000024398 - Active Directory Identity source doesn't find expected users.

Document created by RSA Customer Support Employee on Jun 14, 2016Last modified by RSA Customer Support Employee on Apr 21, 2017
Version 2Show Document
  • View in full screen mode

Article Content

Article Number000024398
Applies ToAuthentication Manager 7.0
Microsoft Windows 2003 Server SP1
Microsoft Active Directory 2003
IssueActive Directory Identity source doesn't find expected users.
Exception written to the servername_server.log file:


javax.naming.PartialResultException: Unprocessed Continuation Reference(s); remaining name 'dc=tree1,dc=com'
at com.sun.jndi.ldap.LdapCtx.processReturnCode(LdapCtx.java:2763)
at com.sun.jndi.ldap.LdapCtx.processReturnCode(LdapCtx.java:2737)
at com.sun.jndi.ldap.LdapNamingEnumeration.getNextBatch(LdapNamingEnumeration.java:129)
at com.sun.jndi.ldap.LdapNamingEnumeration.hasMoreImpl(LdapNamingEnumeration.java:198)
at com.sun.jndi.ldap.LdapNamingEnumeration.hasMore(LdapNamingEnumeration.java:171)
at com.rsa.ims.admin.dal.ldap.PrincipalAccessLDAP.searchPrincipal(PrincipalAccessLDAP.java:478)
at com.rsa.ims.admin.impl.PrincipalAdministrationImpl.search(PrincipalAdministrationImpl.java:89)
at com.rsa.ims.admin.impl.PrincipalAdministrationImpl.search(PrincipalAdministrationImpl.java:228)
at jrockit.reflect.VirtualNativeMethodInvoker.invoke(Ljava.lang.Object;[Ljava.lang.Object;)Ljava.lang.Object;(Unknown Source)
at java.lang.reflect.Method.invoke(Ljava.lang.Object;[Ljava.lang.Object;I)Ljava.lang.Object;(Unknown Source)
at org.springframework.aop.support.AopUtils.invokeJoinpointUsingReflection(AopUtils.java:292)
at org.springframework.aop.framework.JdkDynamicAopProxy.invoke(JdkDynamicAopProxy.java:163)
at $Proxy3.search(Lcom.rsa.common.GUID;ZLcom.rsa.common.GUID;Lcom.rsa.common.search.Filter;I)[Lcom.rsa.ims.admin.Principal;(Unknown Source)
at com.rsa.admin.SearchPrincipalsCommand.performExecute(SearchPrincipalsCommand.java:111)
at com.rsa.command.LocalTarget.executeCommand(LocalTarget.java:7)
at com.rsa.ims.command.LocalTransactionalCommandTarget.access$001(LocalTransactionalCommandTarget.java:25)
at com.rsa.ims.command.LocalTransactionalCommandTarget$1.doInTransaction(LocalTransactionalCommandTarget.java:3)
at org.springframework.transaction.support.TransactionTemplate.execute(TransactionTemplate.java:114)
at com.rsa.ims.command.LocalTransactionalCommandTarget.executeCommand(LocalTransactionalCommandTarget.java:35)
at com.rsa.command.CommandServerBean$2.run(CommandServerBean.java:0)
at com.rsa.ims.security.spi.SimpleSecurityContextImpl.doAs(SimpleSecurityContextImpl.java:13)
at com.rsa.security.SecurityContext.doAs(SecurityContext.java:53)
at com.rsa.command.CommandServerBean.executeCommand(CommandServerBean.java:34)
>
####<Oct 26, 2006 3:18:51 PM PDT> <Info> <ServletContext-/console-ims> <mkoch11-w2k3> <mkoch11-w2k3_server> <[ACTIVE] ExecuteThread: '22' for queue: 'weblogic.kernel.Default (self-tuning)'> <<anonymous>> <> <> <1161901131562> <000000> <Forwarding to target URL by default>
####<Oct 26, 2006 3:18:59 PM PDT> <Error> <Cluster> <mkoch11-w2k3> <mkoch11-w2k3_server> <[ACTIVE] ExecuteThread: '25' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1161901139234> <BEA-000170> <Server mkoch11-w2k3_server did not receive the multicast packets that were sent by itself>
####<Oct 26, 2006 3:18:59 PM PDT> <Critical> <Health> <mkoch11-w2k3> <mkoch11-w2k3_server> <[ACTIVE] ExecuteThread: '22' for queue: 'weblogic.kernel.Default (self-tuning)'> <<WLS Kernel>> <> <> <1161901139266> <BEA-310006> <Critical Subsystem Cluster has failed. Setting server state to FAILED.
Reason: Unable to receive self generated multicast messages>
CauseAuthentication Manager 7.0 doesn't support Active Directory referrals.
ResolutionCheck the base DN defined for the Identity Source.  The operation will fail If you are trying to capture users in an OU for a child domain but binding to the top level of the parent domain.  Change the base DN to point to the OU that contains the users on the child domain and it should work fine.
Legacy Article IDa32347

Attachments

    Outcomes