TA的每日心情 | 开心 2021-8-17 16:28 |
---|
签到天数: 313 天 [LV.8]以坛为家I
|
发表于 2011-10-19 19:45:08
|
显示全部楼层
本帖最后由 hn197807 于 2011-10-19 19:54 编辑
为什么我同步时出现下列错误呢?
2011-10-19 19:43:28,126 ERROR weaver.ldap.LdapUtil - Ldap load error: [LDAP: error code 49 - 80090308: LdapErr: DSID-0C0903A9, comment: AcceptSecurityContext error, data 52e, v1db1 ]
可是当我将配置文件中"ldap.type=ad"这一行删掉就可以同步成功,但用域帐号登录提示密码错误,有没有人遇到过?
补充一下:我的dc主机操作系统是2008r2版,这个应该没关系吧?
配置文件ldap.properties内容:
#required attributes mapping
account=$samaccountname
password=$userpassword
lastname=$displayname
#optional attributes mapping
telephone=$telephonenumber
mobile=$mobile
residentphone=$homePhone
residentpostcode=$postalCode
fax=$facsimiletelephonenumber
email=$mail
配置文件ldap.properties内容:
riverClasses = com.microsoft.sqlserver.jdbc.SQLServerDriver
ecology.url = jdbc:sqlserver://192.168.0.2:1433;DatabaseName=ecology
ecology.user = sa
ecology.password = 123456
ecology.charset = ISO
ecology.maxconn = 300
ecology.minconn = 50
ecology.maxusecount = 6000
ecology.maxidletime = 600
ecology.maxalivetime = 10
ecology.checktime = 3600
#Ldap settings
authentic=ldap
ldap.type=ad #这句屏蔽就可以同步成功,否则日志提示上面的错误,但同步成功以后仍无法用域帐号登录,提示密码错误
ldap.factoryclass=com.sun.jndi.ldap.LdapCtxFactory
ldap.provider=ldap://192.168.0.3:389
ldap.domain=ou=testou,dc=testdc,dc=com
ldap.principal=testadmin
ldap.credentials=1
ecology.isgoveproj = 0
LOG_FORMAT = yyyy.MM.dd'-'hh:mm:ss
DEBUG_MODE = false
|
|