Error authenticating with the LDAP server.?

Openfire Openfire Support
1

Hey,

Trying to get Openfire to go with AD, however I keep getting a credentials problem when i try to setup LDAP connection settings, no matter what user I have.

Below is my current setup:

Server Type: Active Directory

Host: ServerX.Domain.Name

Port: 389

BaseDN: OU=IT,DC=domain,DC=name {We have different OU’s for each department, IT used for testing)

Authentication:
Administrator DN: CN=ITldap,DC=domain,DC=name {specific account for LDAP purposes, part of the admins and enterprise admin groups at present}

Password: *********

So this is the output in the console:

Admin console listening at http://127.0.0.1:9090

javax.naming.AuthenticationException: [LDAP: error code 49 - 80090308: LdapErr: DSID-0C090334, comment: AcceptSecurityContext error, data 525, veceat com.sun.jndi.ldap.LdapCtx.mapErrorCode(Unknown Source)

  • *at com.sun.jndi.ldap.LdapCtx.processReturnCode(Unknown Source)

  • *at com.sun.jndi.ldap.LdapCtx.processReturnCode(Unknown Source)

  • *at com.sun.jndi.ldap.LdapCtx.connect(Unknown Source)

  • *at com.sun.jndi.ldap.LdapCtx.(Unknown Source)

  • *at com.sun.jndi.ldap.LdapCtxFactory.getUsingURL(Unknown Source)

  • *at com.sun.jndi.ldap.LdapCtxFactory.getUsingURLs(Unknown Source)

  • *at com.sun.jndi.ldap.LdapCtxFactory.getLdapCtxInstance(Unknown Source)

  • *at com.sun.jndi.ldap.LdapCtxFactory.getInitialContext(Unknown Source)

  • *at javax.naming.spi.NamingManager.getInitialContext(Unknown Source)

  • *at javax.naming.InitialContext.getDefaultInitCtx(Unknown Source)

  • *at javax.naming.InitialContext.init(Unknown Source)

  • *at javax.naming.ldap.InitialLdapContext.(Unknown Source)

  • *at org.jivesoftware.openfire.ldap.LdapManager.getContext(LdapManager.java:480)

  • *at org.jivesoftware.openfire.ldap.LdapManager.getContext(LdapManager.java:414)

  • *at org.jivesoftware.openfire.admin.setup.setup_002dldap_002dserver_005ftest_jsp._j spService(setup_002dldap_002dserver_005ftest_jsp.java:67)

  • *at org.apache.jasper.runtime.HttpJspBase.service(HttpJspBase.java:97)

  • *at javax.servlet.http.HttpServlet.service(HttpServlet.java:820)

  • *at org.mortbay.jetty.servlet.ServletHolder.handle(ServletHolder.java:487)

  • *at org.mortbay.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.ja va:1093)

  • *at com.opensymphony.module.sitemesh.filter.PageFilter.doFilter(PageFilter.java:39)

  • *at org.mortbay.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.ja va:1084)

  • *at org.jivesoftware.util.LocaleFilter.doFilter(LocaleFilter.java:66)

  • *at org.mortbay.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.ja va:1084)

  • *at org.jivesoftware.util.SetCharacterEncodingFilter.doFilter(SetCharacterEncodingF ilter.java:42)

  • *at org.mortbay.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.ja va:1084)

  • *at org.jivesoftware.admin.PluginFilter.doFilter(PluginFilter.java:70)

  • *at org.mortbay.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.ja va:1084)

  • *at org.jivesoftware.admin.AuthCheckFilter.doFilter(AuthCheckFilter.java:146)

  • *at org.mortbay.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.ja va:1084)

  • *at org.mortbay.jetty.servlet.ServletHandler.handle(ServletHandler.java:360)

  • *at org.mortbay.jetty.security.SecurityHandler.handle(SecurityHandler.java:216)

  • *at org.mortbay.jetty.servlet.SessionHandler.handle(SessionHandler.java:181)

  • *at org.mortbay.jetty.handler.ContextHandler.handle(ContextHandler.java:726)

  • *at org.mortbay.jetty.webapp.WebAppContext.handle(WebAppContext.java:405)

  • *at org.mortbay.jetty.handler.ContextHandlerCollection.handle(ContextHandlerCollect ion.java:206)

  • *at org.mortbay.jetty.handler.HandlerCollection.handle(HandlerCollection.java:114)

  • *at org.mortbay.jetty.handler.HandlerWrapper.handle(HandlerWrapper.java:152)

  • *at org.mortbay.jetty.Server.handle(Server.java:324)

  • *at org.mortbay.jetty.HttpConnection.handleRequest(HttpConnection.java:505)

  • *at org.mortbay.jetty.HttpConnection$RequestHandler.headerComplete(HttpConnection.j ava:829)

  • *at org.mortbay.jetty.HttpParser.parseNext(HttpParser.java:514)

  • *at org.mortbay.jetty.HttpParser.parseAvailable(HttpParser.java:211)

  • *at org.mortbay.jetty.HttpConnection.handle(HttpConnection.java:380)

  • *at org.mortbay.io.nio.SelectChannelEndPoint.run(SelectChannelEndPoint.java:395)

  • *at org.mortbay.thread.QueuedThreadPool$PoolThread.run(QueuedThreadPool.java:488)

I would appreciate any help on this. It works fine without LDAP and have no problems with anything else.

Thanks in advance

-Rick

2

It looks as though, it cant find the adminitstrative user location cant be found by the server.

Try modifying the LDAP string with quotation marks for the location of the administrative user especially if contains OUs with spaces in them.

eg. CN=AdminUser,OU=“User Location”,OU=“top level OU”,DC=domain

Cheers,

STN1000