1

我正在尝试从 Ldap 服务器导入用户。

这是我的 Ldap 用户:

在此处输入图像描述

Liferay 门户 ldap 设置:

在此处输入图像描述

在此处输入图像描述

在此处输入图像描述

在此处输入图像描述

通过单击“测试 Ldap 用户”,也会显示用户。 在此处输入图像描述 问题是 liferay 日志文件中没有错误,但没有用户正在导入我做错了什么。任何帮助将不胜感激。

更新:

05:47:16,332 DEBUG [http-bio-8787-exec-7][PortalLDAPUtil:41] -- listing properties --__java.naming.factory.initial=com.sun.jndi.ldap.LdapCtxFactory__java.naming.provider.url=ldap://142.56.23.10:389/__com.sun.jndi.ldap.connect.timeout=500__java.naming.security.principal=cn=Directory Manager__com.sun.jndi.ldap.connect.pool=true__java.naming.security.credentials=cpassword__java.naming.referral=follow__com.sun.jndi.ldap.read.timeout=15000__ [Sanitized]
05:48:28,710 DEBUG [liferay/scheduler_dispatch-1][PortalLDAPUtil:41] -- listing properties --__java.naming.factory.initial=com.sun.jndi.ldap.LdapCtxFactory__java.naming.provider.url=ldap://142.56.23.10:389/__com.sun.jndi.ldap.connect.timeout=500__java.naming.security.principal=cn=Directory Manager__com.sun.jndi.ldap.connect.pool=true__java.naming.security.credentials=cpassword__java.naming.referral=follow__com.sun.jndi.ldap.read.timeout=15000__ [Sanitized]
05:48:28,714 DEBUG [liferay/scheduler_dispatch-1][LDAPSettingsUtil:41] -- listing properties --__password=userPassword__lastName=sn__screenName=uid__firstName=givenName__emailAddress=mail__ [Sanitized]
05:48:28,714 DEBUG [liferay/scheduler_dispatch-1][LDAPSettingsUtil:41] -- listing properties --__ [Sanitized]
05:48:28,715 DEBUG [liferay/scheduler_dispatch-1][LDAPSettingsUtil:41] -- listing properties --__ [Sanitized]
05:48:28,715 DEBUG [liferay/scheduler_dispatch-1][LDAPSettingsUtil:41] -- listing properties --__ [Sanitized]
05:48:28,715 DEBUG [liferay/scheduler_dispatch-1][LDAPSettingsUtil:41] -- listing properties --__ [Sanitized]
05:48:28,717 DEBUG [liferay/scheduler_dispatch-1][LDAPSettingsUtil:41] -- listing properties --__password=userPassword__lastName=sn__screenName=uid__firstName=givenName__emailAddress=mail__ [Sanitized]
05:48:28,718 DEBUG [liferay/scheduler_dispatch-1][LDAPSettingsUtil:41] -- listing properties --__ [Sanitized]
05:48:28,718 DEBUG [liferay/scheduler_dispatch-1][LDAPSettingsUtil:41] -- listing properties --__ [Sanitized]
05:48:28,719 DEBUG [liferay/scheduler_dispatch-1][LDAPSettingsUtil:41] -- listing properties --__ [Sanitized]
05:48:28,721 DEBUG [liferay/scheduler_dispatch-1][PortalLDAPUtil:593] LDAP user attribute sn: Amar
05:48:28,722 DEBUG [liferay/scheduler_dispatch-1][PortalLDAPUtil:593] LDAP user attribute userPassword: [B@d586ba
05:48:28,722 DEBUG [liferay/scheduler_dispatch-1][PortalLDAPUtil:593] LDAP user attribute uid: user.0
05:48:28,722 DEBUG [liferay/scheduler_dispatch-1][PortalLDAPUtil:593] LDAP user attribute givenName: Aaccf
05:48:28,723 DEBUG [liferay/scheduler_dispatch-1][PortalLDAPUtil:593] LDAP user attribute mail: user.0@maildomain.net
05:48:28,723 DEBUG [liferay/scheduler_dispatch-1][DefaultLDAPToPortalConverter:102] Screen name user.0 and email address user.0@maildomain.net
05:48:28,723 INFO  [liferay/scheduler_dispatch-1][PortalLDAPImporterImpl:1226] Skipping user user.0@maildomain.net because the LDAP entry was never modified
05:48:28,738 DEBUG [liferay/scheduler_dispatch-1][PortalLDAPUtil:41] -- listing properties --__java.naming.factory.initial=com.sun.jndi.ldap.LdapCtxFactory__java.naming.provider.url=ldap://142.56.23.10:389/__com.sun.jndi.ldap.connect.timeout=500__java.naming.security.principal=cn=Directory Manager__com.sun.jndi.ldap.connect.pool=true__java.naming.security.credentials=cpassword__java.naming.referral=follow__com.sun.jndi.ldap.read.timeout=15000__ [Sanitized]
05:48:28,738 DEBUG [liferay/scheduler_dispatch-1][LDAPSettingsUtil:41] -- listing properties --__password=userPassword__lastName=sn__screenName=uid__firstName=givenName__emailAddress=mail__ [Sanitized]
4

2 回答 2

1

您可以通过调高日志级别以调试 ldap 相关的包/类来进一步解决此问题。在生产中执行此操作时要非常小心,因为日志很快就会填满。

  1. Control Panel > Server Administration > Log Levels

  2. 将日志级别设置为“ ALL”以获取以下内容:

    • com.liferay.portal.security.auth.LDAPAuth
    • com.liferay.portal.security.ldap
    • com.liferay.portal.security.ldap.PortalLDAPUtil

  3. 点击“ Add Category”按钮

  4. 添加“ com.liferay.portal.security.ldap.PortalLDAPImporter”与“ ALL”日志级别

    1. 检查日志。

以上日志级别帮助我多次调试 LDAP 导入问题。您还可以使用 Tobias 的建议进行测试,也可以test user import在日志处于调试级别时单击按钮,让您了解正在发生的事情。

您还应该验证个人用户导入是否在登录时发生(通过登录然后检查日志)。

您可以按照上述过程手动重新启动服务器或将级别恢复到之前的级别,将日志级别重置为默认值。

希望这可以帮助。

于 2015-12-01T20:00:06.347 回答
0

默认情况下,OpenDJ 具有访问日志(日志/访问),其中包含建立连接时的消息,以及在这些连接上发生的操作的一些详细信息。

于 2015-12-01T15:53:04.457 回答