on 02-26-2015 2:35 PM
Hi,
We are using SMP 3.0 SP05. For the SMP Administration and Management Cockpit we are configuring AD/LDAP Authentication. Inside Settings > Security Profiles > admin (Cannot be deleted), we have added the "Directory Service LDAP/AD" as an authentication Provider. However when we try to log in with our AD/LDAP userid and password in the logs we get the following error message
2015 02 26 08:57:07#+0100#WARN#com.sybase.security.ldap.LDAPLoginModule##anonymous#http-bio-8083-exec-12###[LDAP: error code 1 - 000004DC: LdapErr: DSID-0C09072B, comment: In order to perform this operation a successful bind must be completed on the connection., data 0, v2580 ] javax.naming.NamingException: [LDAP: error code 1 - 000004DC: LdapErr: DSID-0C09072B, comment: In order to perform this operation a successful bind must be completed on the connection., data 0, v2580 ]
2015 02 26 08:57:07#+0100#DEBUG#com.sybase.security.internal.SecSubjectImpl##anonymous#http-bio-8083-exec-12###[LDAP: error code 1 - 000004DC: LdapErr: DSID-0C09072B, comment: In order to perform this operation a successful bind must be completed on the connection., data 0, v2580 ] com.sybase.security.ldap.LDAPAuthenticationFailureWarning: [LDAP: error code 1 - 000004DC: LdapErr: DSID-0C09072B, comment: In order to perform this operation a successful bind must be completed on the connection., data 0, v2580 ]
2015 02 26 08:57:07#+0100#DEBUG#com.sybase.security.ldap.LDAPLoginModule##anonymous#http-bio-8083-exec-12###[LDAP: error code 1 - 000004DC: LdapErr: DSID-0C09072B, comment: In order to perform this operation a successful bind must be completed on the connection., data 0, v2580 ] |
What are we doing wrong? Any help would be appreciated.
_______________________________________
Have a nice day
Amardeep Verma
There was a problem with the BindDN of the LDAP/AD Security Configuration. Once we fixed that it started working again. Thanks a lot guys for your time.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Discussion successfully moved from SAP for Mobile to SMP Developer Center as more appropriate space.
Regards, Mike (Moderator)
SAP Technology RIG
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hi Amardeep,
Can you share the Security Configuration for LDAP/AD as I am facing the same issue of BindDN, I have given complete Bind DN of Admin user of LDAP but still facing issues so just wanted to verify the Security profile with yours. If it's possible can you share the screen shot of your Security profile.
Regards,
Fenil.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Please take a look at the Quick IQ Kevin mentioned at:
https://service.sap.com/sap/bc/bsp/spn/esa_redirect/index.htm?gotocourse=X&courseid=70255583
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
It's hard to say what's wrong with your configuration based on limited information, but the error indicates that your LDAP configuration is wrong in SMP and it can't get a valid connection to LDAP. I have seen this usually with Bind Credentials are invalid. You can debug your configuration with the CSI tool discussed in the documentation (Debugging Authentication Errors with CSI Tool - Administrator - SAP Library) or enable DEBUG on security. There is also a Quick IQ at the Enterprise Support Academy demonstrating LDAP in SMP 3.x.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
User | Count |
---|---|
88 | |
23 | |
11 | |
9 | |
8 | |
5 | |
5 | |
5 | |
5 | |
4 |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.