stackoom
  简体   繁体   中英

Adding User on LDAP via JNDI (Java) -> NoPermissionError

 原文  2021-12-08 11:49:52       java/ active-directory/ ldap/ jndi

Question

First i want to explain what i want to do and how the code is looking:

I want to add a User via JNDI on my LDAP with JAVA, i added following code:

public void addUser(String firstName, String lastName, String number) throws NamingException {
        Properties initialProperties = new Properties();
        initialProperties.put(Context.INITIAL_CONTEXT_FACTORY, "com.sun.jndi.ldap.LdapCtxFactory");
        initialProperties.put(Context.PROVIDER_URL, "***");
        initialProperties.put(Context.SECURITY_AUTHENTICATION, "simple");
        initialProperties.put(Context.SECURITY_PRINCIPAL, "***");
        initialProperties.put(Context.SECURITY_CREDENTIALS, "***");
        DirContext context = new InitialDirContext(initialProperties);
        
        BasicAttributes attributes = new BasicAttributes();
        Attribute attribute = new BasicAttribute("objectClass");
        attribute.add("top");
        attribute.add("person");
        attribute.add("organizationalPerson");
        attribute.add("inetOrgPerson");
        Attribute sn = new BasicAttribute("sn");
        Attribute cn = new BasicAttribute("cn");
        sn.add(lastName);
        cn.add(firstName);
        attributes.put(sn);
        attributes.put(cn);
        attributes.put(attribute);
        
        try {
            context.createSubcontext("***", attributes);
        } catch(NamingException e) {
            e.printStackTrace();
        }
    }

When i call the method i get following error:

javax.naming.NoPermissionException: [LDAP: error code 50 - 00000005: SecErr: DSID-031528D2, problem 4003 (INSUFF_ACCESS_RIGHTS), data 0

Which makes no sense in my point of view because i created two other methods, one for getting all the users which works and one for editing a user which works too, so i have the rights to read and write a user, but when i want to create a user it says i have no permission?

Do anyone else had this problem? Is there any configuration on the Administrator user necessary on the LDAP? But the Administrator should be have all rights?

I hope anyone can help me: :)

Greetings,

Fabian.

1 answers

solution1
 0  2021-12-08 21:52:30

so i have the rights to read and write a user, but when i want to create a user it says i have no permission

Read, write and create are 3 separate permissions. A user can have write permissions to existing objects, but not have permission to create a new object. Those permissions can be set differently on each OU.

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question Authenticate on LDAP with current user in JNDI/Java Adding LDAP entries using JNDI Java - jndi ldap slow search java jndi ldap connection timeout How to change LDAP password via JNDI How to retrieve LDAP password via JNDI Updating LDAP encrypted password via JNDI Adding a user to AD LDS (ADAM) with Java and LDAP LDAP user password authentication using JNDI LDAP “simple” User authentication (JNDI - Tomcat) not stable?
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM