Details
-
Bug
-
Resolution: Fixed
-
Medium
-
None
-
3.0.2
-
3
-
Description
Cannot authenticate user in Lotus Domino server even LDAP browsers can (parameters validity checked).
LDAP Configurator states:
"Initial connect and search successful, but second phase connection to LDAP as '<cut-off>' failed (error: javax.naming.CommunicationException: Request: 4 cancelled; remaining name '<cut-off>'. More in logs)"
Logs states:
2004-11-19 14:33:57,662 INFO [web.action.util.LDAPConfigurer] javax.naming.Commu
nicationException: Request: 4 cancelled; remaining name '<cut-off>'
javax.naming.CommunicationException: Request: 4 cancelled; remaining name '<cut-off>'
at com.sun.jndi.ldap.LdapRequest.getReplyBer(LdapRequest.java:60)
at com.sun.jndi.ldap.Connection.readReply(Connection.java:405)
at com.sun.jndi.ldap.LdapClient.ldapBind(LdapClient.java:340)
at com.sun.jndi.ldap.LdapClient.authenticate(LdapClient.java:193)
at com.sun.jndi.ldap.LdapCtx.connect(LdapCtx.java:2640)
at com.sun.jndi.ldap.LdapCtx.ensureOpen(LdapCtx.java:2549)
at com.sun.jndi.ldap.LdapCtx.ensureOpen(LdapCtx.java:2523)
at com.sun.jndi.ldap.LdapCtx.compare(LdapCtx.java:2075)
at com.sun.jndi.ldap.LdapCtx.searchAux(LdapCtx.java:1804)
at com.sun.jndi.ldap.LdapCtx.c_search(LdapCtx.java:1734)
at com.sun.jndi.toolkit.ctx.ComponentDirContext.p_search(ComponentDirCon
text.java:368)
...
This is known Domino problem - two phase LDAP querying requires reconnecion (see: https://list.unm.edu/cgi-bin/wa?A2=ind0311&L=jasig-portal&F=&S=&P=21622)
LDAP libraries could be LDAP-vendor sensible, provided third party library license allows it.