Created attachment 407620 [details] Screenshot for connection error in UI Description of problem: For rhq role mapping to windows active directory server groups, if the search base is configured at a specific group level say "cn=group1,dc=test,dc=pnq,dc=com", the mapping is woking fine. However, if the search base configured is at the higher level where the groups are created say "dc=test,dc=pnq,dc=com", the group mapping is not working and is returning LDAP communication error. Please refer the attached screenshot and stack trace. Active directory is setup and is running and some groups and users are added. OS: windows 2003 Active directory version: windows 2003 Hostname: win2k3red.test.pnq.com Version-Release number of selected component (if applicable): JON version: 2.4.0-SNAPSHOT How reproducible: Steps to Reproduce: 1. Login to rhq. (Jon Server URL: suniltest.usersys.redhat.com:7080) 2. Navigate to 'Administration->System Configuration->Settings' screen. 3. In 'LDAP Configuration Properties' section, enter and save the configuration properties as below: URL: ldap://win2k3red.test.pnq.com Search Base: dc=test,dc=pnq,dc=com Username: cn=Administrator,cn=Users,dc=test,dc=pnq,dc=com Password: RedHat123 Search Filter: objectclass=* Login Property: cn Group Search Filter: objectclass=group Group Member Filter: member 4. Navigate to 'Administration->Security->Roles screen. 5. Click on the link 'All Resources Role'. 6. Click on the button 'ADD TO LIST' in 'Assigned Ldap Groups' section. 7. It returns below error: Actual results: the LDAP group to rhq role mapping is not working and is returning LDAP communication error. Expected results: It should display the list of related LDAP groups available on active directory server. Additional info:
Created attachment 407622 [details] server log for communication error
Sunil, I think this is a dupe of 582471, can you compare? *** This bug has been marked as a duplicate of bug 582471 ***