The Shed is going Social! Join us on FaceBook and Twitter and chime in on the conversation.
|
 |
|
Dev Shed Forums
> Databases
> LDAP Programming
|
LDAP for Active Directory
Discuss LDAP for Active Directory in the LDAP Programming forum on Dev Shed.
LDAP for Active Directory LDAP Programming forum discussing Lightweight Directory Access Protocol information and techniques. LDAP is used to allow applications to access directory information from a server.
|
|
 |
|
|
|
|
Dev Shed Forums Sponsor:
|
|
|
April 3rd, 2007, 08:56 PM
|
 |
Contributing User
|
|
|
|
|
LDAP for Active Directory
I have a program using Active Directory (Windows 2003 R1) via LDAP. All worked well.
However, when I installed one more Domain Controller (Win 2003 R2) and it is turned off for spare, the program can work sometimes but fails sometimes else.
The program is just configured to the original server only. What is wrong with more than one Domain Controllers?
__________________
------------------------------------------
Perl Kids Kiss Perl
Stanley
------------------------------------------
|
May 29th, 2007, 08:39 PM
|
|
Contributing User
|
|
|
|
After checking, the following error occurs:
Code:
2007-05-14 10:28:40,541 DEBUG [org.acegisecurity.ui.webapp.AuthenticationProcessingFilter] - Authentication request failed: org.acegisecurity.AuthenticationServiceException: LdapCallback;null; nested exception is javax.naming.PartialResultException [Root exception is javax.naming.AuthenticationException: [LDAP: error code 49 - 80090308: LdapErr: DSID-0C090334, comment: AcceptSecurityContext error, data 531, vece ]]; nested exception is org.acegisecurity.ldap.LdapDataAccessException: LdapCallback;null; nested exception is javax.naming.PartialResultException [Root exception is javax.naming.AuthenticationException: [LDAP: error code 49 - 80090308: LdapErr: DSID-0C090334, comment: AcceptSecurityContext error, data 531, vece ]]
What does the error mean? How can I solve it?
|
May 29th, 2007, 09:22 PM
|
 |
Psycho Canadian
|
|
Join Date: Jan 2001
Location: Canada
|
|
|
maybe a bug in it? I'm not sure about multiple domain controllers I only use it with one afaik
|
July 3rd, 2008, 10:54 PM
|
|
Registered User
|
|
Join Date: Jul 2008
Posts: 2
Time spent in forums: 3 m 46 sec
Reputation Power: 0
|
|
|
This is the error
80090308: LdapErr: DSID-0C09030B, comment: AcceptSecurityContext error, data 531, v893
HEX: 0×531 - not permitted to logon from this workstation
DEC: 1329 - ERROR_INVALID_WORKSTATION (Logon failure: user not allowed to log on to this computer.)
LDAP[userWorkstations: <multivalued list of workstation names>]
NOTE: Returns only when presented with valid username and password/credential.
|
November 16th, 2008, 06:42 AM
|
|
Registered User
|
|
Join Date: Jul 2008
Posts: 2
Time spent in forums: 3 m 46 sec
Reputation Power: 0
|
|
|
That is because of the account you are using to login is set to allow login to some specific workstation only
|
June 13th, 2009, 08:27 AM
|
|
Contributing User
|
|
|
|
|
This post has been posted for quite a long time and I investigated it for quite a long time.
Finally I found out the solution.
I found that the server got AD authentication failure if the server runs as Local Administrator while the authentication successes if the server runs as Domain Users.
I don't know whether it is Acegi Security issue or Active Directory issue. The above can solve anyway.
|
July 3rd, 2009, 06:30 AM
|
|
Registered User
|
|
Join Date: Jul 2009
Posts: 1
Time spent in forums: 1 h 6 m 13 sec
Reputation Power: 0
|
|
|
Excel to Active Directory
Hi all,
is there any possibility to connect Excel to AD through LDAP by using java code? The point is, to use excel as a user interface to reach Active Directory (to write and to read).
many thanks
/fridaylight
|
September 27th, 2010, 01:08 PM
|
|
Registered User
|
|
Join Date: Sep 2010
Posts: 1
Time spent in forums: 29 m 9 sec
Reputation Power: 0
|
|
|
stanley1610,
I think I am facing the same problem you were. We are using Acegi Security, and when we use a ManagerDN to log into LDAP that is tied down to specific workstation (including the web server), the authentication fails. If we remove the workstation restriction, everything works fine.
We are running on Apache Tomcat, and after reading your last post, I tried setting the Log In for the apache service to a domain user rather than the Local machine. It is still not authenticating for me. Is that all that you did, or is there something that I am missing?
Thanks!
|
Developer Shed Advertisers and Affiliates
| Thread Tools |
Search this Thread |
|
|
|
| Display Modes |
Rate This Thread |
 Linear Mode
|
|
Posting Rules
|
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
HTML code is Off
|
|
|
|
|
Del.icio.us
Digg
Google
Spurl
Blink
Furl
Simpy
Y! MyWeb
