AbstractUserDetailsAuthenticationProvider.java:122)

Notice that it says "mysubdomain.mydomain.org:389" (I changed this from my 
real domain/subdomain).  mysubdomain.mydomain.org doesn't exist, and that's 
not actually the address of my AD server.  I actually have my LDAP server 
configured using an IP address.  In fact, I can't find 
"mysubdomain.mydomain.org" when I grep my configuration, so I have no idea 
where it's coming from, other than I suppose you could cobble it together 
from the root search names.

Am I mistaken in believing that it's trying to show the server name it's 
trying to connect to in the exception?

Any ideas?

Terry

-- 
You received this message because you are subscribed to the Google Groups 
"Jenkins Users" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to jenkinsci-users+unsubscr...@googlegroups.com.
For more options, visit https://groups.google.com/d/optout.

Reply via email to