Hello,
I have recently added LDAP extension. It works : the password in user's attributes in HMC is ignored and the login page checks the login/password against our ActiveDirectory.
However, I was surprised to see that all LDAP standard errors give the same message at connexion (cockpit : "Wrong credentials" / HMC : "Login/Password did not match")
For example, if a user is disabled, but if we submit the right login/password, the message is "Wrong credentials.", which is wrong and misleads users. The system gets the error yet : "DEBUG [hybrisHTTP28] [ActiveDirectoryConnectionImpl] [LDAP: error code 49 - 8009 0308: LdapErr: DSID-0C0903A9, comment: AcceptSecurityContext error, data 52e, v1 db1"
(49 / 533 = ACCOUNT_DISABLED)
Questions :
Do you know if it is a known issue that will be fixed/ will change ?
What is the simplest (and most appropriate) way to display the right message which corresponds to the LDAP response without rewrite the entire login process ?
Thanks in advance for your answers