LDAP error

system · May 20, 2010, 7:55pm

Guys,

Iam getting this error when I tried to login through LDAP auth.

“An error has occurred: An error occurred at the server: LDAP Authorization failed. Please make sure your entry belongs to a mapped LDAP group.”

regards
p

boxir2_p (BOB member since 2006-10-19)

system · May 21, 2010, 6:22am

Did you mapped the group correctly in CMC? Is there any other user able to login (checking if this is User specific issue)?

Also confirm if getting same error message on Deski/Designer logon?

nicholas (BOB member since 2008-07-31)

system · August 10, 2010, 3:41pm

Hi Gurus,

I have researched as much as I could but unable to find answer to this. Following different threads I have successfully configured LDAP authentication, have added correct BASE LDAP Distinguished name etc… The isssue I am having is that I am able to extract LDAP groups without any issues i.e. IN LDAP Authentication if add for e.g. ASM Support Group, it retrieves the correct distinguished name, also I am able to connect to Designer using LDAP by logging onto the application server. Its only when

I try Infoview I get the following error:
Account Information Not Recognized: The secLdap plugin failed to connect to the specified hosts. (FWB 00028)

We have a seperate WEB Tier and seperate application Tier. I haven’t seen any documentation which specifies if any configuration is needed on Tomcat.

Any Ideas or advice will be greatly appreciated.

friend123 (BOB member since 2008-05-30)

system · August 11, 2010, 6:54pm

Hi All,

Any feedback from any one ?

Thanks

friend123 (BOB member since 2008-05-30)

system · August 12, 2010, 12:53am

The poster has waited for 2 days. So I rejected the report. Thanks.

Jansi (BOB member since 2008-05-12)

system · August 12, 2010, 8:57am

Hello friend123,

Are you using LDAP SSL configuration?

Please try restarting the BO Server and also confirm the System Database, OS because there is a known bug.

nicholas (BOB member since 2008-07-31)

system · August 12, 2010, 11:12am

Thanks for you response, BO has been hosted on
MS Windows 2003 Server
Standard Edition
Service Pack 2

For Database we are using MS SQL Server 2005.

Not using SSL to connect to LDAP nor planning to configure SSO.

Please let me know if you need any more information.

Thanks Again.

friend123 (BOB member since 2008-05-30)

system · August 12, 2010, 11:39am

OK…thanks for the details.

And what if you use the complete DN for user while logging to InfoView using LDAP authentication?

nicholas (BOB member since 2008-07-31)

system · August 12, 2010, 11:57am

Yes have tried that as well but no luck . The Apache Tomcat has been hosted on a different server. The LDAP Server is accessible from BO hosted server, as the ports have been opened, but not from the web server. Also I can use WEBI Rich Client or Designer to logon on via LDAP from the BO server itself. It is an issue when I try and connect via Infoview, where the web tier comes into picture. Logically Web tier does not directly communicate with LDAP server, it would send the information to CMS, it is then the CMS that authenticates using secLDAP and sends back a valid session \token to Web Tier. Would I be correct in understanding this ?

Thanks

friend123 (BOB member since 2008-05-30)

system · August 13, 2010, 7:20am

Hello my dear friend123 - Ashish ,

You need to ensure that Apache Tomcat can communicate with LDAP (as explained here ) I think it should work…else you can confirm with Lee where you are checking

Hope to see your response if it worked.

nicholas (BOB member since 2008-07-31)

system · August 13, 2010, 8:26am

You are right, I got hold of this SAP forum yesterday evening but as you and Tim are mentioning the same fact, it could very well be due to this fact. Will give it a go, will surely feedback as it goes.

Thanks Again.

friend123 (BOB member since 2008-05-30)

system · August 27, 2010, 7:27am

Thanks Nicholas, you were spot on. Finally the port from the web server were opened yesterday and gues what the LDAP authentication worked successfully

Thanks again for your inputs.

friend123 (BOB member since 2008-05-30)

system · August 27, 2010, 10:51am

Great!!

nicholas (BOB member since 2008-07-31)

system · October 19, 2010, 1:19pm

Hello

I have a problem, i connect LDAP with BO XI 3.1.

it’s Ok i get the user in CMC;

but whene i connect by infoview i get this message

The secLdap plugin failed to connect to the specified hosts. (FWB 00028)

you can see plz the file attached.

to tell you, the user have write u connect in infoview
FWB 00028.JPG

zouwebi (BOB member since 2007-06-18)

system · October 25, 2010, 4:05pm

Are you using SSL to communicate to LDAP server?

If not, please check again the Hostname of LDAP server and check its connectivity from BO server.

nicholas (BOB member since 2008-07-31)

system · October 13, 2011, 10:43am

Hi,

Sorry to post in an old posting. I am getting the similar error messages but this is only coming for few users and not for all LDAP users.

As in CMC in session i can see there are LDAP users logged in but one users reported issue with this error message while logging into Infoview.

Does there is any specific settings on user system also for LDAP access.

please help me out if any idea.

saurabhg (BOB member since 2007-04-02)