Support Questions
Find answers, ask questions, and share your expertise
Announcements
Alert: Welcome to the Unified Cloudera Community. Former HCC members be sure to read and learn how to activate your account here.

Ranger Usersync Error with LDAP

Highlighted

Ranger Usersync Error with LDAP

Explorer

Hello,

I see below Error when we are tying configure LDAP on Ranger

UserGroupSync [UnixUserSyncThread] - Done initializing user/group source and sink 27 Oct 2016 23:06:22 INFO UserGroupSync [UnixUserSyncThread] - Begin: update user/group from source==>sink 27 Oct 2016 23:06:22 INFO LdapUserGroupBuilder [UnixUserSyncThread] - LDAPUserGroupBuilder updateSink started 27 Oct 2016 23:06:22 INFO LdapUserGroupBuilder [UnixUserSyncThread] - Performing user search first 27 Oct 2016 23:06:23 ERROR UserGroupSync [UnixUserSyncThread] - Failed to synchronize UserGroup information. Error details: javax.naming.AuthenticationException: [LDAP: error code 49 - 80090308: LdapErr: DSID-0C0903C9, comment: AcceptSecurityContext error, data 775, v23f0]; remaining name 'ou=mycompany,dc=corp,dc=XXXX,dc=com' at com.sun.jndi.ldap.LdapCtx.mapErrorCode(LdapCtx.java:3135) at com.sun.jndi.ldap.LdapCtx.processReturnCode(LdapCtx.java:3081) at com.sun.jndi.ldap.LdapCtx.processReturnCode(LdapCtx.java:2883) at com.sun.jndi.ldap.LdapCtx.connect(LdapCtx.java:2797) at com.sun.jndi.ldap.LdapCtx.ensureOpen(LdapCtx.java:2696) at com.sun.jndi.ldap.LdapCtx.ensureOpen(LdapCtx.java:2670) at com.sun.jndi.ldap.LdapCtx.doSearch(LdapCtx.java:1941) at com.sun.jndi.ldap.LdapCtx.searchAux(LdapCtx.java:1844) at com.sun.jndi.ldap.LdapCtx.c_search(LdapCtx.java:1769) at com.sun.jndi.toolkit.ctx.ComponentDirContext.p_search(ComponentDirContext.java:392) at com.sun.jndi.toolkit.ctx.PartialCompositeDirContext.search(PartialCompositeDirContext.java:358) at com.sun.jndi.toolkit.ctx.PartialCompositeDirContext.search(PartialCompositeDirContext.java:341) at javax.naming.directory.InitialDirContext.search(InitialDirContext.java:267) at org.apache.ranger.ldapusersync.process.LdapUserGroupBuilder.getUsers(LdapUserGroupBuilder.java:404) at org.apache.ranger.ldapusersync.process.LdapUserGroupBuilder.updateSink(LdapUserGroupBuilder.java:318) at org.apache.ranger.usergroupsync.UserGroupSync.syncUserGroup(UserGroupSync.java:113) at org.apache.ranger.usergroupsync.UserGroupSync.run(UserGroupSync.java:87) at java.lang.Thread.run(Thread.java:745)

I google LdapErr: DSID-0C0903C9, comment: AcceptSecurityContext error, data 775, v23f0 error is about invalid credentials but i am able to login to another application using bind userid/password.

Please suggest.

Thanks,

Ajay

1 REPLY 1
Highlighted

Re: Ranger Usersync Error with LDAP

@Ajay K

Can you follow the link and re-check the config settings for ugsync -

https://community.hortonworks.com/content/kbentry/16696/ranger-ldap-integration.html

Don't have an account?
Coming from Hortonworks? Activate your account here