3 Replies Latest reply on Mar 2, 2015 9:45 AM by Aldo Dall'Aglio

    Exception when running quickstart picketlink-authorization-idm-ldap

    Aldo Dall'Aglio Newbie

      Hi everybody,

       

      I am learning Picketlink and I started from the quickstarts. I sambled upon a problem with the picketlink-authorization-idm-ldap Project.

      When adding the Role to a User (I am using the default model provided by picketlink) I get the following exception:

       

      16:43:21,288 ERROR [org.picketlink.idm.identity.store] (ServerService Thread Pool -- 79) Could not create Ldap context.: javax.naming.directory.InvalidAttributeValueException: [LDAP: error code 21 - member: value #0 invalid per syntax]; remaining name 'cn=ADMINISTRATOR,ou=Roles,dc=jboss,dc=tsi,dc=com'

        at com.sun.jndi.ldap.LdapCtx.mapErrorCode(LdapCtx.java:3100) [rt.jar:1.7.0_55]

        at com.sun.jndi.ldap.LdapCtx.processReturnCode(LdapCtx.java:3033) [rt.jar:1.7.0_55]

       

      This is cause by the missing "member" element which is a mandatory field in the ldap object "groupOfNames".

       

      All these settings are in the quickstart.

      Am I missing something substantial?

       

      I really hope I am doing something wrong...but I cannot see what.

      thanks for reading