Troubleshooting
Problem
Some Maximo users can't login with LDAP
Symptom
The below error thrown when users are trying to login
UserRegistryI E SECJ0363E: Cannot create credential for the user first.last because of the following exception com.ibm.websphere.wim.exception.WIMSystemException: CWWIM4520E The 'javax.naming.PartialResultException: [LDAP: error code 10 - 0000202B: RefErr: DSID-03100641, data 0, 1 access points ref 1: 'site.xxx.com' \u0000]; Remaining name: 'CN=name,OU=operating,OU=users,DC=domain,DC=xxx,DC=com'; Resolved object: 'com.sun.jndi.ldap.LdapCtx@b310b31'' naming exception occurred during processing.
Cause
Need to enable the LDAP referrals
Resolving The Problem
1.Login to WebSphere console
2.Go to Security
3.Global Security
4.Federated repositories
5.Manage repositories
6.Click on the Repository identifier (do this for both configured identifiers)
7.Under "Support referrals to other LDAP servers", change from ignore to follow. Save changes.
8.Stop NodeAgent run syncnode
C:\Program Files\IBM\WebSphere\AppServer\profiles\ctgAppSrv01\bin>syncnode server.ibm.com 8879 -username wasadmin -password xxxxx
9. Restart NodeAgent
10. Restart the application server
Was this topic helpful?
Document Information
Modified date:
17 June 2018
UID
swg21661428