Jazz Forum Welcome to the Jazz Community Forum Connect and collaborate with IBM Engineering experts and users

Problem fetching user roles: CRJAZ0737I More than one user with the id ... is present in the external user directory.ID CRJAZ1527E

Questions
Tags
Users
Badges
Faaris Alvarez
(1111) May 21 '13, 11:47 a.m.
 Would like to know what Jazz LDAP is using for "user id".   We thought we resolved the duplicate issue with Display Names using a Notes Server for LDAP Purposes.  What configurations need to be updated (Jazz Side, Notes LDAP side). 

0 votes

Comments
Faaris Alvarez
May 21 '13, 4:03 p.m.

 Reaching out to my LDAP Administrator for assistance.  Our LDAP is based on IBM Lotus Notes environment.  Will update our modifications.

Bo Chulindra
JAZZ DEVELOPER May 21 '13, 4:08 p.m.

I think the error may be possible if your JTS has case-insensitive user ID set to true but your LDAP is case-sensitive. For example, if the users foo and FOO are in your LDAP and JTS is doing case-insensitive matching, then both will return in the result when searching for foo.

However, the JTS by default is case-sensitive, so some admin would have had to have changed it which seems unlikely.

2 answers
7,642 views
0 votes

2 answers

Permanent link
Josh Crawford
(984615) May 21 '13, 12:48 p.m.
 Hi Faaris,  you can determine this in the JTS/admin advanced properties page.  The following property tracks that:


Another interesting test would be to see if that user can view his OWN roles, but not others.  

1 vote

Permanent link
Indradri Basu
(1.8k1514) May 21 '13, 12:55 p.m.
During setup or in https://<yourserver>:<port>/jts/admin->Advance Properties, you will find the "User Property Names Mapping" which needs to be configured in such a way that it returns a unique value when the LDAP is queried.

For example: userId=uid,name=cn,emailAddress=mail, here uid,cn and mail are your LDAP server attributes, none of  which should be null and collectively produces an unique user definition. This also matters on how your LDAP is setup as most of the organizations create their own custom attributes. Your LDAP administrators should be able to help you much better on this.

0 votes

Your answer

Register or log in to post your answer.

Dashboards and work items are no longer publicly available, so some links may be invalid. We now provide similar information through other means. Learn more here.

Ask a question
Guidelines
FAQ
Search context
Follow this question

By Email: 

Once you sign in you will be able to subscribe for any updates here.

By RSS:

Answers
Answers and Comments
Question details

Question asked: May 21 '13, 11:47 a.m.

Question was seen: 7,642 times

Last updated: May 21 '13, 4:08 p.m.

Confirmation Cancel Confirm