Skip to main content

Jama Connect Help

Troubleshooting LDAP errors

If any errors occurred during installation, use this table to troubleshoot the issues.

Error message

Reason

Unable to communicate with LDAP server; nested exception is javax.naming.CommunicationException: localhost:389 [Root exception is java.net.ConnectException: Connection refused: connect]

Can't connect to the server. Check the URL and make sure port 389 is open.

Operation failed; nested exception is javax.naming.AuthenticationException: [LDAP: error code 49 - Invalid Credentials]

The BindDn or password is incorrect.

Can't find user

Indicates that the Base Dn, Bind Dn, and Bind Password can be connected to accurately (a good connection to LDAP). Either the Login Name Attribute was not filled in correctly or the Sample User does not exist in the Base Dn indicated.

Can't authenticate user

The sample user password is incorrect. However, this message indicates a successful connection to LDAP and that the sample user was found in the Base Dn.

Operation failed; nested exception is javax.naming.PartialResultException: Unprocessed Continuation Reference(s); remaining name

The cause is usually the base URL is incomplete (too broad).

Operation failed; nested exception is javax.naming.ServiceUnavailableException: adunit:636; socket closed. Port 636 is for SSL.

Either SSL isn't supported by Spring LDAP or the certificate is incorrect.

Solution: Try using ldap protocol. For example: ldaps://myserver.example.com:636.

 

Make sure you entered the correct information for the type of LDAP you are configuring:

  • Active Directory

    URL: 'ldap://localhost:389'

    Base Dn: 'ou=Users,dc=<domainname>,dc=com'

    Bind Dn: 'cn=Admin,ou=Admin Users,dc=<domainname>,dc=com'

    Bind Password: 'password'

    Login Name Attribute: 'sAmAccountName'

    Email Attribute: 'email'

    User Name Attribute: 'displayName'

    Sample User: 'admin'

    Sample User Password: 'password'

  • LDAP

    URL: 'ldap://localhost:389'

    Base Dn: 'ou=Users,dc=<domainname>,dc=com'

    Bind Dn: 'cn=Admin,ou=Admin Users,dc=<domainname>,dc=com'

    Bind Password: 'password'

    Login Name Attribute: 'uid'

    Email Attribute: 'mail'

    User Name Attribute: 'cn'

    Sample User: 'admin'

    Sample User Password: 'password'

Important

If you are using SSL, you must use the ldaps protocol. For example, ldaps://myserver.example.com:636

The Base Dn and Bind Dn values won't accept a domain-only value. At least one additional level is required, such as the 'ou=Users' shown in the example above.

Take note of the "Can't find/authenticate user" errors. Errors often indicate a successful connection, but the Sample User/Password are incorrect. 

Important

The Sample User and Password fields are deleted every time the configuration window is closed.