powered by Jive Software

Openfire 3.8.2+Windows Server 2012 (Active Directory) problem

Hi!

I want to integrate Openfire 3.8.2+Windows Server 2012 (Active Directory) , but after setup, when i configure server i get trouble: In Profile Settings: Connection Settings When i chose Server Type Active Directory (Windows server 2012) not works "Test settings" button, When i press, i don’t see fail or true, its like simply refresh page. Please, help me.

Hello,

Its amazing how similar our issues are, if a representative could help us out with this issue it would be greatly appreciated.

Hi guys!

I’m with the same issue here. I have Windows 2012 Server as AD and when I try to Test Settings it simply refresh the page?

Did you guys solved it?

Thanks!

this is a known isssue with openfire. the test does not give any results and does not work. just click through to the end of the setup up. If you’re able to add your administrator account, then you’re ldap setup should be working.

Thanks, speedy…

I tried to do as you said, but in the end no user could be retrieved to add the administrator account. When I searched for “Administrador” (my Admin account), the error was:

“No username was provided or the specified username was not found.”

The nohup.out :

"

-> SRVADS01:636

0000: 30 35 02 01 01 60 30 02 01 03 04 20 43 4E 3D 41 05…`0… CN=A

0010: 64 6D 69 6E 69 73 74 72 61 64 6F 72 2C 44 43 3D dministrador,DC=

0020: 73 65 68 2C 44 43 3D 69 6E 74 72 61 80 09 48 6F my,DC=domain…Admin

0030: 6E 64 61 23 73 65 68 Password

javax.naming.CommunicationException: simple bind failed: SRVADS01:636 [Root exception is java.net.SocketException: Socket is closed]

"

I tried without SSL and the error was the same, but nohup out was different:

"

-> SRVADS01:389

0000: 30 35 02 01 01 60 30 02 01 03 04 20 43 4E 3D 41 05…`0… CN=A

0010: 64 6D 69 6E 69 73 74 72 61 64 6F 72 2C 44 43 3D dministrador,DC=

0020: 73 65 68 2C 44 43 3D 69 6E 74 72 61 80 09 48 6F my,DC=domain…Admin

0030: 6E 64 61 23 73 65 68 Password

<- SRVADS01:389

0000: 30 84 00 00 00 68 02 01 01 61 84 00 00 00 5F 0A 0…h…a…_.

**0010: 01 31 04 00 04 58 38 30 30 39 30 33 30 38 3A 20 .1…X80090308: **

0020: 4C 64 61 70 45 72 72 3A 20 44 53 49 44 2D 30 43 LdapErr: DSID-0C

0030: 30 39 30 33 43 35 2C 20 63 6F 6D 6D 65 6E 74 3A 0903C5, comment:

0040: 20 41 63 63 65 70 74 53 65 63 75 72 69 74 79 43 AcceptSecurityC

0050: 6F 6E 74 65 78 74 20 65 72 72 6F 72 2C 20 64 61 ontext error, da

0060: 74 61 20 35 32 65 2C 20 76 32 33 66 30 00 ta 52e, v23f0.

javax.naming.AuthenticationException: [LDAP: error code 49 - 80090308: LdapErr: DSID-0C0903C5, comment: AcceptSecurityContext error, data 52e, v23f0]

"

PS: I changed the DC and admin password to paste the log here.

PS2: Both 389 and 636 are opened (nmap), and the server name SRVADS01 answers to ping requests just fine.

Any ideas???

Thanks!

check your base dn. I usually just use the root of the domain, and then use search filters to filter out everything I don’t want to pull in.

for example…if the root of your domain is DOMAIN.LOCAL your base dn would would dc=domain,dc=local

Speedy, thanks

Actually my problem was the search filter. I forgot to put the OU at the ldap.SearchFilter property, and the ‘Spark’ group was in there.

Now the integration with AD is OK. But there is another problem:

The user list is taking too long to show the users. After 3 minutes the users appears (only those that are ‘Spark’ group members).

When I try to list the groups it’s worse. It takes about 10 minutes to show the first page; After that, if I try to edit some group, in order to setup group sharing, it takes a long time and I just give up.

I’ve out searched for some help and tried to change some properties, as they tried here (http://community.igniterealtime.org/thread/43874), but without success.

Do you have any idea of what can be wrong?

Thanks a lot!!!

Cheers!

speedy,

I tried again and it worked…

Withou SSL (389) and with ldap.autoFollowReferrals and ldap.connectionPoolEnabled seted to ‘false’.

Cheers! And Thanks!