search cancel

CABI refused to connect error after enabling LDAP integration

book

Article ID: 255210

calendar_today

Updated On:

Products

DX NetOps CA Spectrum

Issue/Introduction

After trying to integrate CABI with LDAP we are facing issue with starting the application.  When trying to open the CABI page we see:

"refused to connect" 

Environment

Release : Spectrum 21.2.12. Cabi 7.9.1.1

Cause

catalina.out shows

2022-11-23T16:05:17,643 ERROR ContextLoader,localhost-startStop-1:313 - Context initialization failed org.springframework.beans.factory.xml.XmlBeanDefinitionStoreException: Line 94 in XML document from ServletContext resource [/WEB-INF/applicationContext-externalAuth-
-mt.xml] is invalid; nested exception is org.xml.sax.SAXParseException; lineNumber: 94; columnNumber: 61; The entity name must immediately follow the '&' in the entity reference.

LineNumber: 94 of applicationContext-externalAuth-LDAP-mt3011.xml shows an un-escaped "&"

                <property name="groupSearchFilter" value="(&(member={1})(objectClass=group))"/>

The original doc shows it escaped as follows for reference

  <property name="groupSearchFilter" value="(&amp;(objectCategory=person)(objectClass=user)

Resolution

Characters such as & need to be escaped in xml documents as &amp;

this is what needs to be changed. 

After making the change, navigate to the $CABIHOME/ directory and run the stopserver.sh and startservers.sh to resolve the issue.

Additional Information

similar error:

https://knowledge.broadcom.com/external/article?articleId=188940