Uploaded image for project: 'Application Server 7'
  1. Application Server 7
  2. AS7-3197

username-attribute may not be null in ldap security realm

    XMLWordPrintable

Details

    • Bug
    • Resolution: Done
    • Major
    • 7.1.0.Final
    • 7.1.0.CR1
    • Security
    • None

    Description

      I tried the new JBoss 7.1 CR1 and get a strange error with this configuration that used to work in Beta1b:

       
    <management>
        <security-realms>
            <security-realm name="PropertiesMgmtSecurityRealm">
                <authentication>
                    <properties path="mgmt-users.properties" relative-to="jboss.server.config.dir" />
                </authentication>
            </security-realm>
            <security-realm name="LDAPMgmtSecurityRealm">
                <authentication>
                    <ldap connection="ldap_connection" recursive="true" base-dn="OU=yellow-Acc,DC=uyellow,DC=yellowcorp,DC=test">
                        <advanced-filter filter="(&(sAMAccountName={0})(memberOf=CN=AJBOSSSUPER,OU=Groups,OU=yellow-Acc,DC=uyellow,DC=yellowcorp,DC=test))" />
                    </ldap>
                </authentication>
            </security-realm>
        </security-realms>
        <outbound-connections>
            <ldap name="ldap_connection" url=//addc01.uyellow.yellowcorp.test" search-dn="CN=User,OU=Service-Accounts,OU=yellow-Acc,DC=uyellow,DC=yellowcorp,DC=test"
                search-credential="pw" />
        </outbound-connections>
        <management-interfaces>
            <native-interface security-realm="PropertiesMgmtSecurityRealm">
                <socket-binding native="management-native" />
            </native-interface>
            <http-interface security-realm="LDAPMgmtSecurityRealm">
                <socket-binding http="management-http" />
            </http-interface>
        </management-interfaces>
    </management>

      Error:

       
16:26:24,923 INFO  [org.jboss.modules] JBoss Modules version 1.1.0.CR6
16:26:25,635 INFO  [org.jboss.msc] JBoss MSC version 1.0.1.GA
16:26:25,719 INFO  [org.jboss.as] JBoss AS 7.1.0.CR1b "Flux Capacitor" starting
16:26:27,402 ERROR [org.jboss.as.controller.management-operation] Operation ("add") failed - address: ([
    ("core-service" => "management"),
    ("security-realm" => "LDAPMgmtSecurityRealm"),
    ("authentication" => "ldap")
]) - failure description: "JBAS014746: username-attribute may not be null"
16:26:27,407 INFO  [org.jboss.as] JBoss AS 7.1.0.CR1b "Flux Capacitor" started in 2859ms - Started 19 of 20 services (1 services are passive or on-demand)
16:29:42,092 INFO  [org.jboss.as] JBoss AS 7.1.0.CR1b "Flux Capacitor" stopped in 9ms

      It used to work in the 7.1 Beta. I validated my xml and it seams to be valid.

      Attachments

        Activity

          People

            darran.lofthouse@redhat.com Darran Lofthouse
            yvesdermeister Yves Peter (Inactive)
            Votes:
            0 Vote for this issue
            Watchers:
            1 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved: