Re: Active Directory, JNDI, EOModel
Re: Active Directory, JNDI, EOModel
- Subject: Re: Active Directory, JNDI, EOModel
- From: Theodore Petrosky <email@hidden>
- Date: Fri, 21 Jul 2017 15:50:31 -0400
did you see this:
https://www.slideshare.net/wocommunity/third-party-auth-in-webobjects
<https://www.slideshare.net/wocommunity/third-party-auth-in-webobjects>
I was looking to see if there was a video to go along with the slides but
didn’t find one.
> On Jul 21, 2017, at 3:10 PM, Tim Worman <email@hidden> wrote:
>
> Has anyone used the JNDI plugin to model Active Directory? I’ve used it with
> a lot of success with other ldap directories but I’m running into a problem
> with a pretty simple model (which I’m sure has to do with AD’s
> implementation).
>
> I reverse engineered our AD (Server 2016) instance with no problem - and only
> included Person and User in my model. However, when I try to do a simple
> fetch of all User (or Person) I get sth like:
>
> Jul 21 11:11:23 GSEISNetTestApplication[54777] DEBUG NSLog - Waiting for
> requests...
> Jul 21 11:11:24 GSEISNetTestApplication[54777] WARN
> er.extensions.eof.ERXModelGroup - Clearing previous class descriptions
> Jul 21 11:11:24 GSEISNetTestApplication[54777] DEBUG NSLog - Context factory
> cache is already clear
> Jul 21 11:11:24 GSEISNetTestApplication[54777] DEBUG NSLog - Connecting:
> {plugInClassName = "com.webobjects.jndiadaptor.LDAPPlugIn"; timeout = "3600";
> scope = "Subtree"; username = "CN="Application Server",OU="Service
> Accounts",OU=ETU,DC=gseisnet,DC=ucla,DC=edu"; authenticationMethod =
> "Simple"; password = "<omitted from log>"; serverUrl =
> "ldap://gseisnet.ucla.edu:389 <ldap://gseisnet.ucla.edu:389>";
> initialContextFactory = "com.sun.jndi.ldap.LdapCtxFactory"; }
> Jul 21 11:11:24 GSEISNetTestApplication[54777] DEBUG NSLog - Creating
> plug-in com.webobjects.jndiadaptor.LDAPPlugIn for JNDIAdaptor@1084219182
> Jul 21 11:11:24 GSEISNetTestApplication[54777] WARN NSLog - Cannot search
> (&(objectClass=user))
> [2017-7-21 11:11:24 PDT] <WorkerThread0> javax.naming.NameNotFoundException:
> [LDAP: error code 32 - 0000208D: NameErr: DSID-0310021B, problem 2001
> (NO_OBJECT), data 0, best match of:
> ''
> ]; remaining name ''
>
> When I use Directory Studio to perform what appears to be the same search,
> filtering on objectClass user, I get the results I would expect. I’m using
> the same bind credentials in both as well. One guess I have is the search
> base, which I have set to the base DN in Directory Studio. Is there a way to
> get a handle on the JNDI adaptor and set the search base globally in case it
> isn’t right?
>
> Any other ideas? I know I’m probably off the reservation here.
>
> Tim
> UCLA GSE&IS
> _______________________________________________
> Do not post admin requests to the list. They will be ignored.
> Webobjects-dev mailing list (email@hidden)
> Help/Unsubscribe/Update your Subscription:
>
> This email sent to email@hidden
_______________________________________________
Do not post admin requests to the list. They will be ignored.
Webobjects-dev mailing list (email@hidden)
Help/Unsubscribe/Update your Subscription:
This email sent to email@hidden