Just to add a little mystery (as if there weren’t already enough with this issue). I downloaded the new version (3.3.3) in hope that this might solve the issue. Installed it on another test machine. Checked my users that were missing - still not there. Turned on the debugging and found this (not sure if everything i pasted is needed or not, but oh well, here it is, with my domain changed) -
2007.09.24 15:03:49 Trying to find a user’s DN based on their username. sAMAccountName: cn=monica garcia,cn=users,dc=MYDOMAINNAME,dc=com, Base DN: DC=MYDOMAINNAME;DC=com…
2007.09.24 15:03:49 Creating a DirContext in LdapManager.getContext()…
2007.09.24 15:03:49 Created hashtable with context values, attempting to create context…
2007.09.24 15:03:49 … context created successfully, returning.
2007.09.24 15:03:49 Starting LDAP search…
2007.09.24 15:03:49 … search finished
2007.09.24 15:03:49 User DN based on username ‘cn=monica garcia,cn=users,dc=MYDOMAINNAME,dc=com’ not found.
2007.09.24 15:03:49 Exception thrown when searching for userDN based on username ‘cn=monica garcia,cn=users,dc=MYDOMAINNAME,dc=com’
org.jivesoftware.openfire.user.UserNotFoundException: Username cn=monica garcia,cn=users,dc=MYDOMAINNAME,dc=com not found
at org.jivesoftware.openfire.ldap.LdapManager.findUserDN(LdapManager.java:626)
at org.jivesoftware.openfire.ldap.LdapManager.findUserDN(LdapManager.java:554)
at org.jivesoftware.openfire.ldap.LdapUserProvider.loadUser(LdapUserProvider.java: 77)
at org.jivesoftware.openfire.user.UserManager.getUser(UserManager.java:185)
at org.jivesoftware.openfire.ldap.LdapGroupProvider.populateGroups(LdapGroupProvid er.java:698)
at org.jivesoftware.openfire.ldap.LdapGroupProvider.getGroup(LdapGroupProvider.jav a:99)
at org.jivesoftware.openfire.group.GroupManager.getGroup(GroupManager.java:184)
at org.jivesoftware.openfire.group.GroupCollection$UserIterator.getNextElement(Gro upCollection.java:102)
at org.jivesoftware.openfire.group.GroupCollection$UserIterator.hasNext(GroupColle ction.java:65)
at org.jivesoftware.openfire.admin.user_002dproperties_jsp._jspService(user_002dpr operties_jsp.java:305)
at org.apache.jasper.runtime.HttpJspBase.service(HttpJspBase.java:97)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:802)
at org.mortbay.jetty.servlet.ServletHolder.handle(ServletHolder.java:491)
at org.mortbay.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.ja va:1074)
at com.opensymphony.module.sitemesh.filter.PageFilter.parsePage(PageFilter.java:11 8)
at com.opensymphony.module.sitemesh.filter.PageFilter.doFilter(PageFilter.java:52)
at org.mortbay.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.ja va:1065)
at org.jivesoftware.util.LocaleFilter.doFilter(LocaleFilter.java:65)
at org.mortbay.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.ja va:1065)
at org.jivesoftware.util.SetCharacterEncodingFilter.doFilter(SetCharacterEncodingF ilter.java:41)
at org.mortbay.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.ja va:1065)
at org.jivesoftware.admin.PluginFilter.doFilter(PluginFilter.java:69)
at org.mortbay.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.ja va:1065)
at org.jivesoftware.admin.AuthCheckFilter.doFilter(AuthCheckFilter.java:98)
at org.mortbay.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.ja va:1065)
at org.mortbay.jetty.servlet.ServletHandler.handle(ServletHandler.java:365)
at org.mortbay.jetty.security.SecurityHandler.handle(SecurityHandler.java:185)
at org.mortbay.jetty.servlet.SessionHandler.handle(SessionHandler.java:181)
at org.mortbay.jetty.handler.ContextHandler.handle(ContextHandler.java:689)
at org.mortbay.jetty.webapp.WebAppContext.handle(WebAppContext.java:391)
at org.mortbay.jetty.handler.ContextHandlerCollection.handle(ContextHandlerCollect ion.java:146)
at org.mortbay.jetty.handler.HandlerCollection.handle(HandlerCollection.java:114)
at org.mortbay.jetty.handler.HandlerWrapper.handle(HandlerWrapper.java:139)
at org.mortbay.jetty.Server.handle(Server.java:285)
at org.mortbay.jetty.HttpConnection.handleRequest(HttpConnection.java:457)
at org.mortbay.jetty.HttpConnection$RequestHandler.headerComplete(HttpConnection.j ava:751)
at org.mortbay.jetty.HttpParser.parseNext(HttpParser.java:500)
at org.mortbay.jetty.HttpParser.parseAvailable(HttpParser.java:209)
at org.mortbay.jetty.HttpConnection.handle(HttpConnection.java:357)
at org.mortbay.io.nio.SelectChannelEndPoint.run(SelectChannelEndPoint.java:329)
at org.mortbay.thread.BoundedThreadPool$PoolThread.run(BoundedThreadPool.java:475
I see similiar results for EVERY user that is missing the group info.
Soooooo, I took the cn=monica garcia,cn=users,dc=MYDOMAINNAME,dc=com and did a search with the Softerra LDAP Browser that had been recommended in numerous other posting about such issues and it found the user with no problems. Used the same filter I use in my config file - STILL found the user. This was the case for ALL the users that seem to be missing their group membership.
The one oddity that I can note (not sure if it is relevant or not) is that all my users that are missing group membership have a first name that ends in the letter A…granted, could be coincidence, but something to possibly chew on. I thought I had figured out the culprit, BUT I have other users whose first name ends in A that are not affected. If anyone else can help me out and keep me from banging my head against this brick wall, I would appreciate it - it’s beginning to give me a headache!
Kurt