Good day all,
I recently created the connection between ARIS 10.04 and LDAP. The import of the names into ARIS UMC was successful. However, when I try to login using LDAP account details, the login fails.
I logged into UMC, checked that the user have a licence, but when I sync the user with LDAP, the username is removed from the UMC. When selecting users and importing LDAP, the username is imported successfully, but still can't login using the ldap user account information. The user's history also shows login failed.
I presume the problem lies with the authentication, but can not be sure. Anything I should look out for ?
Thanks,
Willem Engelbrecht
Hi André,
I got the following from the LDAP log file:
2019-01-18 09:10:33,138|ERROR|umcbundle0000000000|||0000000054|Tomcat-ajp-16|LdapSimpleContext - Failed to query LDAP: [LDAP: error code 32 - 0000208D: NameErr: DSID-03100238, problem 2001 (NO_OBJECT), data 0, best match of:
'DC=net0,DC=ad'
]
2019-01-28 13:52:46,459|ERROR|umcbundle0000000000|||0000000036|Tomcat-ajp-11|LdapSimpleContext - Failed to query LDAP: [LDAP: error code 32 - 0000208D: NameErr: DSID-03100238, problem 2001 (NO_OBJECT), data 0, best match of:
'DC=net0,DC=ad'
]
If you could make sense of this....
Thanks,
Willem
Hi Everyone,
Just some feedback on the LDAP / AD import.
Problem was resolved. Seems the problem was not on the ARIS side, even the filters were correct. Due to the distributed way AD was setup, not all users / user groups were correctly imported when the LDAP Import was started. This caused the sync error. Although all users were imported, not everyone could login.
If you experience similar issues, I would suggest you get 2 - 3 other users to try to login as well to get the correct results. The log files would also be more complete when sending to SoftwareAG...
Regards,
Willem