Hyland Connect

chakri408 · ‎07-13-2017

Hi - We have configured Ldap authentication for our activity cluster 1.6. When I try to login it spew following error (Debug enabled)

05:58:55,490 [http-nio-8443-exec-3] DEBUG com.activiti.web.CustomUsernamePasswordAuthenticationFilter - Request is to process authentication
05:58:55,491 [http-nio-8443-exec-3] DEBUG com.activti.idm.ldap.auth.ActivitiActiveDirectoryAuthenticationProvider - Processing authentication request for user: Alfr.User
05:58:55,651 [http-nio-8443-exec-3] DEBUG com.activiti.web.CustomUsernamePasswordAuthenticationFilter - Authentication request failed: org.springframework.security.authentication.BadCredentialsException: Bad credentials
05:58:55,652 [http-nio-8443-exec-3] DEBUG com.activiti.web.CustomUsernamePasswordAuthenticationFilter - Updated SecurityContextHolder to contain null Authentication
05:58:55,652 [http-nio-8443-exec-3] DEBUG com.activiti.web.CustomUsernamePasswordAuthenticationFilter - Delegating to authentication failure handler com.activiti.security.AjaxAuthenticationFailureHandler@779d13e9
05:58:55,652 [http-nio-8443-exec-3] DEBUG com.activiti.security.CustomPersistentRememberMeServices - Interactive login attempt was unsuccessful.
05:58:56,460 [Thread-8] DEBUG org.activiti.engine.impl.asyncexecutor.AcquireAsyncJobsDueRunnable - async job acquisition thread woke up

From mysql Db, I can see the user name exist.

mysql> select * from USERS where first_name like '%Alfr%'
    -> ;
+------+-----------+------------+-------------+------------------------------------+---------+----------------------------+--------+--------------+-----------+------------------+----------------------------+----------------------+----------------------------+---------------------------+---------------------------------------------------------------------------------------+------------------+
| id   | pass_word | first_name | last_name   | email                              | company | created                    | status | account_type | tenant_id | picture_image_id | last_update                | external_id          | last_sync_timestamp        | last_sync_timestamp_epoch | external_original_src                                                                 | primary_group_id |
+------+-----------+------------+-------------+------------------------------------+---------+----------------------------+--------+--------------+-----------+------------------+----------------------------+----------------------+----------------------------+---------------------------+---------------------------------------------------------------------------------------+------------------+
| 1464 | NULL      | Alfr | User | Alfr.User@xxxx.com | NULL    | 2017-07-13 05:40:00.471000 |      2 |            1 |         1 |             NULL | 2017-07-13 05:47:31.850000 | Alfr.User | 2017-07-03 18:16:49.000000 |             1499105809000 | CN=Alfr User,OU=Corporate,OU=Standard,OU=People,DC=corp,DC=xxxx,DC=ad |             NULL |
+------+-----------+------------+-------------+------------------------------------+---------+----------------------------+--------+--------------+-----------+------------------+----------------------------+----------------------+----------------------------+---------------------------+---------------------------------------------------------------------------------------+------------------+
1 row in set (0.00 sec)

cjose · ‎07-18-2017

Hi there,

From the logs it looks like you are using Alfresco Process Services. Hope you have configured the AD properties correctly as explained in External Identity Management (LDAP/Active Directory) | Alfresco Documentation. Without examining your configurations it is really difficult to provide a solution. I would suggest raising a case with the Alfresco Support team for a quicker resolution of this issue.

Ciju

Hyland Connect

Password authentication failure - Ldap configured