Unable to log in to Studio. The CIS logs contain : Authentication failed for user "userG" in domain "ldap_domain". [security-1900206]
Article ID: KB0082966
Updated On:
| Products | Versions |
|---|---|
| TIBCO Data Virtualization | 7.0.0 and higher |
Description
This article discusses logging in as an LDAP use
Issue/Introduction
Unable to log in to Studio. The CIS logs contain : Authentication failed for user "userG" in domain "ldap_domain". [security-1900206]
Resolution
An error of the type below:
Cause: Could not find dn for user 'userG' in search context(s) '[cn=usersTYPO3]'
com.compositesw.common.security.CompositeSecurityException: Could not find dn for user 'userG' in search context(s) '[cn=usersTYPO3]'
indicates that your LDAP url (or filters) are not correct.
(1) Check your LDAP url
One possible reason for the error is that you have one or more unecessary fields in your LDAP url. For instance, consider the URL below:
ldap://teak.mycompany,net:389/dc=2k,dc=hlp,dc=net
If only "dc=2k,dc=hlp" is required (instead of "dc=2k,dc=hlp,dc=net"), then your LDAP server may be able to find the user.
(2) Review the LDAP filters
If the LDAP url is correct, it means that your filters are not set up correctly. Open the file <install dir>\conf\server\ldap.properties with any text editor and verify that the values of the "search.context" filters in the file match with what your LDAP server is expecting. Note that you do not need to restart the TIBCO Data Virtualization server after making an edit to ldap.properties. The change takes effect instantaneously.
Cause: Could not find dn for user 'userG' in search context(s) '[cn=usersTYPO3]'
com.compositesw.common.security.CompositeSecurityException: Could not find dn for user 'userG' in search context(s) '[cn=usersTYPO3]'
indicates that your LDAP url (or filters) are not correct.
(1) Check your LDAP url
One possible reason for the error is that you have one or more unecessary fields in your LDAP url. For instance, consider the URL below:
ldap://teak.mycompany,net:389/dc=2k,dc=hlp,dc=net
If only "dc=2k,dc=hlp" is required (instead of "dc=2k,dc=hlp,dc=net"), then your LDAP server may be able to find the user.
(2) Review the LDAP filters
If the LDAP url is correct, it means that your filters are not set up correctly. Open the file <install dir>\conf\server\ldap.properties with any text editor and verify that the values of the "search.context" filters in the file match with what your LDAP server is expecting. Note that you do not need to restart the TIBCO Data Virtualization server after making an edit to ldap.properties. The change takes effect instantaneously.
Feedback
Yes
No
Powered by
