问题
I have attached my Active Directory as a secondary user store and can see the list of users when i select "Users" however when accessing an APP through tomcat that is linked to SAML SSO i cannot login using an AD Account
can anyone suggest what i am missing?
the error in the system logs is
TID[-1234] [IS] [2014-02-13 13:49:02,321] DEBUG {org.wso2.carbon.identity.application.authenticator.basicauth.BasicAuthenticator} - user authentication failed due to invalid credentials.
however my login credentials are correct...
回答1:
Because i was using email address as a login that was causing the issue!
the steps i took are as follows:
IS_HOME/repository/conf/carbon.xml file.
- Open carbon.xml
- Locate EnableEmailUserName element and uncomment it.
- Finally, it should be similar to the following true
- Now, restart IS
You should be able to login using your user name
回答2:
Could you check whether you can login to WSO2 management console using above credentials. If you can not, please go to Management Console -> Configure -> Users and Roles -> Roles and you can see the internal\everyone role. And configure "login" permission for everyone role. Then please try to login...
Also, if you enable the debug logs in org.wso2.carbon.user.core, you can see more debug logs about authentication failure.
回答3:
I think your configuration is not ok.same login issue already solved here.cannot login to wso2 Identity server with the ldap credentials. Make sure UserDNPattern property is correct
来源:https://stackoverflow.com/questions/21755781/wso2-is-active-directory-login-not-working-correctly