What values should go in Directory context and Search filter?Error: Authentication failed: User not found in directory
Hi,
I referred to this post: Authentication failed: User not found in directory
I am also getting exactly same error in the log. "Authentication failed: User not found in directory"
I am trying this on my personal edition with Apache LDAP server and directory. I am attaching screenshots of my Ldap directory structure and Authentication service data instance. It would be of great help if you could tell me what values should go in Directory context and Search filter?
I tried several combinations in the directory context but to no avail.
Regards,
Onkar
***Updated by moderator: Lochan to create new post from reply***
**Moderation Team has archived post**
This post has been archived for educational purposes. Contents and links will no longer be updated. If you have the same/similar question, please write a new post.
Accepted Solution
HCL
IN
I was able to solve this problem. What I did is created a separate directory structure in my LDAP server like this => "ou=People, o=MyCompany". Then I added the user(uid) in this directory(ou=People) and it solved the problem with below values in authentication service-
Directory context - ou=People,o=MyCompany
Search filter - (uid=%v)
Thank you all for your help :)
Pegasystems Inc.
IN
your DN is appearing in the top of your screenshot (uid=onkar,ou=users,ou=system) that would be consider as DN by the directory ,if you are not able to find the user try the below query from command prompt to check.
ldapsearch -h <hostname> -p <port> -D <adminuser> -w <adminpassword> -s sub -b "uid=onkar,ou=users,ou=system" objectclass=*
Search filter can give any one from below list:
objectclass=*
objectclass=person
objectclass=oraganizationalPerson
objectclass=inetOrgPerson
Pegasystems Inc.
US
see this. http://directory.apache.org/apacheds/basic-ug/2.2.1-simple-search.html
You should be able to use the command if you have apacheds installed.
Pegasystems Inc.
US
You need to have provided the credentials that have permission to search in the LDAP in the Bind distinguished name using the bind password. The LDAP admin should be able to help you with that. If your hacking around with Apache I think it's admin/secret by default - anyway the doc has it defined.
HCL
IN
I have already given the bind distinguished name and password and the test connectivity also works. If I change the bind distinguished name to any random text the test connectivity fails which confirms that is not the problem.
Pegasystems Inc.
US
So you have established that the admin you are using can authenticate to search the directory ... hmmm
I will attach a file with some screen shots I used a while ago to find out about these things. Maybe you will find them useful. No guarantees implied or otherwise :) ...
Accepted Solution
HCL
IN
I was able to solve this problem. What I did is created a separate directory structure in my LDAP server like this => "ou=People, o=MyCompany". Then I added the user(uid) in this directory(ou=People) and it solved the problem with below values in authentication service-
Directory context - ou=People,o=MyCompany
Search filter - (uid=%v)
Thank you all for your help :)