Reputation: 1122
LDAP: error code 49 - Simple Bind Failed: NT_STATUS_LOGON_FAILURE
I am trying to authenticate the user but it throws Exception.May be there is problem in configuration.
public class LdapApplication {
private static final String INITIAL_CONTEXT_FACTORY = "com.sun.jndi.ldap.LdapCtxFactory";
private static final String SECURITY_AUTHENTICATION ="simple";
private static final String NAMED_CONTEXT = "CN=Users";
private static final String SAM_ACCOUNT_NAME = "sAMAccountName=";
public static void main(String[] args) {
Hashtable env = new Hashtable();
env.put(Context.INITIAL_CONTEXT_FACTORY,INITIAL_CONTEXT_FACTORY);
env.put(Context.PROVIDER_URL, "ldap://ip:portNo/dc=organisation,dc=in");
env.put(Context.SECURITY_AUTHENTICATION, SECURITY_AUTHENTICATION);
env.put(Context.SECURITY_PRINCIPAL, "cn=userName,cn=Users");
env.put(Context.SECURITY_CREDENTIALS, "password" );
DirContext context = null;
NamingEnumeration namingEnumeration = null;
try {
context = new InitialDirContext(env);
namingEnumeration = context.search(NAMED_CONTEXT, SAM_ACCOUNT_NAME+ userName, null);
while (namingEnumeration.hasMore()) {
SearchResult searchResult = (SearchResult) namingEnumeration.next();
Attributes attributes = searchResult.getAttributes();
System.out.println(" Person Common Name = " + attributes.get("cn"));
System.out.println(" Person Display Name = " + attributes.get("displayName"));
}catch(Exception e){
System.out.println(e.getMessage());
e.printStackTrace();
}
}
} catch (Throwable e) {
e.printStackTrace();
} finally {
if (namingEnumeration != null) {
try {
namingEnumeration.close();
} catch (Exception e) {
}
}
if (context != null) {
try {
context.close();
} catch (Exception e) {
}
}
}
}
}
but if i mention Context.SECURITY_PRINCIPAL as "organisation\\userName" instead of "cn=userName,cn=Users" it works perfectly fine. Kindly suggest a possible solution because my requirement is to give SECURITY_PRINCIPAL something using cn or dc.
Upvotes: 3
Views: 10874
Answers (3)
Reputation: 21
We were having the same issue in our code and we fixed it by adding the domain name before the user name. Instead of entering user:password, enter domain\user:password.
Hope this helps.
Upvotes: 2
Reputation: 11046
To do an LDAP bind you will need to use one of the a Unique return for one of the Ambiguous Name Resolution entries. Normally, one would use the Fully Distinguished name.
We have a JNDI Example showing how this could be done.
-jim
Upvotes: 0
Reputation: 2942
You are using a relative distinguished name which will not work.
Change your code to use
env.put(Context.SECURITY_PRINCIPAL, "cn=userName,cn=Users,dc=organisation,dc=in");
and also change your search context to:
private static final String NAMED_CONTEXT = "CN=Users,dc=organisation,dc=in";
Always use full distinguished names with LDAP.
Upvotes: 2
Related Questions
- LDAP error code 49 AcceptSecurityContext error data 52e v2580 even with the correct credentials
- LDAP: error code 49 - 80090308: LdapErr: DSID-0C09042F, comment: AcceptSecurityContext error, data 52e, v2580
- javax.naming.AuthenticationException: [LDAP: error code 49 - Invalid Credentials]
- LDAP authentication failed:data 52e
- Spring Ldap LDAP: error code 32 - 0000208D
- LDAP: error code 1 - The directory server could not find a network group for the bind dn ""
- JAVA LDAP ERROR javax.naming.NamingException: [LDAP: error code 1 - 000004DC: LdapErr: DSID-0C09075A
- LDAP Authentication with Spring Security throwing LDAP error 49, 52e for any userDn
- Spring LDAP: InvalidNameException: /: [LDAP: error code 34
- Spring ldap authentication failed error codes