cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Another LDAP question

Go to solution
Former Member

on ‎06-14-2007 8:07 PM

0 Kudos

When I run test 1 and 2 from the query page I get no errors, I get the list of users correctly and the user when I replace the ? with a user name.

But, When I test the 3rd Query from the LDAP page:

select name from ou=ProdUsers, ou=monterrey, ou=am, ou=pkg, ou=Prod where objectCategory= groups

I get this response:

Query test returned the following number of records: 0

But I also get the following error.

javax.naming.CommunicationException: Connection reset [Root exception is java.net.SocketException: Connection reset]; remaining name 'cn=Users,DC=company,DC=biz'

Anybody has any idea what I should check?

Thanks

Andy

Show replies
Show replies
Answer

Accepted Solutions (1)

Accepted Solutions (1)

salvatore_castro
Advisor
Advisor
‎06-15-2007 1:55 PM
0 Kudos

Andy,

Just for a test retrieve a group from your LDAP system manually and try it in Query #4, select name from cn=Users where objectCategory=group and name=?

Please let me know the results.

-Sam

Show replies
Show replies
Former Member
‎06-18-2007 6:56 PM
0 Kudos

Hi Sam,

I tried this query.

select name from ou=ProdUsers, ou=monterrey, ou=am, ou=pkg, ou=Prod where objectCategory=group and sAMAccountName=xmii1

(this is a test user name and member of 2 groups)

When I run the query I get

Query test returned the following number of records: 0

But no error in the logs.

This should work.

Any Ideas?

Former Member
‎06-18-2007 11:38 PM
0 Kudos

Think I figured this query out (Select Role List)

This query is suppose to give me a list of roles used on the third tab, "role Mapping.

I changed the query to this and it gives me the list of roles that we use in xMII.

select name from ou=Groups, ou=xMII-SAP-SFDC, ou=am, ou=pkg, ou=Prod

And it fills the table in "role mapping"

So now of to the next, and from what I see it wants a user name and tries to read the group that that user is a member of.

Is this correct?

I have modified the query to be like this:

select name from ou=ProdUsers, ou=monterrey, ou=am, ou=pkg, ou=Prod where objectCategory=group and name=? (for testing I change the ? for a user name)

But if I look in the LDAP objectCategory does not give me a group name.

All groups/roles are defined by a name that contains a value member of and in it is cn=group/role name.

Is may assumption correct and am I going in the wrong direction.

The LDAP user configuration pages do not explain well what each query does.

I think somebody needs to add some more documentation to what each query does.

Thanks

Andy

Answers (0)

Ask a Question