InvalidSearchFilterException: Empty filter when Synchronising LDAP

お困りですか?

アトラシアン コミュニティをご利用ください。

コミュニティに質問

症状

When synchronising the LDAP directory, the synchronisation fails with this in logs:

atlassian-confluence.log に次のエラーが返される。

2012-01-17 13:18:48,791 ERROR [QuartzScheduler_Worker-9] [atlassian.crowd.directory.DbCachingDirectoryPoller] pollChanges Error occurred while refreshing the cache for directory [ 31031297 ].
com.atlassian.crowd.exception.OperationFailedException: java.util.concurrent.ExecutionException: com.atlassian.crowd.exception.OperationFailedException: org.springframework.ldap.InvalidSearchFilterException: Empty filter; nested exception is javax.naming.directory.InvalidSearchFilterException: Empty filter; remaining name 'DC=example,DC=com'

原因

  1. One of the following fields is blank:
    1. ユーザー オブジェクト フィルタ
    2. グループ オブジェクト フィルター
  2. Roles are enabled.  This has been deprecated for quite some time and should always be disabled.

ソリューション

For Cause 1
For Cause 2
  • Create a new LDAP directory. By default, the ldap.roles.disabled will be set to true.
  • Otherwise, disable Roles in your current LDAP directory configuration. As there is no way to do this in the interface, this will require manual database edits. Here is the SQL query to return that attribute's information:
    1. (warning)Backup your database first

      select * from cwd_directory_attribute where attribute_name = 'ldap.roles.disabled';


    2. Notice that the attribute_value column is showing false
    3. You'll want to run an update statement to set the attribute_value to true

Last modified on Mar 30, 2016

この内容はお役に立ちましたか?

はい
いいえ
この記事についてのフィードバックを送信する
Powered by Confluence and Scroll Viewport.