Re: [OT] ldap administration tool and error LDAP: error code 49 - Invalid Credentials

Thu, 27 Jun 2024 08:34:11 -0700 

Shekhar,

On 6/25/24 01:40, Shekhar Dhotre wrote:

Is there any DLap admin tool available ? I want to manage IBM and openldap with 
it . trying to reset users password in IBM ldap but it fails with


"[root@camttvpws002 app]# ldapsearch -x -h //102.85.9.23 -D 
"ldap@seth.local<mailto:ldap@seth.local>" -b "dc=seth,dc=local" -w ***** 
"sAMAcountName=shekhdho"

ldap_sasl_bind(SIMPLE): Can't contact LDAP server (-1)
My ldapsearch command does not take a -h argument for "host". It uses -H (capitalized), and it takes a proper URI like ldap://102.85.9.23 or ldaps://102.85.9.23
You should check the protocol (ldap or ldaps) and use the right one. Then check to see if your server can contact the LDAP server on that port (389 for ldap, 636 for ldaps). You can use telnet, nc, etc. to test connectivity. 


[root@camttvpws002 ~]# tail -f /app/web/logs/RMA/RMA.log

2024-06-22 06:34:31,696{ INFO [http-bio-8443-exec-3] (RMAdao.java:5047) - after 
preparing the statement

2024-06-22 06:34:31,697{ INFO [http-bio-8443-exec-3] (RMAdao.java:5050) - 
application name is:RMA

2024-06-22 06:34:31,737{ERROR [http-bio-8443-exec-3] (RMAdao.java:5116) - The 
exception occurred is:ORA-00942: table or view does not exist


This looks like JDBC stuff, not LDAP.


2024-06-22 06:34:31,738{ERROR [http-bio-8443-exec-3] (CheckDownTime.java:60) - 
Exception Occurred : java.lang.NullPointerException

2024-06-22 06:34:31,739{ INFO [http-bio-8443-exec-3] (LoginAction.java:64) - 
Inside Action:- Method:fetchUserInfo

2024-06-22 06:34:31,739{ INFO [http-bio-8443-exec-3] (LoginAction.java:67) - 
The username is : shekhdho

2024-06-22 06:34:31,777{ERROR [http-bio-8443-exec-3] (Ldap.java:85) - Exception 
occurred :javax.naming.AuthenticationException: [LDAP: error code 49 - Invalid 
Credentials]


That's pretty readable, but the cause could be one of several things.

Can you post your <Realm> configuration, minus any secrets?

-chris

---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional commands, e-mail: users-h...@tomcat.apache.org

Reply via email to