我在Windows 2008 R2上安装了MS Active Directory。我在默认组默认的用户组下创建了两个Admins and Devs组。我在Admins组中添加了两个具有管理员权限的用户和一个Devs组中的一个用户。我正在尝试使用admininstrator用户'kishank'登录,但我收到以下错误:
[LDAP:错误代码49 - 80090308:LdapErr:DSID-0C0903A9,评论:AcceptSecurityContext错误,数据52e,v1db1]
我搜索了此错误,其中显示无效的用户或密码。这是链接:It gives description about error code 49 DSID 0C0903A9. It says that the error only occurs on MS AD servers.
我还读过某个地方,我应该取消选中“密码永不过期”复选框,但没有运气。
我的配置文件如下:
applicationContext-security-ldap.properties
contextSource.providerUrl=ldap\://host:port/cn=Users,dc=domain,dc=com
contextSource.userDn=domain\kishank
contextSource.password=pass
userSearch.searchBase=CN=Users,DC=domain,DC=com
userSearch.searchFilter=(sAMAccountName={0})
populator.convertToUpperCase=false
populator.groupRoleAttribute=cn
populator.groupSearchBase=cn=Devs,cn=Users,dc=domain,dc=com
populator.groupSearchFilter=(memberof:1.2.840.113556.1.4.1941:=({0}))
populator.rolePrefix=
populator.searchSubtree=true
allAuthoritiesSearch.roleAttribute=cn
allAuthoritiesSearch.searchBase=cn=Devs,cn=Users,dc=domain,dc=com
allAuthoritiesSearch.searchFilter=(objectClass=group)
allUsernamesSearch.usernameAttribute=sAMAccountName
allUsernamesSearch.searchBase=cn=Devs,cn=Users,dc=domain,dc=com
allUsernamesSearch.searchFilter=objectClass=person
adminRole=cn=Admins,cn=Users,dc=domain,dc=com
adminUser=sAMAccountName=kishank,cn=Users
repository.spring
singleTenantAdminDefaultUserName=kishank
singleTenantAdminUserName=kishank
singleTenantAdminDefaultAuthorityName=Administrator
singleTenantAdminAuthorityName=Administrator
repositoryAdminUsername=pentahoRepoAdmin
singleTenantAuthenticatedAuthorityName=Devs
singleTenantAnonymousAuthorityName=Anonymous
superAdminAuthorityName=SysAdmin
superAdminUserName=super
systemTenantAdminUserName=system
systemTenantAdminPassword=cGFzc3dvcmQ=