It's all about the answers!

Ask a question

LDAP- Not authorized to access the Jazz Team Server Admin UI


Gary Dang (59328855) | asked Jun 03 '08, 11:25 p.m.
There is a LDAP authenticated user who is in JazzAdnins and JazzUsers group. However, this message is displayed - "You are not authorized to access the Jazz Team Server Admin UI" - when logged on to https:/..../jazz/admin web page. Any comments please? Thanks.

7 answers



permanent link
Gary Dang (59328855) | answered Jun 13 '08, 10:30 a.m.
There seems to be some realm binding issue. Here is the log file. Any comment please? Thanks.

SEVERE: Error initializing endpoint
java.net.BindException: Address already in use: NET_Bind:9080
at org.apache.tomcat.util.net.PoolTcpEndpoint.initEndpoint(PoolTcpEndpoint.java:298)
at org.apache.coyote.http11.Http11BaseProtocol.init(Http11BaseProtocol.java:139)
at org.apache.catalina.connector.Connector.initialize(Connector.java:1017)
at org.apache.catalina.core.StandardService.initialize(StandardService.java:578)
at org.apache.catalina.core.StandardServer.initialize(StandardServer.java:782)
at org.apache.catalina.startup.Catalina.load(Catalina.java:504)
at org.apache.catalina.startup.Catalina.load(Catalina.java:524)
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:79)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
at java.lang.reflect.Method.invoke(Method.java:618)
at org.apache.catalina.startup.Bootstrap.load(Bootstrap.java:267)
at org.apache.catalina.startup.Bootstrap.main(Bootstrap.java:432)
Jun 12, 2008 3:38:20 PM org.apache.catalina.startup.Catalina load
SEVERE: Catalina.start
LifecycleException: Protocol handler initialization failed: java.net.BindException: Address already in use: NET_Bind:9080
at org.apache.catalina.connector.Connector.initialize(Connector.java:1019)
at org.apache.catalina.core.StandardService.initialize(StandardService.java:578)
at org.apache.catalina.core.StandardServer.initialize(StandardServer.java:782)
at org.apache.catalina.startup.Catalina.load(Catalina.java:504)
at org.apache.catalina.startup.Catalina.load(Catalina.java:524)
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:79)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
at java.lang.reflect.Method.invoke(Method.java:618)
at org.apache.catalina.startup.Bootstrap.load(Bootstrap.java:267)
at org.apache.catalina.startup.Bootstrap.main(Bootstrap.java:432)
Jun 12, 2008 3:38:20 PM org.apache.catalina.startup.Catalina load
INFO: Initialization processed in 2144 ms

permanent link
Lorelei Ngooi (1.5k22) | answered Jun 13 '08, 1:36 p.m.
JAZZ DEVELOPER
Check if the web.xml file still contains the modifications you made for LDAP. I noticed once when I upgraded that this information was overridden.

Lorelei

permanent link
Gary Dang (59328855) | answered Jun 13 '08, 3:08 p.m.
Thank you, Lorelei.

I just checked the web.xml file as well as the server.xml file. The custom settings are still in place. Thanks.

FYI, I'm using Microsoft Active Directory.

permanent link
Gary Dang (59328855) | answered Jun 19 '08, 11:43 p.m.
The error message said "You are not authorized to access the Jazz Team Server Admin UI" when logged on as an active directory account. Does this mean Tomcat was actually connected to the Active Directory server? Thanks.

permanent link
Gary Dang (59328855) | answered Jun 19 '08, 11:47 p.m.
We originally tried our own user group. But, we received the same error after creating the RTC default user group like "jazzadmins".

permanent link
Gary Dang (59328855) | answered Jun 20 '08, 4:19 p.m.
I managed to make it work by a number of trials and errors. Here is the working Realm for Active Directory.

I managed to make it work by a number of trials and errors. Here is the working Realm.

className="org.apache.catalina.realm.JNDIRealm"
debug="99"
connectionURL="ldap://nn.nn.nn.nn:389"
authentication="simple"
referrals="follow"
connectionName="cn=xxxxxxxx,ou=people,dc=dir,dc=svc,dc=xxxxxx,dc=com"
connectionPassword="xxxxxxxxxx"
userSearch="(sAMAccountName={0})"
userBase="ou=people,dc=dir,dc=svc,dc=xxxxxxx,dc=com"
userSubtree="true"
roleSearch="(member={0})"
roleName="cn"
roleSubtree="true"
roleBase="ou=Groups,dc=dir,dc=svc,dc=xxxxx,dc=com"

permanent link
Sandeep Anand (1663) | answered Jun 14 '10, 10:01 a.m.
Hi gdang,

I thank you very much for posting the solution that you got after lot of hit and trials. I myself was strugling with the same issue. And, now I have managed to resolve the issue by using the same settings (ofcourse retaining the company wide values) that you have used.

Regards,
sanan

Your answer


Register or to post your answer.


Dashboards and work items are no longer publicly available, so some links may be invalid. We now provide similar information through other means. Learn more here.