Directory service logon does not work in single sign-on mode

I am using SAML 2.0 based SSO web browser using WSO2 Identity Server. In which I configured Active Directory as an additional user store.

Users in the Active Directory are added to the management list, but they are not authenticated with one of my service providers.

Below is the configuration I made on the Identity server according to my Active Directory setup.

Main Conguration

Optional Configuration

Every time I try to log in using user credentials, authentication fails. Below is the error stack:

TID: [0] [IS] [2015-04-28 12: 18: 51,736] ERROR {} Org.wso2.carbon.identity.application.authenticator.requestpath.basicauth.BasicAuthRequestPathAuthenticator - Authentication failed for user deepv {org.wso2 .carbon.identity.application.authenticator.requestpath.basicauth.BasicAuthRequestPathAuthenticator} TID: [0] [IS] [2015-04-28 12: 18: 51,736] ERROR {} Org.wso2.carbon.identity.application.authenticator. requestpath.basicauth.BasicAuthRequestPathAuthenticator - Authentication failed {org.wso2.carbon.identity.application.authenticator.requestpath.basicauth.BasicAuthRequestPathAuthenticator} org.wso2.carbon.identity.application.authentication.framework. .carbon.identity.application.authenticator.requestpath.basicauth.BasicAuthRequestPathAuthenticator.processAuthenticationResponse (BasicAuthRequestPathAuthenticator.java:94) in org.wso2.carbon.identity.application.authentication.framework.AbstractApplicationAuthenticator.process (AbstractApplicationAuthenticator.java:61) in org.wso2.application.java:61) in org.wso2.application.carbon.framework. sequence.impl.DefaultRequestPathBasedSequenceHandler.handle (DefaultRequestPathBasedSequenceHandler.java:72) at org.wso2.carbon.identity.application.authentication.framework.handler.request.impl.DefaultAuthenticationRequestHandler.handle (DefaultRequestPathBasedSequenceHandler. carbon.identity.application.authentication.framework.handler.request.impl.DefaultRequestCoordinator.handle (DefaultRequestCoordinator.java:94) at org.wso2.carbon.identity.application.authentication.framework.servlet.CommonAuthenticationServlet.doPost (CommonAuthenticationServlet.java:54) at org.wso2.carbon.identity.application.authentication.framework.servlet.CommonAuthenticationServlet.doGet (CommonAuthenticationServlet.java:44) at javax.servlet.http.HttpServlet. 735) at Above: org.eclipse.equinox.http.helper.ContextPathServletAdaptor.service (ContextPathServletAdaptor.java:37) at org.eclipse.equinox.http.servlet.internal.ServletRegistration.service (ServletRegistration.java .eclipse.equinox.http.servlet.internal.ProxyServlet.processAlias ​​(ProxyServlet.java:128) at org.eclipse.equinox.http.servlet.internal.ProxyServlet.service (ProxyServlet.java:60) at javax.servlet .http.HttpServlet.service (HttpServlet.java:848) at org.wso2.carbon.tomcat.ext.servlet.DelegationServlet.service (DelegationServlet.java:68) at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter (ApplicationFilterChain.java:305) at org.apache.catalina.core.ApplicationFilterChain.doFilter (ApplicationFilterChain.java:210) at org.wso2.carbon.tomcat.ext.filter.CharacterFetdo 61) to org.apache.catalina.core.ApplicationFilterChain.internalDoFilter (ApplicationFilterChain.java:243) to org.apache.catalina.core.ApplicationFilterChain.doFilter (ApplicationFilterChain.java:210) to org.apache.catalina .invoke (StandardWrapperValve.java:222) at org.apache.catalina.core.StandardContextValve.invoke (StandardContextValve.java:123) at org.apache.catalina.authenticator.AuthenticatorBase.invoke (Authenticator2Base.java apache.catalina.core.StandardHostValve.invoke (StandardHostValve.java:171) at org.apache.catalina.valves.ErrorReportValve.invoke (ErrorReportValve.java:99) at org.wso2.carbon.tomcat.ext.valves.CompositeValve.continueInvocation (CompositeValve.java:178) at org.wso2.carbon.tomcat.ext.valves.CarbonTomcatValve $ 1.invoke (CarbonTomcatValve $ 1.invoke .java: 47) in org.wso2.carbon.webapp.mgt.TenantLazyLoaderValve.invoke (TenantLazyLoaderValve.java:56) in org.wso2.carbon.tomcat.ext.valves.TomcatValveContainer:invokeValves) (TomcatValveContainer:invokeValves) (TomcatValveContainer:invokeValves) (TomcatValveContainer:invokeValves) org.wso2.carbon.tomcat.ext.valves.CompositeValve.invoke (CompositeValve.java:141) at org.wso2.carbon.tomcat.ext.valves.CarbonStuckThreadDetectionValve.invoke (CarbonStuckThreadDetectionValve.invoke (CarbonStuckThreadDetectionValve.invoke (CarbonStuckThreadDetectionValve.invoke) .japgava: catalina.valves.AccessLogValve.invoke (AccessLogValve.java:936) at org.wso2.carbon.tomcat.ext.valves.CarbonContextCreatorValve.invoke (CarbonContextCreatorValve.java:52) at org.apache.catalina.core.coreinvoke (StandardEngineValve.Java: 118) in org.apache.catalina.connector.CoyoteAdapter.service (CoyoteAdapter.java:407) in org.apache.coyote.http11.AbstractHttp11Processor.process (AbstractHttp11Processor.java.1004) .coyote.AbstractProtocol $ AbstractConnectionHandler.process (AbstractProtocol.java"89) at org.apache.tomcat.util.net.NioEndpoint $ SocketProcessor.run (NioEndpoint.java:1653) at java.util.concurrent.ThreadPoolExe (ThreadPoolExecutor.runWorkerExecutor .java: 1145) to java.util.concurrent.ThreadPoolExecutor $ Worker.run (ThreadPoolExecutor.java:615) to java.lang.Thread.run (Thread.java:745) TID: [0] [IS] [2015- 04-28 12: 18: 51,738] ERROR {} Org.wso2.carbon.identity.application.authentication.framework.handler.sequence.impl.DefaultRequestPathBasedSequenceHandler - Authentication failed {org.wso2.carbon.identity.application.authentication.framework.handler.sequence.impl.DefaultRequestPathBasedSequenceHandler} org.wso2.carbon.identity.application.authentication.framework.exception.AuthenticationFailedException: Authentication failure org.wso2.carbon.pathity.application.auticator.requestquest processAuthenticationResponse (BasicAuthRequestPathAuthenticator.java:115) at org.wso2.carbon.identity.application.authentication.framework.AbstractApplicationAuthenticator.process (AbstractApplicationAuthenticator.java:61) at org.wso2.application.carbonation.framework. sequence.impl.DefaultRequestPathBasedSequenceHandler.handle (DefaultRequestPathBasedSequenceHandler.java:72) at org.wso2.carbon.identity.application.authentication.framework.handler.request.impl.DefaultAuthenticationRequestHandler.handle (DefaultAuthenticationRequestHandler.java:114) at org.wso2.carbon.identity.application.authentication.framework.handler.request.impl.DefaultRequestCoordinator.handle (DefaultRequestCoordinator.java:94) at org.wso2.carlicbon.identity. authentication.framework.servlet.CommonAuthenticationServlet.doPost (CommonAuthenticationServlet.java:54) at org.wso2.carbon.identity.application.authentication.framework.servlet.CommonAuthenticationServlet.doGet (CommonAuthenticationServlet.java.44) at javaxlet. HttpServlet.service (HttpServlet.java:735) at Above: org.eclipse.equinox.http.helper.ContextPathServletAdaptor.service (ContextPathServletAdaptor.java:37) at org.eclipse.equinox.http.erservlet. ServletRegistration.java:61) in org.eclipse.equinox.http.servlet.internal.ProxyServlet.processAlias ​​(ProxyServlet.java:128) at org.eclipse.equinox.http.servlet.internal.ProxyServlet.service (ProxyServlet.java:60) at javax.servlet.http.HttpServlet.service (HttpServlet.java:848) at org.wso2.carbon.tomcat.ext.servlet.DelegationServlet.service (DelegationServlet.java:68) at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter (ApplicationFilterChain.java:305) at org.apache.catalina .ApplicationFilterChain.doFilter (ApplicationFilterChain.java:210) at org.wso2.carbon.tomcat.ext.filter.CharacterSetFilter.doFilter (CharacterSetFilter.java:61) at org.apache.catalina.Docore.AppilterFilter : 243) to org.apache.catalina.core.ApplicationFilterChain.doFilter (ApplicationFilterChain.java:210) to org.apache.catalina.core.StandardWrapperValve.invoke (StandardWrapperValve.java:222) at org.apache.catalina.core.StandardContextValve.invoke (StandardContextValve.java:123) at org.apache.catalina.authenticator.AuthenticatorBase.invoke (AuthenticatorBase.java:472) at org.apache.catalina.invoke .invoke (StandardHostValve.java:171) at org.apache.catalina.valves.ErrorReportValve.invoke (ErrorReportValve.java:99) at org.wso2.carbon.tomcat.ext.valves.CompositeValve.continueInvocation (CompositeValve.java ) to org.wso2.carbon.tomcat.ext.valves.CarbonTomcatValve $ 1.invoke (CarbonTomcatValve.java:47) to org.wso2.carbon.webapp.mgt.TenantLazyLoaderValve.invoke (TenantLazyLoader) to orgava.java .carbon.tomcat.ext.valves.TomcatValveContainer.invokeValves (TomcatValveContainer.java:47) at org.wso2.carbon.tomcat.ext.valves.CompositeValve.invoke (CompositeValve.java:141) at org.twso2.carbon.cat. .ext.valves.CarbonStuckThreadDetectionValve.call (CarbonStuckThreadDetectionValve.java:156) in org.apache.catalina.valves.AccessLogValve.invoke (AccessLogValve.java:936) in org.wso2.carbon.tomcat.ext.tevaltextCarbonVacreat. 52) at org.apache.catalina.core.StandardEngineValve.invoke (StandardEngineValve.java:118) at org.apache.catalina.connector.CoyoteAdapter.service (CoyoteAdapter.java:407) at org.apache.coyoteProbHttp11.Acessstract .process (AbstractHttp11Processor.java:1004) at org.apache.coyote.AbstractProtocol $ AbstractConnectionHandler.process (AbstractProtocol.java:589) at org.apache.tomcat.util.net.NioEndpoint $ SocketProcessor.run (NioEndpoint.java:1653 ) to java.util.concurrent.ThreadPoolExecutor.runWorker (ThreadPoolExecutor.java:1145) to java.util.concurrent.ThreadPoolExecutor $ Worker.run (ThreadPoolExecutor.java:615) in java.lang.Thread.run (Thread.java:745).

I tried to use different objectClass for the user that are possible according to my directory structure. for example, inetOrgPerson, person, user, etc.

But still I can't authenticate users.

I am using WSO2 Identity server 5.0.0 with BasicAuthRequestPathAuthenticator to provide user credentials with a service provider rather than an identity login page.

I tried this without BasicAuthRequestPathAuthenticator, but still the users are not authenticated.

I found a similar question in this link. But it didn't work for me as I authenticate users using sAMAccountName parameter , not using Emailid .

I need to be guided by this as I might have missed something important to do. Please help if anyone is facing this problem.

Thank..

+3


source to share





All Articles