UCMDB Support Tip: How to solve potential LDAP problems
To identify such error it is suggested to view the security.lwsso.log, the following error message will confirm if a bad password error has been encountered:
In the error.log, a simple message will be logged:
2013-10-18 21:26:11,558 [503865391@qtp0-23] (ServerLoginUtils.java:371) ERROR - Authentication fails: Invalid credentials. Provided username/password are incorrect
If the user name is wrong (e.g. if it is mistyped), the following entries are found. It is worth noting that the user name is printed out in the security.lwsso.log. In the security.lwsso.log, one will find the following error message:
]. RequestInfo is [RequestURL is [http://ucmdbserver:8080/ucmdb-ui/cms/loginRequest.do;]; Request Method [POST]; RequestQuery is [null]; Params: Name [userName]; Value [username]; Name [customerID]; Value ; Name [password]; Value [PROTECTED]; Name [isEncoded]; Value [false]; Name [forwardURL]; Value [/applet/applet.jsp]; ].
In the error.log the same error is presented as above:
2013-10-18 21:28:23,526 [1019120148@qtp0-24] (ServerLoginUtils.java:371) ERROR - Authentication fails: Invalid credentials. Provided username/password are incorrect
Cannot connect to LDAP Server
Error.log will shows errors such as:
2013-10-18 21:32:42,636 [870883169@qtp0-28] (UserManagementLDAP.java:1568) ERROR - com.hp.sw.bto.ast.security.uum.UserManagementConnectionException caught while connecting to LDAP with the following configuration parameters: com.hp.sw.bto.ast.security.uum.UserManagementLDAPConfiguration@246453e2. ErrorMessage: Exception, while connecting to LDAP with the following configuration parameters: com.hp.sw.bto.ast.security.uum.UserManagementLDAPConfiguration@246453e2
2013-10-18 21:32:42,636 [870883169@qtp0-28] (ServerLoginUtils.java:371) ERROR - Authentication fails: Error connecting to LDAP. Check host and port and LDAP administrator settings
The best approach for solving LDAP problems as such is this:
1) Can the user connect to the LDAP server from the UCMDB server?
2) Can the user authenticate via the JMX Console?
3) Are the settings correct for LDAP?
4) Can the user use a 3rd party software such as Softerra’s LDAP Browser?
If you find this or any post resolves your issue, please be sure to mark it as an accepted solution."
Click the KUDOS star on the left to say 'Thanks'