AnsweredAssumed Answered

Introscope - LDAP integration

Question asked by Siddharth Misra on Aug 16, 2016
Latest reply on Aug 24, 2016 by Siddharth Misra

Hi,

 

We have successfully integrated LDAP with Introscope and able to authenticate at User(username) level.

Now, I am trying to implement authentication at Group Level. Below are the issues that I have came across:

1)     Permission -"read" stated invalid in logs - em.log

Logs -

Introscope Enterprise Manager failed to start because:

Invalid permission "read" for user "MNOP1-ABC-XYZ-Support-Team" in resource "Server Resource".

./EMCtrl.sh status: Enterprise Manager stopped

 

2)     Permission - "full" is working but still Group members/users are unable to login. - em.log

Logs -

INFO: Application context successfully refreshed -(OsgiBundleXmlApplicationContext(bundle=com.wily.apm.em.monitor.config, config=osgibundle:/META-INF/spring/*.xml))

8/16/16 02:19:49.059 PM CEST [ERROR] [main] [Manager] The EM failed to start. Local Users and Groups realm is misconfigured. Error using new settings for Realm: Non existent user "123456789" referenced in "MNOP1-ABC-XYZ-Support-Team" group.

8/16/16 02:19:49.082 PM CEST [INFO] [main] [Manager] Shutting down the Isengard server

8/16/16 02:19:49.285 PM CEST [INFO] [main] [Manager] Orderly shutdown complete.

 

Regarding, 2nd issue I have searched in communities and got that realms.xml is misconfigured and needs to be corrected.

Can you please suggest what all modifications would be require.I have attached the realm sample file for your reference.

 

Appreciate your earliest response !

 

Thanks & Regards,

Siddharth

Attachments

Outcomes