All,
My first time configuring OpenKM, (before you read into this, yes I did try searching the forum for answers, but no cake here) I would appreciate the help. The error I receive is
********** ERROR /******
if I'm not Mistaken code 49 is a bind error, but I did a bind test with the LDP application on the domain controller and was able to bind it successfully and browse the users.
The windows server is also on the DOMAIN.
********** My Active Directory
(here I have 2 security groups for admin, and users)
My users are split into the following
****** My current configuration
Andre
My first time configuring OpenKM, (before you read into this, yes I did try searching the forum for answers, but no cake here) I would appreciate the help. The error I receive is
********** ERROR /******
Code: Select all
********** EXTRA INFO2018-03-08 14:30:00,847 [Thread-16] ERROR c.o.principal.LdapPrincipalAdapter - NamingException: [LDAP: error code 49 - 80090308: LdapErr: DSID-0C09042A, comment: AcceptSecurityContext error, data 52e, v3839 ] (Cache: com.openkm.cache.ldapPrincipalAdapter.general - Key: getUsers - Base: [DC=BDB,DC=local] - Filter: (&(objectclass=user)(|(memberOf=CN=ROLE_ADMIN,OU=OpenKM,DC=BDB,DC=local)(memberOf=CN=ROLE_USER,OU=OpenKM,DC=BDB,DC=local))) - Attribute: sAMAccountName)
2018-03-08 14:30:00,847 [Thread-16] WARN com.openkm.core.Cron - Crontab task mail address is empty: Return: null
if I'm not Mistaken code 49 is a bind error, but I did a bind test with the LDP application on the domain controller and was able to bind it successfully and browse the users.
The windows server is also on the DOMAIN.
********** My Active Directory
Code: Select all
(the user openkmldap is also in this OU)OU=OpenKM,DC=BDB,DC=local
(here I have 2 security groups for admin, and users)
My users are split into the following
Code: Select all
OU=Clinical Users,OU=OTDBC,DC=BDB,DC=local
OU=Non Clinical Users,OU=OTDBC,DC=BDB,DC=local
****** My current configuration
Code: Select all
Field / Property Type Description
principal.adapter String com.openkm.principal.LdapPrincipalAdapter
system.login.lowercase String TRUE
principal.ldap.server String ldap://ReadOnlyDC:389
principal.ldap.security.principal String CN=openkmladp,OU=OPENKM,DC=BDB,DC=local
principal.ldap.security.credentials String [password]
principal.ldap.referral String follow
principal.ldap.users.from.roles Boolean FALSE
principal.ldap.user.attribute String sAMAccountName
principal.ldap.user.search.base List DC=BDB,DC=local
principal.ldap.user.search.filter String (&(objectclass=user)(|(memberOf=CN=ROLE_ADMIN,OU=OpenKM,DC=BDB,DC=local)(memberOf=CN=ROLE_USER,OU=OpenKM,DC=BDB,DC=local)))
principal.ldap.username.attribute String cn
principal.ldap.username.search.base String DC=BDB,DC=local
principal.ldap.username.search.filter String (&(objectClass=person)(sAMAccountName={0}))
principal.ldap.mail.attribute String userPrincipalName
principal.ldap.mail.search.base String DC=BDB,DC=local
principal.ldap.mail.search.filter String (&(objectClass=person)(sAMAccountName={0}))
principal.ldap.role.attribute String cn
principal.ldap.role.search.base List DC=BDB,DC=local
principal.ldap.role.search.filter String (objectclass=group)
principal.ldap.roles.by.user.attribute String memberOf
principal.ldap.roles.by.user.search.base String DC=BDB,DC=local
principal.ldap.roles.by.user.search.filter String (&(objectClass=person)(sAMAccountName={0}))
principal.ldap.users.by.role.attribute String member
principal.ldap.users.by.role.search.base String OU=OpenKM,DC=BDB,DC=local
principal.ldap.users.by.role.search.filter String (&(objectClass=group)(cn={0}))
Andre