LDAP:错误代码50 - 输入uid = test @ info.com,ou = People,o = Drive,dc = company,dc = com由于访问权限不足,无法添加 [英] LDAP: error code 50 - The entry uid=test@info.com,ou=People,o=Drive,dc=company,dc=com cannot be added due to insufficient access rights
问题描述
我正在尝试将帐户添加到运行Windows的OpenDS。
我使用的是spring,opends2.2.1,hibernate和Jboss 5.1
当我尝试添加用户时,出现以下错误。
I am trying to add account to OpenDS running of windows. I am using spring, opends2.2.1, hibernate and Jboss 5.1 When I tried to add the user, I get the following errors.
javax.faces.FacesException: #{user.save}: org.springframework.ldap.UncategorizedLdapException: Operation failed; nested exception is javax.naming.NoPermissionException: [LDAP: error code 50 - The entry uid=test@info.com,ou=People,o=Drive,dc=company,dc=com cannot be added due to insufficient access rights]; remaining name 'uid=test@info.com, ou=People, o=Drive'
at com.sun.faces.application.ActionListenerImpl.processAction(ActionListenerImpl.java:118)
at javax.faces.component.UICommand.broadcast(UICommand.java:315)
at javax.faces.component.UIViewRoot.broadcastEvents(UIViewRoot.java:794)
at javax.faces.component.UIViewRoot.processApplication(UIViewRoot.java:1259)
at com.sun.faces.lifecycle.InvokeApplicationPhase.execute(InvokeApplicationPhase.java:81)
at com.sun.faces.lifecycle.Phase.doPhase(Phase.java:101)
at com.sun.faces.lifecycle.LifecycleImpl.execute(LifecycleImpl.java:118)
at javax.faces.webapp.FacesServlet.service(FacesServlet.java:593)
at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:290)
at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
at org.jboss.web.tomcat.filters.ReplyHeaderFilter.doFilter(ReplyHeaderFilter.java:96)
at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:235)
at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:191)
at org.jboss.web.tomcat.security.SecurityAssociationValve.invoke(SecurityAssociationValve.java:190)
at org.jboss.web.tomcat.security.JaccContextValve.invoke(JaccContextValve.java:92)
at org.jboss.web.tomcat.security.SecurityContextEstablishmentValve.process(SecurityContextEstablishmentValve.java:126)
at org.jboss.web.tomcat.security.SecurityContextEstablishmentValve.invoke(SecurityContextEstablishmentValve.java:70)
at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127)
at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:102)
at org.jboss.web.tomcat.service.jca.CachedConnectionValve.invoke(CachedConnectionValve.java:158)
at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:109)
at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:330)
at org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:829)
at org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandler.process(Http11Protocol.java:598)
at org.apache.tomcat.util.net.JIoEndpoint$Worker.run(JIoEndpoint.java:447)
at java.lang.Thread.run(Thread.java:619)
推荐答案
您需要将 password-reset 特权赋予useradmin(或用户,您尝试更改密码):
You need to give the password-reset privilege to useradmin (or to the user you try to change password with):
请参阅: https://backstage.forgerock.com/#!/docs/opendj/3/admin-guide#about-privileges
例如,为了重置用户的密码,管理员
需要password-reset特权并且访问控制权限为
在用户条目中写入userPassword值。
"For example, in order to reset user's passwords, an administrator needs both the
password-resetprivilege and also access control to writeuserPasswordvalues on the user entries."
这篇关于LDAP:错误代码50 - 输入uid = test @ info.com,ou = People,o = Drive,dc = company,dc = com由于访问权限不足,无法添加的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持IT屋!
