I'm making the switch from
Hudson's user database to the corporate LDAP server, and I'm
running into trouble. The server allows anonymous binding, and it
uses SSL; so I just put in
https://server.name and let
Hudson fill in the other fields. It ended up with "root DN:
o=internet" and "User search filter: uid={0}". When I try to log
in with my LDAP credentials, I get this in the Hudson log:
Nov 19, 2010 3:23:13 PM
hudson.security.AuthenticationProcessingFilter2
onUnsuccessfulAuthentication
INFO: Login attempt failed
org.acegisecurity.BadCredentialsException: Bad credentials
at
org.acegisecurity.providers.dao.AbstractUserDetailsAuthenticationProvider.authenticate(AbstractUserDetailsAuthenticationProvider.java:122)
at
org.acegisecurity.providers.ProviderManager.doAuthentication(ProviderManager.java:195)
at
org.acegisecurity.AbstractAuthenticationManager.authenticate(AbstractAuthenticationManager.java:45)
at
org.acegisecurity.ui.webapp.AuthenticationProcessingFilter.attemptAuthentication(AuthenticationProcessingFilter.java:71)
at
org.acegisecurity.ui.AbstractProcessingFilter.doFilter(AbstractProcessingFilter.java:252)
at
hudson.security.ChainedServletFilter$1.doFilter(ChainedServletFilter.java:87)
at
org.acegisecurity.ui.basicauth.BasicProcessingFilter.doFilter(BasicProcessingFilter.java:173)
at
hudson.security.ChainedServletFilter$1.doFilter(ChainedServletFilter.java:87)
at
org.acegisecurity.context.HttpSessionContextIntegrationFilter.doFilter(HttpSessionContextIntegrationFilter.java:249)
at
hudson.security.HttpSessionContextIntegrationFilter2.doFilter(HttpSessionContextIntegrationFilter2.java:66)
at
hudson.security.ChainedServletFilter$1.doFilter(ChainedServletFilter.java:87)
at
hudson.security.ChainedServletFilter.doFilter(ChainedServletFilter.java:76)
at
hudson.security.HudsonFilter.doFilter(HudsonFilter.java:164)
at
winstone.FilterConfiguration.execute(FilterConfiguration.java:195)
at
winstone.RequestDispatcher.doFilter(RequestDispatcher.java:368)
at
winstone.RequestDispatcher.forward(RequestDispatcher.java:333)
at
winstone.RequestHandlerThread.processRequest(RequestHandlerThread.java:244)
at
winstone.RequestHandlerThread.run(RequestHandlerThread.java:150)
at java.lang.Thread.run(Unknown Source)
That seems to indicate I'm using the wrong username/password, but
I've verified that combo works with other services that
authenticate against this LDAP server. I have very little
experience with LDAP in general, so I'm hoping somebody here can
point me at how to debug this sort of thing.
Chris