AnsweredAssumed Answered

AD LDAP user-sync throwing UnknownHostException: domain

Question asked by zbaumberger on Apr 28, 2010
Latest reply on May 16, 2012 by mmtman
Hi everybody,

We have setup Alfresco to synchronize users and groups with AD.

First we hit the
javax.naming.PartialResultException: Unprocessed Continuation Reference
bug decribed in ALF-2406 and patched Alfresco accordingly.

Now group sync works without problems, but user sync gives following error:


15:10:32,188 INFO  [org.alfresco.repo.security.sync.ChainingUserRegistrySynchronizer] Retrieving all users from user registry 'ldap1'                                                                    
15:10:32,207 ERROR [org.alfresco.repo.security.sync.ChainingUserRegistrySynchronizer] Synchronization aborted due to error                                                                               
org.alfresco.error.AlfrescoRuntimeException: 03280000 User and group import failed                                                                                                                       
        at org.alfresco.repo.security.sync.ldap.LDAPUserRegistry.processQuery(LDAPUserRegistry.java:1039)                                                                                                
        at org.alfresco.repo.security.sync.ldap.LDAPUserRegistry.access$2400(LDAPUserRegistry.java:74)                                                                                                   

Caused by: javax.naming.CommunicationException: domain:389 [Root exception is java.net.UnknownHostException: domain]                                                                                     
        at com.sun.jndi.ldap.LdapReferralContext.<init>(LdapReferralContext.java:74)                                                                                                                     

Caused by: java.net.UnknownHostException: domain                                                                                                                                                         
        at java.net.PlainSocketImpl.connect(PlainSocketImpl.java:177)
…                              
        at javax.naming.spi.NamingManager.getObjectInstance(NamingManager.java:316)                                                                                                                      
        at com.sun.jndi.ldap.LdapReferralContext.<init>(LdapReferralContext.java:93)
        … 56 more

Where does the LDAP subsystem get the hostname domain from?
Is it from AD?
We have a AD Domain Forrest with
kncorp.group.local beeing child of group.local domain.

thanks
Zlatko

Outcomes