Data Infrastructure Management Software Discussions

Highlighted

Re: First LDAP connection failed then works...

I don't believe the WFA team has a solution yet.

If you want to try what OCI 6.3.3 and higher are doing, backup your login-config.xml file, and then edit it:

<!--  Authenticate and Authrization through database -->

<login-module code="org.jboss.security.auth.spi.DatabaseServerLoginModule" flag="required">

<module-option name="dsJndiName">java:/jboss-mysql-ds</module-option>

<module-option name="principalsQuery">select password from wfa.user where name=? and user_role_type != 'Backup'</module-option>

<module-option name="rolesQuery">select r.ejb_role, 'Roles' from wfa.user u, wfa.user_role_to_ejb_role r where u.name=? and u.user_role_type=r.user_role_type</module-option>

<module-option name="hashAlgorithm">SHA-1</module-option>

<module-option name="hashEncoding">base64</module-option>

<module-option name="unauthenticatedIdentity">guest</module-option>

</login-module>

<!--  Authenticate using LDAP -->

<login-module code="com.netapp.wfa.ldap.LdapLoginModule" flag="sufficient">

<module-option name="daoJndiName">wfa-0.5/LdapUsersDaoImpl/local</module-option>

</login-module>

I think you will find in your existing file, the LDAP section is on top of the through database section. Simply switch the two, so LDAP is tried second. It seems somewhat nonintuitive, but this may be the fix

Highlighted

Re: First LDAP connection failed then works...

We were having the same issue.  What resolved it for us is to use " LDAP server: ldap://<FQDN>"  No specific DC or AD servers.  It seems to work.  I will be testing it multiple users this weekend and next week.

Highlighted

Re: First LDAP connection failed then works...

Hi Shalin,

Have you tried to run it against multiple LDAP servers, i.e. ldap://<FQDN1>, ldap://<FQDN2>?

Thanks,

Sasha

Highlighted

Re: First LDAP connection failed then works...

Hi Ostiguy,

Thank your for this solution proposal.

We've tried this solution with number of customers, but unfortunately it does not help.

Thanks,

Sasha

Highlighted

Re: First LDAP connection failed then works...

Hi Craig,

We are trying to fix this issue, but unfortunately we are unable to reproduce it in our lab.

Please contact me if you would like to try custom version that will help us find the problem?

My mail is korman at netapp.com

Thanks,

Sasha

WFA Team

Highlighted

Re: First LDAP connection failed then works...

Hi everyone,

Just to tie some loose ends on this topic:

This issue has been treated and will be solved in our upcoming release, due to be released later this year.

Many thanks to all the contributors to understanding and solving this issue!!!

Highlighted

Re: First LDAP connection failed then works...

Hi,

Probably misunderstanding, the fix will be released only end of year?

It's very anoying.

Regards,

francois

Highlighted

Re: First LDAP connection failed then works...

No Francois,

Not end of year, just later this year

Sasha

Highlighted

Re: First LDAP connection failed then works...

Thank you for following up on this!

Try the NEW Knowledgebase!
NetApp KB Site
Forums