on 06-14-2007 8:07 PM
When I run test 1 and 2 from the query page I get no errors, I get the list of users correctly and the user when I replace the ? with a user name.
But, When I test the 3rd Query from the LDAP page:
select name from ou=ProdUsers, ou=monterrey, ou=am, ou=pkg, ou=Prod where objectCategory= groups
I get this response:
Query test returned the following number of records: 0
But I also get the following error.
javax.naming.CommunicationException: Connection reset [Root exception is java.net.SocketException: Connection reset]; remaining name 'cn=Users,DC=company,DC=biz'
Anybody has any idea what I should check?
Thanks
Andy
Andy,
Just for a test retrieve a group from your LDAP system manually and try it in Query #4, select name from cn=Users where objectCategory=group and name=?
Please let me know the results.
-Sam
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hi Sam,
I tried this query.
select name from ou=ProdUsers, ou=monterrey, ou=am, ou=pkg, ou=Prod where objectCategory=group and sAMAccountName=xmii1
(this is a test user name and member of 2 groups)
When I run the query I get
Query test returned the following number of records: 0
But no error in the logs.
This should work.
Any Ideas?
Think I figured this query out (Select Role List)
This query is suppose to give me a list of roles used on the third tab, "role Mapping.
I changed the query to this and it gives me the list of roles that we use in xMII.
select name from ou=Groups, ou=xMII-SAP-SFDC, ou=am, ou=pkg, ou=Prod
And it fills the table in "role mapping"
So now of to the next, and from what I see it wants a user name and tries to read the group that that user is a member of.
Is this correct?
I have modified the query to be like this:
select name from ou=ProdUsers, ou=monterrey, ou=am, ou=pkg, ou=Prod where objectCategory=group and name=? (for testing I change the ? for a user name)
But if I look in the LDAP objectCategory does not give me a group name.
All groups/roles are defined by a name that contains a value member of and in it is cn=group/role name.
Is may assumption correct and am I going in the wrong direction.
The LDAP user configuration pages do not explain well what each query does.
I think somebody needs to add some more documentation to what each query does.
Thanks
Andy
User | Count |
---|---|
11 | |
6 | |
1 | |
1 | |
1 | |
1 | |
1 | |
1 | |
1 | |
1 |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.