Hello All,
I'm having trouble integrating GateIN with LDAP. I've follwed the instructions here: https://community.jboss.org/wiki/GateInwithLDAPasadefaultuserandgroupstore.
When I make my ctxDNs point to the following OU:
Just the Generic User shows up in the Organization Management:
I found a post which instructs me to add the following options to the picketlink xml
<option>
<name>entrySearchScope</name>
<value>subtree</value>
</option>
This pulls in all the users - but I get these errors in the log for each local user:
SEVERE: Failed to find IdentityObject in target store:
org.picketlink.idm.common.exception.IdentityException: Found more than one identity object with name: demo; Posible data inconsistency
The Ldap users are also missing there name and email:
I then removed the entry scope parameter and changed the ctxDNs to one of the sub OUs. I had the same problem as above. I don't know if picketlink can handle sub OUs or if it is a memory issue (why would the local users be found twice? Recursive loop bug?).
If anyone else has ran into this and has found a solution - let me know.
Thanks,
Shannon Sumner