Skip to Content
0
Former Member
Feb 15, 2007 at 09:58 AM

Mapping LDAP Groups to portal role

76 Views

Hi

In portal I have configuring ADS LDAP as data source read only.

I assign LDAP group with portal role. But when I log into portal as test user it fails.

I mean I can login, but the user hasn't assigned role.

Also I noticed error in defaultTrace file when I assign LDAP group with portal role :

[code]#com.sap.security.core.persistence#sap.com/irj#com.sap.security.core.persisten

ce.[cf=com.sap.security.core.persistence.datasource.imp.LDAPPersistence][md=performSimpleSearch][cl=20722]

#testuser#37##server_14241244#testuser#Thread[PRT-Async 3,5,PRT-Async]##0#0#Error##Java###Naming

xception when searching for a principal with filter (&(objectclass=organizationalunit)(description=TestGroup))

[EXCEPTION]

#1#javax.naming.NameNotFoundException: [LDAP: error code 32 - No Such Object]; remaining name ''

at com.sun.jndi.ldap.LdapCtx.mapErrorCode(LdapCtx.java:3013)

at com.sun.jndi.ldap.LdapCtx.processReturnCode(LdapCtx.java:2934)

at com.sun.jndi.ldap.LdapCtx.processReturnCode(LdapCtx.java:2740)

at com.sun.jndi.ldap.LdapCtx.searchAux(LdapCtx.java:1811)

at com.sun.jndi.ldap.LdapCtx.c_search(LdapCtx.java:1734)

at com.sun.jndi.toolkit.ctx.ComponentDirContext.p_search(ComponentDirContext.java:368)

at com.sun.jndi.toolkit.ctx.PartialCompositeDirContext.search(PartialCompositeDirContext.java:328)

at com.sun.jndi.toolkit.ctx.PartialCompositeDirContext.search(PartialCompositeDirContext.java:313)

at javax.naming.directory.InitialDirContext.search(InitialDirContext.java:238)

at javax.naming.directory.InitialDirContext.search(InitialDirContext.java:238)

at com.sap.security.core.persistence.datasource.imp.LDAPPersistence.performSimpleSearch(LDAPPersistence.java:9311)

at com.sap.security.core.persistence.datasource.imp.LDAPPersistence.searchPrincipalDatabags(LDAPPersistence.java:4559)

at com.sap.security.core.persistence.imp.PrincipalDatabagFactoryInstance.searchPrincipalDatabagsInternal(PrincipalDatabagFactoryInstance.java:3595)

at com.sap.security.core.persistence.imp.PrincipalDatabagFactoryInstance.searchPrincipalDatabags(PrincipalDatabagFactoryInstance.java:3108)

at com.sap.security.core.imp.GroupFactory.searchGroups(GroupFactory.java:561)

at com.sapportals.portal.prt.component.usermanagement.UMTableModel.searchGroups(UMTableModel.java:711)

at com.sapportals.portal.prt.component.usermanagement.UMTableModel.searchGroups(UMTableModel.java:696)

at com.sapportals.portal.prt.component.usermanagement.UMTableModel.search(UMTableModel.java:448)

at com.sapportals.portal.prt.component.usermanagement.UserManagementComponent.doHandleRoleInfoScreenHTMLBEvent(UserManagementComponent.java:515)

at com.sapportals.portal.prt.component.usermanagement.UserManagementComponent.doContent(UserManagementComponent.java:103)

at com.sapportals.portal.prt.component.AbstractPortalComponent.serviceDeprecated(AbstractPortalComponent.java:209)

at com.sapportals.portal.prt.component.AbstractPortalComponent.service(AbstractPortalComponent.java:114)

at com.sapportals.portal.prt.core.PortalRequestManager.callPortalComponent(PortalRequestManager.java:328)

at com.sapportals.portal.prt.core.PortalRequestManager.dispatchRequest(PortalRequestManager.java:136)

at com.sapportals.portal.prt.core.async.AsyncIncludeRunnable$1$DoDispatchRequest.run(AsyncIncludeRunnable.java:377)

at java.security.AccessController.doPrivileged(Native Method)

at com.sapportals.portal.prt.core.async.AsyncIncludeRunnable.run(AsyncIncludeRunnable.java:390)

at com.sapportals.portal.prt.core.async.ThreadContextRunnable.run(ThreadContextRunnable.java:164)

at EDU.oswego.cs.dl.util.concurrent.PooledExecutor$Worker.run(PooledExecutor.java:729)

at java.lang.Thread.run(Thread.java:534)[/code]

Thanks

Jakub Krecicki