Uploaded image for project: 'Crowd Data Center'
  1. Crowd Data Center
  2. CWD-5798

Unable to add groups to LDAP directory through Crowd UI for Generic Directory Server type

    XMLWordPrintable

Details

    • Bug
    • Resolution: Duplicate
    • Low
    • None
    • 4.2.3, 4.4.0
    • Directory - LDAP
    • None

    Description

      Issue Summary

      Cannot add group in Crowd UI for the Generic Directory Server type.

      Environment

      Steps to Reproduce

      1. Install Crowd
      2. Integrate Crowd to an external LDAP using the Generic Directory Server
        • The specific ones to replicate this issue are Red Hat Directory Server (RHDS) or 389 Directory Server
      3. Confirm that the User Directory syncs successfully with the LDAP directory
      4. Now add a Group on Crowd UI for the above User Directory and it will fail

      Expected Results

      • The new Group is created on the LDAP directory side and return a success on Crowd UI

      Actual Results

      Error on Crowd UI:

      Error in Crowd logs:

      2022-04-23 15:33:18,833 http-nio-8095-exec-10 ERROR [console.action.group.AddGroup] [LDAP: error code 21 - uniqueMember: value #0 invalid per syntax
]; nested exception is javax.naming.directory.InvalidAttributeValueException: [LDAP: error code 21 - uniqueMember: value #0 invalid per syntax
]; remaining name 'cn=testgroup2,ou=Groups,dc=elcentos,dc=local'
com.atlassian.crowd.exception.InvalidGroupException: [LDAP: error code 21 - uniqueMember: value #0 invalid per syntax
]; nested exception is javax.naming.directory.InvalidAttributeValueException: [LDAP: error code 21 - uniqueMember: value #0 invalid per syntax
]; remaining name 'cn=testgroup2,ou=Groups,dc=elcentos,dc=local'
	at com.atlassian.crowd.directory.SpringLDAPConnector.addGroup(SpringLDAPConnector.java:1211)
	at com.atlassian.crowd.directory.DbCachingRemoteDirectory.addGroup(DbCachingRemoteDirectory.java:735)
	at com.atlassian.crowd.manager.directory.DirectoryManagerGeneric.addGroup(DirectoryManagerGeneric.java:529)
	at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
...

      The group is not created in the remote LDAP directory

      Workaround

      Create the Group on the remote LDAP directory and sync the group into Crowd.

      Attachments

        Issue Links

          duplicates

          Suggestion - CWD-4680 When creating a group, require at least one member of the group that is not null if the directory type requires it

          • Under Consideration

          Activity

            People

              Unassigned Unassigned
              hlam@atlassian.com Eric Lam
              Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: