Error whilst connecting to LDAP (Microsoft Active Directory)

Hi All,

i was trying to create LDAP(Microsoft Directory) sever for usermanagement in MWS 8.0 version,in My webmethods–>System settings–>Directory services

below are connection details

Directory Service Name (required) : LADConnection
Description:
Keywords:
(separate keywords with commas)
Cache:
Cache Capacity (required) :1000
Cache Timeout (required) :1 day

Service Enabled : Yes. This service is enabled
Error Threshold (required) :10
Provider URL (required) :ldap://localhost:389
Base DN (required) :OU=Rechtengroepen,DC=ccs,DC=nl
Groups DN :
User DN :
Security Principal (required) :OU=Rechtengroepen,DC=ccs,DC=
Security Credentials (required) :
Enable Default Wildcard Searches (required) :Yes. Enable default wildcard searches Enable Group Across Directory Service :Yes. Enable Group Across Directory Service.
User Object Filter:
Group Object Filter:
User Attributes:
User Object Class (required) :person
User ID (required) :uid
Last Name (required) :sn
First Name (required) :givenName
Full Name (required) :cn
E-mail Address (required) :mail
Password (required) :userpassword

Group Attributes:
Group Object Class (required) :Rechtengroepen
Group ID (required) :RG Level-2011
Group Name (required) :RG Level-2011
Group Members (required) :member
static members onlyGroup E-mail (required) :mail

Connection Pool:
Minimum Connections :1
Maximum Connections :10
Maximum Connection Time :10 minutes
Auto Reconnect:

Display :
Full Page View efault
Properties Portlet View efault

PFA For connection Details.

below is the Error am getting in MWS
2010-02-22 09:25:44 CET (Framework:WARN) [RID:195] - [ldap.connect.error] Unable to create ldap connection (error result)
com.webmethods.portal.system.PortalRuntimeException: [ldap.connect.error] Unable to create ldap connection (error result)
at com.webmethods.portal.portlet.wm_xt_ldapdirsvc.service.connection.LdapPooledObjectManager.create(LdapPooledObjectManager.java:89)
at com.webmethods.portal.system.pool.impl.LightweightObjectPool.createNewObject(LightweightObjectPool.java:271)
at com.webmethods.portal.system.pool.impl.LightweightObjectPool.checkOut(LightweightObjectPool.java:241)
at com.webmethods.portal.portlet.wm_xt_ldapdirsvc.service.LdapDirService.checkout(LdapDirService.java:59)
at com.webmethods.portal.portlet.wm_xt_ldapdirsvc.service.LdapDirQueryProvider.search(LdapDirQueryProvider.java:281)
at com.webmethods.portal.portlet.wm_xt_ldapdirsvc.service.LdapDirQueryProvider.lookupByID(LdapDirQueryProvider.java:179)
at com.webmethods.portal.mech.dir.impl.DirSystemMechanics$3.visit(DirSystemMechanics.java:332)
at com.webmethods.portal.mech.dir.impl.DirSystemMechanics.visitDirServices(DirSystemMechanics.java:443)
at com.webmethods.portal.mech.dir.impl.DirSystemMechanics.authenticateUser(DirSystemMechanics.java:330)
at com.webmethods.portal.bizPolicy.command.dir.AuthenticateUser._authenticateUser(AuthenticateUser.java:116)
at com.webmethods.portal.bizPolicy.command.dir.AuthenticateUser.authenticateUser(AuthenticateUser.java:97)
at com.webmethods.portal.bizPolicy.biz.dir.impl.DirSystemBizPolicy.authenticateUser(DirSystemBizPolicy.java:37)
at com.webmethods.portal.framework.session.handlers.Validate.authenticateUser(Validate.java:220)
at com.webmethods.portal.framework.session.handlers.Validate.handle(Validate.java:145)
at com.webmethods.portal.framework.session.SessionManager.handleSession(SessionManager.java:189)
at com.webmethods.portal.framework.dispatch.DispatchManager.initSession(DispatchManager.java:660)
at com.webmethods.portal.framework.dispatch.DispatchManager.handleDispatch(DispatchManager.java:336)
at com.webmethods.portal.framework.impl.PortalServlet.service(PortalServlet.java:245)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:820)
at org.mortbay.jetty.servlet.ServletHolder.handle(ServletHolder.java:487)
at org.mortbay.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.java:1093)
at com.webmethods.portal.framework.impl.NTLMFilter.doFilter(NTLMFilter.java:50)
at org.mortbay.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.java:1084)
at com.webmethods.caf.faces.servlet.GZIPFilter.doFilter(GZIPFilter.java:42)
at org.mortbay.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.java:1084)
at org.mortbay.jetty.servlet.ServletHandler.handle(ServletHandler.java:360)
at org.mortbay.jetty.security.SecurityHandler.handle(SecurityHandler.java:216)
at org.mortbay.jetty.servlet.SessionHandler.handle(SessionHandler.java:181)
at org.mortbay.jetty.handler.ContextHandler.handle(ContextHandler.java:726)
at org.mortbay.jetty.webapp.WebAppContext.handle(WebAppContext.java:405)
at org.mortbay.jetty.handler.ContextHandlerCollection.handle(ContextHandlerCollection.java:206)
at org.mortbay.jetty.handler.HandlerCollection.handle(HandlerCollection.java:114)
at org.mortbay.jetty.handler.HandlerWrapper.handle(HandlerWrapper.java:139)
at org.mortbay.jetty.Server.handle(Server.java:324)
at org.mortbay.jetty.HttpConnection.handleRequest(HttpConnection.java:505)
at org.mortbay.jetty.HttpConnection$RequestHandler.content(HttpConnection.java:842)
at org.mortbay.jetty.HttpParser.parseNext(HttpParser.java:648)
at org.mortbay.jetty.HttpParser.parseAvailable(HttpParser.java:211)
at org.mortbay.jetty.HttpConnection.handle(HttpConnection.java:380)
at org.mortbay.io.nio.SelectChannelEndPoint.run(SelectChannelEndPoint.java:395)
at org.mortbay.thread.BoundedThreadPool$PoolThread.run(BoundedThreadPool.java:450)

Regards,
anil kumar e

Try the following steps

  • To resolve this issue, add the ldap server certificate to the /Portal/server/default/config/glue/glueTrustStore.jks certificate store. Run the following command to add the certificate to the store.

<wm_java_home>/bin/keytool -import -keystore /Portal/server/default/config/glue/glueTrustStore.jks -file path/to/ldapcert -alias anyaliasyoulike

Restart MWS.

This should help.

Hi,

is this documented somewhere in the SAG Documentation, or does everyone facing this issue has to figure it out by itself when searching and finding this thread?

Regards,
Holger

Addendum:

BTW:
This solution described here applies also to newer versions (incl. the most reccent ones) with the difference that the path has a changed a little bit:

<wm_java_home>/bin/keytool -import -keystore /MWS/server/default/config/glue/glueTrustStore.jks -file path/to/ldapcert -alias anyaliasyoulike

Regards,
Holger