"different bases - and bind-users"-problems...[LDAP: error code 49 - Failed,...]
Hi!
I've a really weird problem with a Spring-LDAP-Integration. I'm using Spring-ldap-1.2-RC1.jar. (Same happens with newest version Spring-ldap-1.2.1.jar).
My setup:
I've a domino-LDAP-server, that has got two branches and a bunch of users:
************
-top
--- o=company1
------ cn=user1
------ cn=user2
------ cn=ldapbind1
--- o=company2
------ cn=user3
------ cn=user4
------ cn=ldapbind2
************
I want to write a program, that searches in either the branch company1 or in the branch company2 for the users contained in this branch.
The branch to search in and the bind-user shall be configured in the application-context.xml.
Here's how I use Spring:
I'm using a org.springframework.ldap.core.LdapTemplate to access this LDAP-server.
This is a possible example-code to search in the LDAP: List result = ldapTemplate.list("");
(the actual LDAP-call doesn't really matter, others like ldapTemplate.search(...); provide the same phenomenon)
Here is how the LdapTemplate is configured:
***************************
<bean id="contextSource" class="org.springframework.ldap.core.support.LdapC ontextSource">
<property name="url" value="ldap://myLdapServer:389" />
<property name="base" value="o=company1" />
<property name="userDn" value="cn=ldapbind1,o=company1" />
<property name="password" value="ldapbind" />
</bean>
<bean id="ldapTemplate" class="org.springframework.ldap.core.LdapTemplate" >
<constructor-arg ref="contextSource" />
</bean>
***************************
The above configuration works, If I execute my LdapTemplate-code, I get a result with the users of the branch company1, i.e. user1, user2 and ldapbind1.
The following configuration does not work, If I execute my LdapTemplate-code, I always get a "LDAP: error code 49":
org.springframework.ldap.AuthenticationException: [LDAP: error code 49 - Failed, invalid credentials for cn=ldapbind2,o=company2]; Caused by: javax.naming.AuthenticationException: [LDAP: error code 49 - Failed, invalid credentials for cn=ldapbind2,o=company2]
***************************
<bean id="contextSource" class="org.springframework.ldap.core.support.LdapC ontextSource">
<property name="url" value="ldap://myLdapServer:389" />
<property name="base" value="o=company2" />
<property name="userDn" value="cn=ldapbind2,o=company2" />
<property name="password" value="ldapbind" />
</bean>
<bean id="ldapTemplate" class="org.springframework.ldap.core.LdapTemplate" >
<constructor-arg ref="contextSource" />
</bean>
***************************
I tried this many, many, many times and I am sure, that the credentials are the right ones, also:
If I use a LDAP-Browser I can see the users of the LDAP-branch company1 using the bind-user "ldapbind1" and the base "o=company1". I am also able to see the users of the LDAP-branch company2 using the bind-user "ldapbind2" and the base "o=company2".
And also, I coded these two lookups directly with JNDI without Spring and everything works like a charm. So, I assume I'm using Spring-Template the wrong way or I've encountered a bug here.
Any idea, how I can track down this problem?
Best Regards, Mickey
Reply With Quote