在租户下创建用户。我甚至可以在ldap中看到我的用户。 但是当我尝试通过IS管理控制台登录时登录失败。 启用用户日志后显示的错误是:
TID: [0] [IS] [2015-04-30 06:51:49,527] DEBUG {org.wso2.carbon.user.core.ldap.ReadOnlyLDAPUserStoreManager} - Authenticating with uid=due@due.com,ou=wso2,ou=system {org.wso2.carbon.user.core.ldap.ReadOnlyLDAPUserStoreManager}
TID: [0] [IS] [2015-04-30 06:51:49,538] DEBUG {org.wso2.carbon.user.core.ldap.ReadOnlyLDAPUserStoreManager} - Authentication failed javax.naming.AuthenticationException: [LDAP: error code 49 - INVALID_CREDENTIALS: Bind failed: Attempt to lookup non-existant entry: uid=due@due.com,ou=wso2,ou=system:
org.apache.directory.api.ldap.model.exception.LdapNoSuchObjectException: Attempt to lookup non-existant entry: uid=due@due.com,ou=wso2,ou=system
at org.apache.directory.server.core.shared.partition.DefaultPartitionNexus.lookup(DefaultPartitionNexus.java:459)
at org.apache.directory.server.core.authn.AuthenticationInterceptor.bind(AuthenticationInterceptor.java:516)
at org.apache.directory.server.core.DefaultOperationManager.bind(DefaultOperationManager.java:439)
at org.apache.directory.server.ldap.handlers.request.BindRequestHandler.handleSimpleAuth(BindRequestHandler.java:178)
at org.apache.directory.server.ldap.handlers.request.BindRequestHandler.handle(BindRequestHandler.java:625)
at org.apache.directory.server.ldap.handlers.request.BindRequestHandler.handle(BindRequestHandler.java:66)
at org.apache.directory.server.ldap.handlers.LdapRequestHandler.handleMessage(LdapRequestHandler.java:193)
at org.apache.directory.server.ldap.handlers.LdapRequestHandler.handleMessage(LdapRequestHandler.java:56)
at org.apache.mina.handler.demux.DemuxingIoHandler.messageReceived(DemuxingIoHandler.java:221)
at org.apache.directory.server.ldap.LdapProtocolHandler.messageReceived(LdapProtocolHandler.java:217)
at org.apache.mina.core.filterchain.DefaultIoFilterChain$TailFilter.messageReceived(DefaultIoFilterChain.java:690)
at org.apache.mina.core.filterchain.DefaultIoFilterChain.callNextMessageReceived(DefaultIoFilterChain.java:417)
at org.apache.mina.core.filterchain.DefaultIoFilterChain.access$1200(DefaultIoFilterChain.java:47)
at org.apache.mina.core.filterchain.DefaultIoFilterChain$EntryImpl$1.messageReceived(DefaultIoFilterChain.java:765)
at org.apache.mina.core.filterchain.IoFilterEvent.fire(IoFilterEvent.java:74)
at org.apache.mina.core.session.IoEvent.run(IoEvent.java:63)
at org.apache.mina.filter.executor.UnorderedThreadPoolExecutor$Worker.runTask(UnorderedThreadPoolExecutor.java:474)
at org.apache.mina.filter.executor.UnorderedThreadPoolExecutor$Worker.run(UnorderedThreadPoolExecutor.java:428)
at java.lang.Thread.run(Thread.java:745)
BindRequest =
MessageType : BIND_REQUEST
Message ID : 1
BindRequest
Version : '3'
Name : 'uid=due@due.com,ou=wso2,ou=system'
Simple authentication : 'Due@123/0x44 0x75 0x65 0x40 0x31 0x32 0x33 '
] {org.wso2.carbon.user.core.ldap.ReadOnlyLDAPUserStoreManager}
答案 0 :(得分:0)
请检查日志..它说uid=due@due.com,ou=wso2,ou=system
。通常,在创建租户时,会在LDAP中创建单独的OU。在这个OU中,必须有用户。似乎WSO2IS尝试使用无效的OU验证用户身份。请验证您如何创建租户和用户..这必须是您的环境特定的内容。如果您采用新的WSO2IS,这将正常工作。您可以通过启用user.core调试日志来进行一些调试。然后你可以得到更多的想法,找出哪个可能是问题的根本原因。
log4j.logger.org.wso2.carbon.user.core = DEBUG
您可以将上面的内容添加到log4j.properties
文件中,然后重新启动服务器并查看。