UVMS: LDAP Password not accepted - Access denied
search cancel

UVMS: LDAP Password not accepted - Access denied

book

Article ID: 185485

calendar_today

Updated On:

Products

CA Automic Dollar Universe

Issue/Introduction

A particular user is unable to login with UVC using the LDAP User/ Password.


The error in uvserver.log is the following:

|ERROR| request-worker-x | com.orsyp.central.ldap.SimpleLogin | Authentication Exception javax.naming.AuthenticationException: [LDAP: error code 49 - 80090308: LdapErr: DSID-0C09042F, comment: AcceptSecurityContext error, data 52e, v2580]
The password is quite long (27 characters) and has special characters.

Environment

Release : 6.x
Component : DOLLAR UNIVERSE
Subcomponent: Univiewer Management Server

 

Cause

The error "52e" means that the Password is Incorrect (Password requirements not met).

To validate this, use the tool unicheckldap:
You should get "authentication failed":

unicheckldap -login userlogin userpassword
UniViewer Management Server environment loaded.

UVMS configured with LDAP authentication.

SUCCESS Login: userlogin  found on the LDAP server
FAILURE Login: userlogin authentication failed

Resolution

Please modify password in LDAP to comply with the Dollar Universe accepted passwords, due to the current implementation complex password cannot be transmitted betweeen UVC,command line, DUX and UVMS to the LDAP server :

The login and password can only contain the following characters:
ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789!#&'()+,-.:;>=<?@[]_{|}~

 

Additional Information

A Product Enhancement Request has been opened to accept "special characters" in LDAP passwords to work with Dollar Universe.

This will be studied via the case PMDU-3094