IP 10.10.50.15
sub 255.255.0.0
GW 10.10.10.254
DNS 10.1.1.10
10.1.1.10
255.255.255.0
10.1.1.1
IP 10.1.24.99
IP 255.255.255.240
GW 10.1.24.97
DNS 10.1.1.10
The weird part is that if I make a LDAPSearch query on the SCM-server, it works fine?
# ldapsearch -x -h 10.1.1.10 -D "ju...@XXX.loc" -W -b "cn=scm_lookup,ou=XXX DS,ou=Service Accounts,ou=Accounts,ou=resources,ou=intern,ou=XXX,DC=XXX,dc=loc" -s sub "(cn=*)" cn mail sn
Enter LDAP Password:
# extended LDIF
#
# LDAPv3
# base <cn=scm_lookup,ou=XXX DS,ou=Service Accounts,ou=Accounts,ou=resources,ou=intern,ou=XXX,DC=XXX,dc=loc> with scope subtree
# filter: (cn=*)
# requesting: cn mail sn
#
# scm_lookup, XXX DS, Service Accounts, Accounts, Resources, Intern, XXX , XXX
.loc
dn: CN=scm_lookup,OU=XXX DS,OU=Service Accounts,OU=Accounts,OU=Resources,OU=Intern,OU=XXX,DC=XXX,DC=loc
cn: scm_lookup
sn: Manager
# search result
search: 2
result: 0 Success
# numResponses: 2
# numEntries: 1
--
You received this message because you are subscribed to the Google Groups "scmmanager" group.
To unsubscribe from this group and stop receiving emails from it, send an email to scmmanager+...@googlegroups.com.
For more options, visit https://groups.google.com/d/optout.
2015-01-30 08:41:30.219 [qtp62407697-20] TRACE sonia.scm.security.ConfigurableLoginAttemptHandler - LoginAttemptHandler is disabled
2015-01-30 08:41:30.220 [qtp62407697-20] TRACE sonia.scm.web.security.ChainAuthenticatonManager - no authentication result for user julie found in cache
2015-01-30 08:41:30.220 [qtp62407697-20] TRACE sonia.scm.web.security.ChainAuthenticatonManager - start authentication chain for user julie
2015-01-30 08:41:30.221 [qtp62407697-20] TRACE sonia.scm.web.security.ChainAuthenticatonManager - check authenticator class sonia.scm.web.security.DefaultAuthenticationHandler for user julie
2015-01-30 08:41:30.221 [qtp62407697-20] DEBUG sonia.scm.web.security.DefaultAuthenticationHandler - julie is not an xml user
2015-01-30 08:41:30.221 [qtp62407697-20] DEBUG sonia.scm.web.security.ChainAuthenticatonManager - authenticator sonia.scm.web.security.DefaultAuthenticationHandler ends with result, user: null, state: NOT_FOUND
2015-01-30 08:41:30.221 [qtp62407697-20] TRACE sonia.scm.web.security.ChainAuthenticatonManager - check authenticator class sonia.scm.auth.ldap.LDAPAuthenticationHandler for user julie
2015-01-30 08:41:30.223 [qtp62407697-20] DEBUG sonia.scm.auth.ldap.LDAPConnection - create context for dn cn=scm_lookup,ou=MyDomain DS,ou=Service Accounts,ou=Accounts,ou=resources,ou=intern,ou=MyDomain,DC=MyDomain,dc=loc
2015-01-30 08:41:30.223 [qtp62407697-20] DEBUG sonia.scm.auth.ldap.LDAPConnection - use follow as referral strategy
2015-01-30 08:41:30.320 [qtp62407697-20] DEBUG sonia.scm.auth.ldap.LDAPAuthenticationContext - using scope sub for user search
2015-01-30 08:41:30.320 [qtp62407697-20] DEBUG sonia.scm.auth.ldap.LDAPAuthenticationContext - search-filter for user search: (&(objectClass=Person)(sAMAccountName=julie))
2015-01-30 08:41:30.320 [qtp62407697-20] DEBUG sonia.scm.auth.ldap.LDAPAuthenticationContext - no prefix for user defined, using basedn for search
2015-01-30 08:41:30.320 [qtp62407697-20] DEBUG sonia.scm.auth.ldap.LDAPAuthenticationContext - search base for user search: dc=MyDomain,dc=loc
2015-01-30 08:41:30.326 [qtp62407697-20] DEBUG sonia.scm.auth.ldap.LDAPConnection - create context for dn CN=Julie tester,OU=IT Misc Users,OU=IT Specials,OU=NSB,OU=Users,OU=Intern,OU=MyDomain,DC=MyDomain,DC=loc
2015-01-30 08:41:30.326 [qtp62407697-20] DEBUG sonia.scm.auth.ldap.LDAPConnection - use follow as referral strategy
2015-01-30 08:41:30.336 [qtp62407697-20] DEBUG sonia.scm.auth.ldap.LDAPAuthenticationContext - user CN=Julie tester,OU=IT Misc Users,OU=IT Specials,OU=NSB,OU=Users,OU=Intern,OU=MyDomain,DC=MyDomain,DC=loc successfully authenticated
2015-01-30 08:41:30.336 [qtp62407697-20] DEBUG sonia.scm.auth.ldap.LDAPUtil - could not find attribute mail
2015-01-30 08:41:30.337 [qtp62407697-20] TRACE sonia.scm.auth.ldap.LDAPAuthenticationContext - succefully created user from from ldap response: User{name=julie, displayName=Julie tester, mail=null, password=(not set), admin=false, type=$
2015-01-30 08:41:30.337 [qtp62407697-20] TRACE sonia.scm.auth.ldap.LDAPAuthenticationContext - try to fetch groups for user julie
2015-01-30 08:41:30.337 [qtp62407697-20] DEBUG sonia.scm.auth.ldap.LDAPAuthenticationContext - search-filter for group search: (&(objectClass=group)(member=CN=Julie tester,OU=IT Misc Users,OU=IT Specials,OU=NSB,OU=Users,OU=Intern,OU=MyDomain$
2015-01-30 08:41:30.337 [qtp62407697-20] DEBUG sonia.scm.auth.ldap.LDAPAuthenticationContext - no prefix for group defined, using basedn for search
2015-01-30 08:41:30.337 [qtp62407697-20] DEBUG sonia.scm.auth.ldap.LDAPAuthenticationContext - search base for group search: dc=MyDomain,dc=loc
2015-01-30 08:41:30.337 [qtp62407697-20] DEBUG sonia.scm.auth.ldap.LDAPAuthenticationContext - search groups for user CN=Julie tester,OU=IT Misc Users,OU=IT Specials,OU=NSB,OU=Users,OU=Intern,OU=MyDomain,DC=MyDomain,DC=loc at dc=MyDomain,dc=loc with f$
2015-01-30 08:41:30.339 [qtp62407697-20] TRACE sonia.scm.auth.ldap.LDAPAuthenticationContext - append group CN=MyDomain DK,OU=MyDomain Groups,OU=Groups,OU=Resources,OU=Intern,OU=MyDomain,DC=MyDomain,DC=loc with name MyDomain DK to user result
2015-01-30 08:54:23.668 [qtp62407697-15] TRACE sonia.scm.web.filter.AutoLoginFilter - user is allready authenticated
2015-01-30 08:54:23.669 [qtp62407697-15] TRACE sonia.scm.web.filter.AutoLoginFilter - user is allready authenticated
2015-01-30 08:54:23.670 [qtp62407697-15] TRACE sonia.scm.security.AuthorizationCollector - retrieve AuthorizationInfo for user scmadmin from cache
2015-01-30 08:54:23.672 [qtp62407697-15] DEBUG sonia.scm.auth.ldap.LDAPConnection - create context for dn cn=scm_lookup,ou=MyDomain DS,ou=Service Accounts,ou=Accounts,ou=resources,ou=intern,ou=MyDomain,DC=MyDomain,dc=loc
2015-01-30 08:54:23.672 [qtp62407697-15] DEBUG sonia.scm.auth.ldap.LDAPConnection - use follow as referral strategy
2015-01-30 08:54:23.680 [qtp62407697-15] DEBUG sonia.scm.auth.ldap.LDAPAuthenticationContext - using scope sub for user search
2015-01-30 08:54:23.680 [qtp62407697-15] DEBUG sonia.scm.auth.ldap.LDAPAuthenticationContext - search-filter for user search: (&(objectClass=Person)(sAMAccountName=julie))
2015-01-30 08:54:23.680 [qtp62407697-15] DEBUG sonia.scm.auth.ldap.LDAPAuthenticationContext - no prefix for user defined, using basedn for search
2015-01-30 08:54:23.680 [qtp62407697-15] DEBUG sonia.scm.auth.ldap.LDAPAuthenticationContext - search base for user search: dc=MyDomain,dc=loc
2015-01-30 08:54:23.682 [qtp62407697-15] DEBUG sonia.scm.auth.ldap.LDAPConnection - create context for dn CN=Julie tester,OU=IT Misc Users,OU=IT Specials,OU=NSB,OU=Users,OU=Intern,OU=MyDomain,DC=MyDomain,DC=loc
2015-01-30 08:54:23.682 [qtp62407697-15] DEBUG sonia.scm.auth.ldap.LDAPConnection - use follow as referral strategy
2015-01-30 08:54:23.691 [qtp62407697-15] DEBUG sonia.scm.auth.ldap.LDAPAuthenticationContext - user CN=Julie tester,OU=IT Misc Users,OU=IT Specials,OU=NSB,OU=Users,OU=Intern,OU=MyDomain,DC=MyDomain,DC=loc successfully authenticated
2015-01-30 08:54:23.691 [qtp62407697-15] DEBUG sonia.scm.auth.ldap.LDAPUtil - could not find attribute mail
2015-01-30 08:54:23.691 [qtp62407697-15] TRACE sonia.scm.auth.ldap.LDAPAuthenticationContext - succefully created user from from ldap response: User{name=julie, displayName=Julie tester, mail=null, password=(not set), admin=false, type=$
2015-01-30 08:54:23.691 [qtp62407697-15] TRACE sonia.scm.auth.ldap.LDAPAuthenticationContext - try to fetch groups for user julie
2015-01-30 08:54:23.691 [qtp62407697-15] DEBUG sonia.scm.auth.ldap.LDAPAuthenticationContext - search-filter for group search: (&(objectClass=group)(member=CN=Julie tester,OU=IT Misc Users,OU=IT Specials,OU=NSB,OU=Users,OU=Intern,OU=MyDomain$
2015-01-30 08:54:23.691 [qtp62407697-15] DEBUG sonia.scm.auth.ldap.LDAPAuthenticationContext - no prefix for group defined, using basedn for search
2015-01-30 08:54:23.691 [qtp62407697-15] DEBUG sonia.scm.auth.ldap.LDAPAuthenticationContext - search base for group search: dc=MyDomain,dc=loc
2015-01-30 08:54:23.691 [qtp62407697-15] DEBUG sonia.scm.auth.ldap.LDAPAuthenticationContext - search groups for user CN=Julie tester,OU=IT Misc Users,OU=IT Specials,OU=NSB,OU=Users,OU=Intern,OU=MyDomain,DC=MyDomain,DC=loc at dc=MyDomain,dc=loc with f$
2015-01-30 08:54:23.895 [qtp62407697-15] TRACE sonia.scm.auth.ldap.LDAPAuthenticationContext - append group CN=MyDomain DK,OU=MyDomain Groups,OU=Groups,OU=Resources,OU=Intern,OU=MyDomain,DC=MyDomain,DC=loc with name MyDomain DK to user result
2015-01-30 09:46:38.974 [qtp1155208113-20] TRACE sonia.scm.auth.ldap.LDAPAuthenticationContext - return authentication result: user: julie, state: SUCCESS
search groups for user CN=julie..... and the rest of the FQDN.
2015-02-05 15:26:21.304 [qtp1218685951-21] DEBUG sonia.scm.auth.ldap.LDAPAuthenticationContext - search groups for user CN=Julie tester,OU=IT Misc Users,OU=IT Specials,OU=NSB,OU=Users,OU=Intern,OU=myDomain,DC=myDomain,DC=loc at dc=myDomain,dc=loc with$2015-02-05 15:26:21.306 [qtp1218685951-21] TRACE sonia.scm.auth.ldap.LDAPAuthenticationContext - append group CN=myDomain DK,OU=myDomain Groups,OU=Groups,OU=Resources,OU=Intern,OU=myDomain,DC=myDomain,DC=loc with name myDomain DK to user result2015-02-05 15:26:21.306 [qtp1218685951-21] TRACE sonia.scm.auth.ldap.LDAPAuthenticationContext - append group CN=IT Drift,OU=IT,OU=myDomain Groups,OU=Groups,OU=Resources,OU=Intern,OU=myDomain,DC=myDomain,DC=loc with name IT Drift to user result2015-02-05 15:26:24.591 [qtp1218685951-21] TRACE sonia.scm.auth.ldap.LDAPAuthenticationContext - try to get groups from group attribute memberOf2015-02-05 15:26:24.591 [qtp1218685951-21] DEBUG sonia.scm.auth.ldap.LDAPAuthenticationContext - append group IT Drift to user result2015-02-05 15:26:24.592 [qtp1218685951-21] DEBUG sonia.scm.auth.ldap.LDAPAuthenticationContext - append group myDomain DK to user result2015-02-05 15:26:24.592 [qtp1218685951-21] TRACE sonia.scm.auth.ldap.LDAPAuthenticationContext - return authentication result: user: julie, state: SUCCESS
ldapsearch -x -h 10.1.1.10 -D "ju...@myDomain.loc" -W -b "CN=Julie tester,OU=IT Misc Users,OU=IT Specials,OU=NSB,OU=Users,OU=Intern,OU=myDomain,DC=myDomain,DC=loc" -s sub "(cn=*)" memberOf
Enter LDAP Password:
# extended LDIF
#
# LDAPv3
# base <CN=Julie tester,OU=IT Misc Users,OU=IT Specials,OU=NSB,OU=Users,OU=Intern,OU=myDomain,DC=myDomain,DC=loc> with scope subtree
# filter: (cn=*)
# requesting: memberOf
#
# Julie tester, IT Misc Users, IT Specials, NSB, Users, Intern, myDomain, myDomain.loc
dn: CN=Julie tester,OU=IT Misc Users,OU=IT Specials,OU=NSB,OU=Users,OU=Intern,OU=myDomain,DC=myDomain,DC=loc
memberOf: CN=MyTest,OU=myDomain,DC=myDomain,DC=loc
memberOf: CN=IT Drift,OU=IT,OU=myDomain Groups,OU=Groups,OU=Resources,OU=Intern,OU=myDomain,DC=myDomain,DC=loc
memberOf: CN=myDomain DK,OU=myDomain Groups,OU=Groups,OU=Resources,OU=Intern,OU=myDomain,DC=myDomain,DC=loc
# search result
search: 2
result: 0 Success