Bug 534809 (RHQ-156)
Summary: | test LDAP integration | ||
---|---|---|---|
Product: | [Other] RHQ Project | Reporter: | John Mazzitelli <mazz> |
Component: | No Component | Assignee: | Heiko W. Rupp <hrupp> |
Status: | CLOSED NEXTRELEASE | QA Contact: | Heiko W. Rupp <hrupp> |
Severity: | medium | Docs Contact: | |
Priority: | high | ||
Version: | unspecified | Keywords: | Task |
Target Milestone: | --- | ||
Target Release: | --- | ||
Hardware: | All | ||
OS: | All | ||
URL: | http://jira.rhq-project.org/browse/RHQ-156 | ||
Whiteboard: | |||
Fixed In Version: | 1.0 | Doc Type: | Bug Fix |
Doc Text: | Story Points: | --- | |
Clone Of: | Environment: | ||
Last Closed: | Type: | --- | |
Regression: | --- | Mount Type: | --- |
Documentation: | --- | CRM: | |
Verified Versions: | Category: | --- | |
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
Cloudforms Team: | --- | Target Upstream Version: | |
Embargoed: |
Description
John Mazzitelli
2008-03-19 14:16:00 UTC
Testing this includes testing all the user-registration stuff for users defined only in LDAP When the connection to ldap is not possible it is still possible to log in as the default admin. re: the last comment about "still possible to log in as default rhqadmin". Just to be clear, this is to be expected. From http://support.rhq-project.org/display/RHQ/Design-LDAP+Integration: "Irrespective of whether LDAP is selected for authentication, the credentials of the root user rhqadmin (and those of the built-in super-user, Overlord) are stored in the internal database." Well, the reporter of that case stated: " ... and you couldn't log in as any user, including rhqadmin - very bad " ... Ah, right - that was due to the fact that the user entered an invalid LDAP server port number, which caused a NumberFormatException which in turn caused all of our JAAS modules to fail to deploy (including our JDBC login module). Authenticating a user through ldap works. A user with a bad password is correctly rejected. The rejection message is not nice, but the functionality is there. Using ssl gives 15:29:37,367 INFO [CustomJaasDeploymentService] Disabling JON LDAP JAAS Provider: localhost:636 javax.naming.CommunicationException: localhost:636 [Root exception is java.lang.ClassNotFoundException: No ClassLoaders found for: net.hyperic.util.security.UntrustedSSLSocketFactory] But even after supplying the packages, there are still issues, that I am looking in. Fixed in r547. The remaining issue was an issue with the SSL cert on the openldap side and no RHQ issue. Code level fixes - already in 1.0 This bug was previously known as http://jira.rhq-project.org/browse/RHQ-156 |