Shibboleth Developers

[Daniel Fisher <>]

On Tue, Jun 7, 2011 at 8:08 PM, Dan McLaughlin
<>
 wrote:
> Hi Daniel,
>
> I don't have a test eDir server on the outside, but I'd be surprised
> if I couldn't reproduce it with OpenLDAP.
>

Post an LDIF that's representative of your data.

> By the way... after upgrading to 2.3.0 in our Development environment.
>  LDAP authentication fails unless I roll back to the vt-ldap jar to
> the 3.3.2 release.
>
> 18:34:46.916 - DEBUG
> [edu.vt.middleware.ldap.auth.SearchDnResolver:173] - User input was
> empty or null

The username was either empty or null, and

> 18:34:46.917 - DEBUG [edu.vt.middleware.ldap.jaas.LdapLoginModule:136]
> - Authentication failed
> javax.naming.AuthenticationException: Cannot authenticate dn, invalid 
> credential
>        at 
> edu.vt.middleware.ldap.auth.AbstractAuthenticator.authenticateAndAuthorize(AbstractAuthenticator.java:154)
>

the password was also either empty or null.

> If I roll back only the vt-ldap.jar  to the 3.3.2 release and change
> nothing else, then the same exact login works fine...
>

This time the login module received jdoe with a correct password.

--Daniel Fisher