Logo 
Search:

Sharepoint Forum

Ask Question   UnAnswered
Home » Forum » Sharepoint       RSS Feeds

About FBA using a modified openLDAP client

  Asked By: Joseph    Date: Dec 08    Category: Sharepoint    Views: 1403

Trying to implement FBA leveraging a modified openLDAP setup (application vendor
requires a modified LDAP schema).

Appropriate changes have been made to web.config files and I can successfully
resolve usernames from the LDAP store in the PeoplePicker.

However, when I try and login with am account that has been added as a site
collection administrator I get the following message:

"The server could not sign you in. Make sure your user name and password are
correct, and then try again."

Does anyone know specifically what objectClass or objectClassAttribute
SharePoint is looking for when it attempts to authenticate a user from an LDAP
store?

Current web.config for the Membership provider

<add name="LdapMembership"
type="Microsoft.Office.Server.Security.LDAPMembershipProvider,
Microsoft.Office.Server, Version=12.0.0.0, Culture=neutral,
PublicKeyToken=71E9BCE111E9429C"
connectionUsername="cn="username",ou="user store""
connectionPassword="******"
server="server.company.com"
port="389"
useSSL="false"
useDNAttribute="false"
userDNAttribute="cn"
userNameAttribute="cn"
userContainer="OU="user store""
userObjectClass="person"
userFilter="(ObjectClass=person)"
scope="Subtree"
otherRequiredUserAttributes="sn,givenname,cn" />

I've searched for a couple of days and have tried the obvious fixes:

1. varioususerDNAttributes (distinguishedName etc...)
2. various objectClasses for the userObjectClass and userFilter

Not sure what else to do or look for.

Share: 

 

No Answers Found. Be the First, To Post Answer.

 
Didn't find what you were looking for? Find more on About FBA using a modified openLDAP client Or get search suggestion and latest updates.




Tagged: