It's all about the answers!

Ask a question

LDAP users being used and getting messages re: abuse from LDAP admins


Kevin Ramer (4.3k6156175) | asked Dec 06 '12, 10:19 a.m.
retagged Dec 06 '12, 6:58 p.m. by Nhi P Ta (1884918)
Ok.

This just started happening at TWO separate locations (Rome, RTP).  Users report that the LDAP authentication is somehow using an ID and passing the incorrect password (1000s of times).  The first such was a 'service' ID which I could understand as it *might* have been configured into a friend connection.  However, a user came by my office today with the same issue.

Checking with user regarding automation.   But the suddenness and coincident occurrences lead me to post here.

Side question:  is there a log4j property that can be set to record failed login attempts?  Our WebSphere app servers report it something like this:

[12/6/12 2:50:19:510 EST] 00000013 FormLoginExte E   SECJ0118E: Authentication error during authentication for user ovidiu
[12/6/12 4:23:05:246 EST] 00000021 FormLoginExte E   SECJ0118E: Authentication error during authentication for user Adrian.O
[12/6/12 5:42:33:290 EST] 000000b7 FormLoginExte E   SECJ0118E: Authentication error during authentication for user Adrian.O
[12/6/12 5:42:34:151 EST] 00000019 FormLoginExte E   SECJ0118E: Authentication error during authentication for user Adrian.O



Comments
Kevin Ramer commented Dec 06 '12, 11:04 a.m.

Ok, user issue traced to automation.  Still searching for the source of the 'automation' id login failures.

One answer



permanent link
Nhi P Ta (1884918) | answered Dec 06 '12, 6:00 p.m.
Hi Kevin,

What version of JTS do you used? I came across a similar problem in version 3.0.1.1, as datawarehouse user need exist in LDAP, I use a normal user (insteads of) non-expiring password functional user id. As normal user need to change his/her password after a fixed period of time, that get forgotten.

So you will need to make these changes in the three applications, /jts, /ccm and /qm.

Here is the url form
https://<host>:<port>/<app>/admin#action=jazz.viewPage&id=com.ibm.team.reports.reportsManagementPage

I have noticed that in version 3.0.1.4 onwards, if if you left etl_user blank, and OAuth is used instead.

Hope this helps.

Comments
Kevin Ramer commented Dec 07 '12, 2:52 p.m.

Thanks I will keep this in mind.  The owner of the service ID has reset the password and it the ID is logging in successfully so far.

Your answer


Register or to post your answer.