Hi
In GeoNetwork 2.6 version some changes were added in LDAP support. Some
people have reported issues with Microsoft LDAP server in GeoNetwork 2.6,
that worked ok in 2.4.X.
Did anybody try LDAP with GN 2.6 and it's working ok? Which LDAP servers are
you using?
Thanks and regards,
Jose García
Hi Jose,
It seems that you're facing some issues with LDAP authentication since
version 2.6...
Please, have a look at that ticket :
http://trac.osgeo.org/geonetwork/ticket/328
Indeed, I integrated the enclosed patch into trunk after a review.
I though it was fixing some existing issue with LDAP reported by Josh Vote.
Feel free to revert if you consider that it is not a fix, but please re-open
the ticket #328.
Cheers,
Mathieu
On Tue, Nov 9, 2010 at 11:32 AM, jose garcia <josegar74@anonymised.com> wrote:
Hi
In GeoNetwork 2.6 version some changes were added in LDAP support. Some
people have reported issues with Microsoft LDAP server in GeoNetwork 2.6,
that worked ok in 2.4.X.Did anybody try LDAP with GN 2.6 and it's working ok? Which LDAP servers
are
you using?Thanks and regards,
Jose García------------------------------------------------------------------------------
The Next 800 Companies to Lead America's Growth: New Video Whitepaper
David G. Thomson, author of the best-selling book "Blueprint to a
Billion" shares his insights and actions to help propel your
business during the next growth cycle. Listen Now!
http://p.sf.net/sfu/SAP-dev2dev
_______________________________________________
GeoNetwork-users mailing list
GeoNetwork-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/geonetwork-users
GeoNetwork OpenSource is maintained at
http://sourceforge.net/projects/geonetwork
Hi Mathieu
Thanks for response. For sure should be a fix for some LDAP systems.
I don't use LDAP, but was reported a problem with Microsoft LDAP. Let's see
if other people are using 2.6 succesfully with LDAP to decide what to do.
Regards,
Jose García
On Tue, Nov 9, 2010 at 2:04 PM, Mathieu Coudert
<mathieu.coudert@anonymised.com>wrote:
Hi Jose,
It seems that you're facing some issues with LDAP authentication since
version 2.6...
Please, have a look at that ticket :
http://trac.osgeo.org/geonetwork/ticket/328Indeed, I integrated the enclosed patch into trunk after a review.
I though it was fixing some existing issue with LDAP reported by Josh Vote.Feel free to revert if you consider that it is not a fix, but please
re-open the ticket #328.Cheers,
Mathieu
On Tue, Nov 9, 2010 at 11:32 AM, jose garcia <josegar74@anonymised.com> wrote:
Hi
In GeoNetwork 2.6 version some changes were added in LDAP support. Some
people have reported issues with Microsoft LDAP server in GeoNetwork 2.6,
that worked ok in 2.4.X.Did anybody try LDAP with GN 2.6 and it's working ok? Which LDAP servers
are
you using?Thanks and regards,
Jose García------------------------------------------------------------------------------
The Next 800 Companies to Lead America's Growth: New Video Whitepaper
David G. Thomson, author of the best-selling book "Blueprint to a
Billion" shares his insights and actions to help propel your
business during the next growth cycle. Listen Now!
http://p.sf.net/sfu/SAP-dev2dev
_______________________________________________
GeoNetwork-users mailing list
GeoNetwork-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/geonetwork-users
GeoNetwork OpenSource is maintained at
http://sourceforge.net/projects/geonetwork
On 11/09/10 11:32, jose garcia wrote:
Hi
In GeoNetwork 2.6 version some changes were added in LDAP support. Some
people have reported issues with Microsoft LDAP server in GeoNetwork 2.6,
that worked ok in 2.4.X.Did anybody try LDAP with GN 2.6 and it's working ok? Which LDAP servers are
you using?
I'm using it with openldap 2.4.11 and the ldap auth/profile works fine in the basic testing i did.
--
Landry Breuil
Administrateur de données du CRAIG
I have been trying to set up geonetwork with LDAP and trying to connect to
Active Directory.. so far no luck.
these are the parameters i am using:
Host: nrn.nrcan.gc.ca
Port: 389
Base: dc=nrn,dc=nrcan,dc=gc,dc=ca
Users: users
Name: cn
Profile:
any suggestions?
Thanks,
Chris
--
View this message in context: http://osgeo-org.1803224.n2.nabble.com/LDAP-support-in-2-6-version-tp5720320p5726343.html
Sent from the GeoNetwork users mailing list archive at Nabble.com.
LDAP support patch was designed to work out what the DN to bind as was, then use that during the bind.
It takes the uid, and searches for it in LDAP, to get its bindDN.
For active directory,
1. Can you search the tree anonymously?
2. Can you show us what an entry looks like in ldif form.
What errors do you get in the geonetwork log file?
As for the patch - you could always add
String path;
try {
path = LDAPUtil.findUserDN(getUrl(), uidFilter, usersBaseDN);
}
if (path == null || path.length() == 0)
path = the old path constructor.
Would account for a null find, and assume that something is wrong with the find technique.
Terry
-----Original Message-----
From: cstieber [mailto:cstieber@anonymised.com]
Sent: Thursday, 11 November 2010 4:22 AM
To: geonetwork-users@lists.sourceforge.net
Subject: Re: [GeoNetwork-users] LDAP support in 2.6 version
I have been trying to set up geonetwork with LDAP and trying to connect to
Active Directory.. so far no luck.
these are the parameters i am using:
Host: nrn.nrcan.gc.ca
Port: 389
Base: dc=nrn,dc=nrcan,dc=gc,dc=ca
Users: users
Name: cn
Profile:
any suggestions?
Thanks,
Chris
--
View this message in context: http://osgeo-org.1803224.n2.nabble.com/LDAP-support-in-2-6-version-tp5720320p5726343.html
Sent from the GeoNetwork users mailing list archive at Nabble.com.
------------------------------------------------------------------------------
The Next 800 Companies to Lead America's Growth: New Video Whitepaper
David G. Thomson, author of the best-selling book "Blueprint to a
Billion" shares his insights and actions to help propel your
business during the next growth cycle. Listen Now!
http://p.sf.net/sfu/SAP-dev2dev
_______________________________________________
GeoNetwork-users mailing list
GeoNetwork-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/geonetwork-users
GeoNetwork OpenSource is maintained at http://sourceforge.net/projects/geonetwork
Hi Terry
Thanks for explanation. The error in the log is:
2010-10-30 14:22:05,814 WARN [geonetwork.ldap] - Raised exception during
LDAP access
2010-10-30 14:22:05,814 WARN [geonetwork.ldap] - (C) Message :[LDAP: error
code 1 - 00000000: LdapErr: DSID-0C090627, comment: In order to perform this
operation a successful bind must be completed on the connection., data 0,
vece ]
I'll try your suggestion to build the old path if something is wrong with
the find technique.
Regards,
Jose García
On Thu, Nov 11, 2010 at 3:14 AM, <Terry.Rankine@anonymised.com> wrote:
LDAP support patch was designed to work out what the DN to bind as was,
then use that during the bind.It takes the uid, and searches for it in LDAP, to get its bindDN.
For active directory,
1. Can you search the tree anonymously?
2. Can you show us what an entry looks like in ldif form.What errors do you get in the geonetwork log file?
As for the patch - you could always add
String path;
try {
path = LDAPUtil.findUserDN(getUrl(), uidFilter, usersBaseDN);
}
if (path == null || path.length() == 0)
path = the old path constructor.Would account for a null find, and assume that something is wrong with the
find technique.Terry
-----Original Message-----
From: cstieber [mailto:cstieber@anonymised.com]
Sent: Thursday, 11 November 2010 4:22 AM
To: geonetwork-users@lists.sourceforge.net
Subject: Re: [GeoNetwork-users] LDAP support in 2.6 versionI have been trying to set up geonetwork with LDAP and trying to connect to
Active Directory.. so far no luck.these are the parameters i am using:
Host: nrn.nrcan.gc.ca
Port: 389
Base: dc=nrn,dc=nrcan,dc=gc,dc=ca
Users: users
Name: cn
Profile:any suggestions?
Thanks,
Chris
--
View this message in context:
http://osgeo-org.1803224.n2.nabble.com/LDAP-support-in-2-6-version-tp5720320p5726343.html
Sent from the GeoNetwork users mailing list archive at Nabble.com.------------------------------------------------------------------------------
The Next 800 Companies to Lead America's Growth: New Video Whitepaper
David G. Thomson, author of the best-selling book "Blueprint to a
Billion" shares his insights and actions to help propel your
business during the next growth cycle. Listen Now!
http://p.sf.net/sfu/SAP-dev2dev
_______________________________________________
GeoNetwork-users mailing list
GeoNetwork-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/geonetwork-users
GeoNetwork OpenSource is maintained at
http://sourceforge.net/projects/geonetwork------------------------------------------------------------------------------
Centralized Desktop Delivery: Dell and VMware Reference Architecture
Simplifying enterprise desktop deployment and management using
Dell EqualLogic storage and VMware View: A highly scalable, end-to-end
client virtualization framework. Read more!
http://p.sf.net/sfu/dell-eql-dev2dev
_______________________________________________
GeoNetwork-users mailing list
GeoNetwork-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/geonetwork-users
GeoNetwork OpenSource is maintained at
http://sourceforge.net/projects/geonetwork
Ahh
So, looks like you can't search without a bind, which means you must know the bindDN format - you can't look it up.
The fallback method may be the best approach.
Terry
From: jose garcia [mailto:josegar74@anonymised.com]
Sent: Thursday, 11 November 2010 3:55 PM
To: Rankine, Terry (CESRE, Kensington)
Cc: cstieber@anonymised.com; geonetwork-users@lists.sourceforge.net
Subject: Re: [GeoNetwork-users] LDAP support in 2.6 version
Hi Terry
Thanks for explanation. The error in the log is:
2010-10-30 14:22:05,814 WARN [geonetwork.ldap] - Raised exception during LDAP access
2010-10-30 14:22:05,814 WARN [geonetwork.ldap] - (C) Message :[LDAP: error code 1 - 00000000: LdapErr: DSID-0C090627, comment: In order to perform this operation a successful bind must be completed on the connection., data 0, vece ]
I'll try your suggestion to build the old path if something is wrong with the find technique.
Regards,
Jose García
On Thu, Nov 11, 2010 at 3:14 AM, <Terry.Rankine@anonymised.com> wrote:
LDAP support patch was designed to work out what the DN to bind as was, then use that during the bind.
It takes the uid, and searches for it in LDAP, to get its bindDN.
For active directory,
1. Can you search the tree anonymously?
2. Can you show us what an entry looks like in ldif form.
What errors do you get in the geonetwork log file?
As for the patch - you could always add
String path;
try {
path = LDAPUtil.findUserDN(getUrl(), uidFilter, usersBaseDN);
}
if (path == null || path.length() == 0)
path = the old path constructor.
Would account for a null find, and assume that something is wrong with the find technique.
Terry
-----Original Message-----
From: cstieber [mailto:cstieber@anonymised.com]
Sent: Thursday, 11 November 2010 4:22 AM
To: geonetwork-users@lists.sourceforge.net<mailto:geonetwork-users@anonymised.comurceforge.net>
Subject: Re: [GeoNetwork-users] LDAP support in 2.6 version
I have been trying to set up geonetwork with LDAP and trying to connect to
Active Directory.. so far no luck.
these are the parameters i am using:
Host: nrn.nrcan.gc.ca<http://nrn.nrcan.gc.ca>
Port: 389
Base: dc=nrn,dc=nrcan,dc=gc,dc=ca
Users: users
Name: cn
Profile:
any suggestions?
Thanks,
Chris
--
View this message in context: http://osgeo-org.1803224.n2.nabble.com/LDAP-support-in-2-6-version-tp5720320p5726343.html
Sent from the GeoNetwork users mailing list archive at Nabble.com.
------------------------------------------------------------------------------
The Next 800 Companies to Lead America's Growth: New Video Whitepaper
David G. Thomson, author of the best-selling book "Blueprint to a
Billion" shares his insights and actions to help propel your
business during the next growth cycle. Listen Now!
http://p.sf.net/sfu/SAP-dev2dev
_______________________________________________
GeoNetwork-users mailing list
GeoNetwork-users@lists.sourceforge.net<mailto:GeoNetwork-users@anonymised.comforge.net>
https://lists.sourceforge.net/lists/listinfo/geonetwork-users
GeoNetwork OpenSource is maintained at http://sourceforge.net/projects/geonetwork
------------------------------------------------------------------------------
Centralized Desktop Delivery: Dell and VMware Reference Architecture
Simplifying enterprise desktop deployment and management using
Dell EqualLogic storage and VMware View: A highly scalable, end-to-end
client virtualization framework. Read more!
http://p.sf.net/sfu/dell-eql-dev2dev
_______________________________________________
GeoNetwork-users mailing list
GeoNetwork-users@lists.sourceforge.net<mailto:GeoNetwork-users@anonymised.comforge.net>
https://lists.sourceforge.net/lists/listinfo/geonetwork-users
GeoNetwork OpenSource is maintained at http://sourceforge.net/projects/geonetwork
Thanks Terry for the explanation. Using the fallback method is working with
Active Directory also.
I'll commit in trunk the change.
Regards,
Jose García
On Thu, Nov 11, 2010 at 9:12 AM, <Terry.Rankine@anonymised.com> wrote:
Ahh
So, looks like you can’t search without a bind, which means you must know
the bindDN format – you can’t look it up.The fallback method may be the best approach.
Terry
* *
*From:* jose garcia [mailto:josegar74@anonymised.com]
*Sent:* Thursday, 11 November 2010 3:55 PM
*To:* Rankine, Terry (CESRE, Kensington)
*Cc:* cstieber@anonymised.com; geonetwork-users@lists.sourceforge.net*Subject:* Re: [GeoNetwork-users] LDAP support in 2.6 version
Hi Terry
Thanks for explanation. The error in the log is:
2010-10-30 14:22:05,814 WARN [geonetwork.ldap] - Raised exception during
LDAP access
2010-10-30 14:22:05,814 WARN [geonetwork.ldap] - (C) Message :[LDAP: error
code 1 - 00000000: LdapErr: DSID-0C090627, comment: In order to perform this
operation a successful bind must be completed on the connection., data 0,
vece ]I'll try your suggestion to build the old path if something is wrong with
the find technique.Regards,
Jose GarcíaOn Thu, Nov 11, 2010 at 3:14 AM, <Terry.Rankine@anonymised.com> wrote:
LDAP support patch was designed to work out what the DN to bind as was,
then use that during the bind.It takes the uid, and searches for it in LDAP, to get its bindDN.
For active directory,
1. Can you search the tree anonymously?
2. Can you show us what an entry looks like in ldif form.What errors do you get in the geonetwork log file?
As for the patch - you could always add
String path;
try {
path = LDAPUtil.findUserDN(getUrl(), uidFilter, usersBaseDN);
}
if (path == null || path.length() == 0)
path = the old path constructor.Would account for a null find, and assume that something is wrong with the
find technique.Terry
-----Original Message-----
From: cstieber [mailto:cstieber@anonymised.com]
Sent: Thursday, 11 November 2010 4:22 AM
To: geonetwork-users@lists.sourceforge.net
Subject: Re: [GeoNetwork-users] LDAP support in 2.6 versionI have been trying to set up geonetwork with LDAP and trying to connect to
Active Directory.. so far no luck.these are the parameters i am using:
Host: nrn.nrcan.gc.ca
Port: 389
Base: dc=nrn,dc=nrcan,dc=gc,dc=ca
Users: users
Name: cn
Profile:any suggestions?
Thanks,
Chris
--
View this message in context:
http://osgeo-org.1803224.n2.nabble.com/LDAP-support-in-2-6-version-tp5720320p5726343.html
Sent from the GeoNetwork users mailing list archive at Nabble.com.------------------------------------------------------------------------------
The Next 800 Companies to Lead America's Growth: New Video Whitepaper
David G. Thomson, author of the best-selling book "Blueprint to a
Billion" shares his insights and actions to help propel your
business during the next growth cycle. Listen Now!
http://p.sf.net/sfu/SAP-dev2dev
_______________________________________________
GeoNetwork-users mailing list
GeoNetwork-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/geonetwork-users
GeoNetwork OpenSource is maintained at
http://sourceforge.net/projects/geonetwork------------------------------------------------------------------------------
Centralized Desktop Delivery: Dell and VMware Reference Architecture
Simplifying enterprise desktop deployment and management using
Dell EqualLogic storage and VMware View: A highly scalable, end-to-end
client virtualization framework. Read more!
http://p.sf.net/sfu/dell-eql-dev2dev_______________________________________________
GeoNetwork-users mailing list
GeoNetwork-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/geonetwork-users
GeoNetwork OpenSource is maintained at
http://sourceforge.net/projects/geonetwork