[Geoserver-devel] [jira] (GEOS-5999) LDAP/AD not authenticating

Jonathan Moules created BugGEOS-5999
LDAP/AD not authenticating

Issue Type:

BugBug

Affects Versions:

2.4-RC1

Assignee:

Andrea Aime

Components:

Security

Created:

27/Aug/13 6:36 AM

Description:

We can get it to authenticate simple test accounts, but with our actual user accounts it fails to authenticate. When we enter the correct details we get the following error:

org.springframework.dao.IncorrectResultSizeDataAccessException: Incorrect result size: expected 1, actual 0

When we enter the wrong details we get:

javax.naming.AuthenticationException: Cannot authenticate username

Which is correct.


Upon investigation, our LDAP/AD folks found:
http://forum.springsource.org/showthread.php?116640-Unable-to-authenticate-against-Active-Directory - which indicates it may be a spring framework issue.


Further testing indicates the problem is when multiple records are returned when the LDAP search takes place.
We have tried with a user principle name (UPN) logon id which is also a full name. For some users that works as that works as it returns only one record, but for other users it doesn’t work.

I hope that’s clear - I don’t know much about LDAP and am just relaying from our server guys.

Project:

GeoServer

Priority:

MajorMajor

Reporter:

Jonathan Moules

This message is automatically generated by JIRA. If you think it was sent incorrectly, please contact your JIRA administrators For more information on JIRA, see: [http://www.atlassian.com/software/jira](http://www.atlassian.com/software/jira)