Solved: configure vco authetication way to LDAP can not su...

Dimibm · ‎03-25-2014

configure vco to LDAP (openldap):

Group lookup base: ou=group,dc=admin,dc=example,dc=com (successful)

vCO Admin group: cn=admin_group,ou=group,dc=admin,dc=example,dc=com

Error:

Selected admin group is not a group or the selected LDAP client type is not appropriate.

But admin_group is a group actually, see:

[root@lsfdc1 aaa]# slapcat -s dc=example,dc=com

bdb_db_open: warning - no DB_CONFIG file found in directory /var/lib/ldap: (2).

Expect poor performance for suffix "dc=example,dc=com".

dn: dc=example,dc=com

objectClass: dcObject

objectClass: organization

objectClass: top

dc: example

o: Corporation

description: LDAP server

structuralObjectClass: organization

entryUUID: 0432c87a-4815-1033-9b4e-c92a34293f8e

creatorsName: cn=Manager,dc=example,dc=com

createTimestamp: 20140325025758Z

entryCSN: 20140325025758.919334Z#000000#000#000000

modifiersName: cn=Manager,dc=example,dc=com

modifyTimestamp: 20140325025758Z

dn: dc=admin,dc=example,dc=com

objectClass: dcObject

objectClass: organization

objectClass: top

dc: admin

o: admin

structuralObjectClass: organization

entryUUID: 043356be-4815-1033-9b4f-c92a34293f8e

creatorsName: cn=Manager,dc=example,dc=com

createTimestamp: 20140325025758Z

entryCSN: 20140325025758.922987Z#000000#000#000000

modifiersName: cn=Manager,dc=example,dc=com

modifyTimestamp: 20140325025758Z

dn: ou=user,dc=admin,dc=example,dc=com

objectClass: organizationalUnit

objectClass: top

ou: user

structuralObjectClass: organizationalUnit

entryUUID: 0433b974-4815-1033-9b50-c92a34293f8e

creatorsName: cn=Manager,dc=example,dc=com

createTimestamp: 20140325025758Z

entryCSN: 20140325025758.925516Z#000000#000#000000

modifiersName: cn=Manager,dc=example,dc=com

modifyTimestamp: 20140325025758Z

dn: ou=group,dc=admin,dc=example,dc=com

objectClass: organizationalUnit

objectClass: top

ou: group

structuralObjectClass: organizationalUnit

entryUUID: 043463f6-4815-1033-9b51-c92a34293f8e

creatorsName: cn=Manager,dc=example,dc=com

createTimestamp: 20140325025758Z

entryCSN: 20140325025758.929881Z#000000#000#000000

modifiersName: cn=Manager,dc=example,dc=com

modifyTimestamp: 20140325025758Z

dn: cn=admin_group,ou=group,dc=admin,dc=example,dc=com

objectClass: posixGroup

objectClass: top

cn: admin_group

gidNumber: 10000

memberUid: Admin

structuralObjectClass: posixGroup

entryUUID: 043475d0-4815-1033-9b52-c92a34293f8e

creatorsName: cn=Manager,dc=example,dc=com

createTimestamp: 20140325025758Z

entryCSN: 20140325025758.930339Z#000000#000#000000

modifiersName: cn=Manager,dc=example,dc=com

modifyTimestamp: 20140325025758Z

dn: uid=Admin,ou=user,dc=admin,dc=example,dc=com

objectClass: posixAccount

objectClass: top

objectClass: inetOrgPerson

gidNumber: 10000

sn: Admin

displayName: Admin

uid: Admin

homeDirectory: /home/Admin

cn: Admin

uidNumber: 10000

userPassword:: e1NTSEF9SkgzdTA3bjgrMUNqOUZSTzNqWHAxcnpJZXNISXZTL1c=

loginShell: /bin/sh

structuralObjectClass: inetOrgPerson

entryUUID: 0436d0b4-4815-1033-9b53-c92a34293f8e

creatorsName: cn=Manager,dc=example,dc=com

createTimestamp: 20140325025758Z

entryCSN: 20140325025758.945771Z#000000#000#000000

modifiersName: cn=Manager,dc=example,dc=com

modifyTimestamp: 20140325025758Z

dn: uid=pcmae_user,dc=admin,dc=example,dc=com

objectClass: posixAccount

objectClass: top

objectClass: inetOrgPerson

gidNumber: 0

sn: pcmae_user

displayName: pcmae_user

uid: pcmae_user

homeDirectory: /tmp

cn: pcmae_user

uidNumber: 10001

userPassword:: MmY3MjU0ZGM=

loginShell: /bin/sh

structuralObjectClass: inetOrgPerson

entryUUID: 0439839a-4815-1033-9b54-c92a34293f8e

creatorsName: cn=Manager,dc=example,dc=com

createTimestamp: 20140325025758Z

entryCSN: 20140325025758.963459Z#000000#000#000000

modifiersName: cn=Manager,dc=example,dc=com

modifyTimestamp: 20140325025758Z

dn: cn=vmware,ou=group,dc=admin,dc=example,dc=com

objectClass: posixGroup

objectClass: top

cn: vmware

memberUid: Admin

gidNumber: 11577

structuralObjectClass: posixGroup

entryUUID: f228f69c-4826-1033-8a78-17f207c52dd8

creatorsName: cn=Manager,dc=example,dc=com

createTimestamp: 20140325050619Z

entryCSN: 20140325050619.597137Z#000000#000#000000

modifiersName: cn=Manager,dc=example,dc=com

modifyTimestamp: 20140325050619Z

dn: cn=vco,dc=admin,dc=example,dc=com

objectClass: posixGroup

objectClass: top

cn: vco

memberUid: Admin

gidNumber: 1906

structuralObjectClass: posixGroup

entryUUID: c1f36a8c-4828-1033-8a79-17f207c52dd8

creatorsName: cn=Manager,dc=example,dc=com

createTimestamp: 20140325051917Z

entryCSN: 20140325051917.709032Z#000000#000#000000

modifiersName: cn=Manager,dc=example,dc=com

modifyTimestamp: 20140325051917Z

dn: cn=abc,dc=admin,dc=example,dc=com

objectClass: groupOfUniqueNames

objectClass: top

cn: abc

uniqueMember: uid=Admin,ou=user,dc=admin,dc=example,dc=com

structuralObjectClass: groupOfUniqueNames

entryUUID: 6cedd136-4831-1033-8a7a-17f207c52dd8

creatorsName: cn=Manager,dc=example,dc=com

createTimestamp: 20140325062120Z

entryCSN: 20140325062120.536569Z#000000#000#000000

modifiersName: cn=Manager,dc=example,dc=com

modifyTimestamp: 20140325062120Z

Anyone can tell me what's wrong I have?

cdecanini_ · ‎03-25-2014

You have the wrong object class for group. vCO uses groupOfNames

If my answer resolved or helped you, please mark it as Correct or Helpful to award points. Thank you! Visit http://www.vcoteam.info & http://blogs.vmware.com/orchestrator for vCenter Orchestrator tips and tutorials - @vCOTeam on Twitter

View solution in original post

cdecanini_ · ‎03-25-2014

You have the wrong object class for group. vCO uses groupOfNames

If my answer resolved or helped you, please mark it as Correct or Helpful to award points. Thank you! Visit http://www.vcoteam.info & http://blogs.vmware.com/orchestrator for vCenter Orchestrator tips and tutorials - @vCOTeam on Twitter

Dimibm · ‎03-25-2014

Thanks, object class must be groupOfNames

All

configure vco authetication way to LDAP can not successful,Anyone can tell me what's wrong I have