permaculture playing cards*
The moose likes BEA/Weblogic and the fly likes Weblogic 10.3.5 & Windows 2003 Active Directory NO User but Groups Big Moose Saloon
  Search | Java FAQ | Recent Topics | Flagged Topics | Hot Topics | Zero Replies
Register / Login


Win a copy of Android Security Essentials Live Lessons this week in the Android forum!
JavaRanch » Java Forums » Products » BEA/Weblogic
Bookmark "Weblogic 10.3.5 & Windows 2003 Active Directory NO User but Groups " Watch "Weblogic 10.3.5 & Windows 2003 Active Directory NO User but Groups " New topic
Author

Weblogic 10.3.5 & Windows 2003 Active Directory NO User but Groups

Backlit franz
Greenhorn

Joined: Aug 30, 2011
Posts: 1

Hi,

I use OBIEE 11.1.1.5, Weblogic Server 10.3.5 and Active Directory Windows 2003.
I tried to integrate our external LDAP in the Weblogic admin console. The integration worked so far but I have the problem that I only see groups but no user.
When I use a simple LDAP Browser with the same query (as in the settings in the console) I get all the needed user and groups. I have no idea why this is happening.
The strange thing is - when I use the same settings in the RPD (admin tool) I am able to use the LDAP authentication.

Our LDAP structure is OU=MyCompany where CN= all User with their names. And a special group OU=BI with CN= group names like administration and so on. We use the same structure for our Jira and Windows.
Is there something I am missing?

here is my config.xml:

<security-configuration>
<name>bifoundation_domain</name>
<realm>
<sec:authentication-provider xsi:type="wls:active-directory-authenticatorType">
<sec:name>ADLdap</sec:name>
<sec:control-flag>SUFFICIENT</sec:control-flag>
<wls:host>##########(I blanked this part out)</wls:host>
<wls:user-object-class>user</wls:user-object-class>
<wls:user-name-attribute>sAMAccountName</wls:user-name-attribute>
<wls:principal>cn=ldap-reader,cn=users,dc=company,dc=com</wls:principal>
<wls:user-base-dn>ou=MyCompany,dc=company,dc=de</wls:user-base-dn>
<wls:credential-encrypted>I removed this part </wls:credential-encrypted>
<wls:user-from-name-filter>(&(cn=%u)(objectclass=user))</wls:user-from-name-filter>
<wls:all-users-filter>objectClass=user</wls:all-users-filter>
<wls:group-base-dn>ou=BI,dc=company,dc=com</wls:group-base-dn>
<wls:all-groups-filter>objectClass=group</wls:all-groups-filter>
</sec:authentication-provider>

Thanks in advance!
 
I agree. Here's the link: http://aspose.com/file-tools
 
subject: Weblogic 10.3.5 & Windows 2003 Active Directory NO User but Groups
 
Similar Threads
How to configure Tomcat for authentication against Active Directory of Windows Server 2003
ldap authentication. JNDIRealm
Configuring the application policy in login-config.xml for LDAP Apache DS
LDAP Integration with JBoss
WLS6.1 - Configuring realm for openLdap