Connecting GateIn with Active Directory using secure connection
nandhana03 Oct 18, 2012 1:41 AMhiiiii..
I got the following execption when I connected GateIn with Active Directory using secure connection. I exported the certificate from exchange server and generated truststore from corresponding certificate and configured idm-configuration.xml and picketlink-idm-msad-readonly-config.xml files
example of configuration for SSL:
<option>
<name>customSystemProperties</name>
<value>javax.net.ssl.trustStore=C:/msad.truststore</value>
<value>javax.net.ssl.trustStorePassword=G12$</value>
</option>
The stacktrace is as follows :
javax.net.ssl.
SSLHandshakeException: sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target
10:25:36,839 SEVERE [FallbackIdentityStoreRepository] Failed to find IdentityObject in target store:
org.picketlink.idm.common.exception.IdentityException: Could not obtain LDAP connection:
at org.picketlink.idm.impl.store.ldap.LDAPIdentityStoreImpl.getLDAPContext(LDAPIdentityStoreImpl.java:4233)
at org.picketlink.idm.impl.store.ldap.LDAPIdentityStoreImpl.searchIdentityObjects(LDAPIdentityStoreImpl.java:3861)
at org.picketlink.idm.impl.store.ldap.LDAPIdentityStoreImpl.findIdentityObject(LDAPIdentityStoreImpl.java:676)
at org.picketlink.idm.impl.repository.FallbackIdentityStoreRepository.findIdentityObject(FallbackIdentityStoreRepository.java:646)
at org.picketlink.idm.impl.api.session.managers.PersistenceManagerImpl.findUser(PersistenceManagerImpl.java:426)
at org.exoplatform.services.organization.idm.UserDAOImpl.getPopulatedUser(UserDAOImpl.java:785)
at org.exoplatform.services.organization.idm.UserDAOImpl.findUserByName(UserDAOImpl.java:309)
at org.exoplatform.services.organization.OrganizationDatabaseInitializer.createUsers(OrganizationDatabaseInitializer.java:161)
at org.exoplatform.services.organization.OrganizationData baseInitializer.init(OrganizationDatabaseInitializer.java:76)
at org.exoplatform.services.organization.BaseOrganizationService.start(BaseOrganizationService.java:83)
at org.exoplatform.services.organization.idm.PicketLinkIDMOrganizationServiceImpl.start(PicketLinkIDMOrganizationServiceImpl.java:104)
at sun.reflect.GeneratedMethodAccessor348.invoke(Unknown Source)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
at java.lang.reflect.Method.invoke(Method.java:597)
at org.exoplatform.container.LifecycleVisitor.traverse(LifecycleVisitor.java:100)
at org.exoplatform.container.LifecycleVisitor.start(LifecycleVisitor.java:170)
at org.exoplatform.container.ConcurrentPicoContainer.start(ConcurrentPicoContainer.java:554)
at org.exoplatform.container.ExoContainer.start(ExoContainer.java:266)
at org.exoplatform.container.PortalContainer.start(PortalContainer.java:667)
at org.exoplatform.container.ExoContainer.start(ExoContainer.java:254)
at org.exoplatform.container.RootContainer.createPortalContainer(RootContainer.java:399)
at org.exoplatform.container.RootContainer.createPortalContainers(RootContainer.java:287)
at org.exoplatform.container.web.PortalContainerCreator$2.run(PortalContainerCreator.java:74)
at org.exoplatform.container.web.PortalContainerCreator$2.run(PortalContainerCreator.java:71)
at org.exoplatform.commons.utils.SecurityHelper.doPrivilegedAction(SecurityHelper.java:291)
at org.exoplatform.container.web.PortalContainerCreator.contextInitialized(PortalContainerCreator.java:70)
at org.apache.catalina.core.StandardContext.listenerStart(StandardContext.java:3910)
at org.apache.catalina.core.StandardContext.start(StandardContext.java:4393)