堆栈内存溢出
  简体   繁体   English

对 LDAP 进行身份验证时出现 UserSearchFilter&managerDn 问题

[英]UserSearchFilter&managerDn issue when authenticating to LDAP

 原文  2021-11-22 15:48:55       spring-boot/ spring-security/ spring-ldap

问题描述

I'm trying to connect the LDAP using the following code:我正在尝试使用以下代码连接 LDAP:

        <dependency>
            <groupId>org.springframework.boot</groupId>
            <artifactId>spring-boot-starter-security</artifactId>
            <version>2.5.4</version>
        </dependency>
        <dependency>
            <groupId>org.springframework.boot</groupId>
            <artifactId>spring-boot-starter-data-ldap</artifactId>
            <version>2.5.4</version>
        </dependency>


auth.ldapAuthentication()
            .groupSearchBase("ou=groups")
            .contextSource()
            .managerDn("CN=someValidLogin,OU=UsersGeneric,OU=IT,OU=Penzberg,OU=AdminUnits,DC=emea,DC=rr,DC=com")
            .managerPassword("someValidPassword")
            .url("ldap://abc.def.ghi.com:3268/DC=emea,DC=rr,DC=com")
            .and()
            .userSearchFilter("(&(sAMAccountName={0})(objectClass=user)(objectCategory=person)(memberOf=CN=TEST_DEVELOPER,OU=Applications,OU=Groups,DC=emea,DC=rr,DC=com))")
            .passwordCompare()
            .passwordAttribute("userpassword");

Unfortunately, after typing my correct credentials in the swagger I'm getting the response:不幸的是,在 swagger 中输入我正确的凭据后,我得到了响应:

[LDAP: error code 16 - 00000057: LdapErr: DSID-0C091146, comment: Error in attribute conversion operation, data 0, v3839]; nested exception is javax.naming.directory.NoSuchAttributeException: [LDAP: error code 16 - 00000057: LdapErr: DSID-0C091146, comment: Error in attribute conversion operation, data 0, v3839]; remaining name ‘CN=loginThatIPassedViaSwagger,OU=Users,OU=IT,OU=Warsaw,OU=AdminUnits’

Likely, I mixed something with managerDn and userSearchFilter, but I cannot figure out what?可能,我将一些东西与 managerDn 和 userSearchFilter 混合在一起,但我不知道是什么?

1 个解决方案

解决方案1
 0  2021-11-25 22:10:16

After many attempts, I have figured out that the following works:经过多次尝试,我发现以下工作:

        auth.ldapAuthentication()
        .groupSearchBase("")
        .contextSource()
        .managerDn("CN=someValidLogin,OU=UsersGeneric,OU=IT,OU=Penzberg,OU=AdminUnits,DC=emea,DC=rr,DC=com")
        .managerPassword("someValidPassword")
        .url("ldap://abc.def.ghi.com:3268")
        .and()
        .userSearchBase("")
        .userSearchFilter(
                "(&(sAMAccountName={0})(objectClass=user)(objectCategory=person)(|(memberOf:1.2.333.12345.1.4.1941:=CN=TEST_DEVELOPER,OU=Applications,OU=Groups,DC=emea,DC=rr,DC=com)))");

暂无
暂无

声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.

相关问题 Spring 问题引导指南 - 使用 LDAP 验证用户 - Issue with Spring Boot Guide - Authenticating a User with LDAP 通过 LDAP 存储库对 LDAP 进行身份验证 - Authenticating LDAP via LDAP Repository 使用LDAP和spring LDAP API进行身份验证,而不使用spring安全性 - Authenticating using LDAP with spring LDAP API and without using spring security 向Linkedin进行身份验证时出现SSLHandshakeException - SSLHandshakeException when authenticating with Linkedin 在Spring Boot中使用LDAP进行身份验证时出错,原因:[LDAP:错误代码50-访问权限不足] - Error authenticating with LDAP in Spring Boot Reason: [LDAP: error code 50 - Insufficient Access Rights] 身份验证时出现 415 错误 - Spring 引导和 RestTemplate - 415 Error when authenticating - Spring boot and RestTemplate 通过 Spring security ldap 对用户进行身份验证时未授予任何权限错误 - Not granted any authorities error while authenticating user via Spring security ldap 使用@CrossOrigin 时,Spring Boot 安全性未通过身份验证 - Spring boot security not authenticating when using @CrossOrigin Spring-Boot OAuth2 使用 Twitch 进行身份验证时的奇怪行为 - Spring-Boot OAuth2 Strange Behavior When Authenticating with Twitch Spring-boot 使用 OAuth2 时应用程序未进行身份验证(更新 #2) - Spring-boot application not authenticating when using OAuth2 (updated #2)
相关标签
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM