<div dir="ltr"><div><div><div><div><div>Hello Ondra and everybody,<br><br></div>It works with my other user:<br><br>engine-manage-domains add --domain=siee.local --provider=ad --user=juanjo --add-permissions<br>Enter password:<br>Successfully added domain siee.local. oVirt Engine restart is required in order for the changes to take place (service ovirt-engine restart).<br>Manage Domains completed successfully<br><br></div>But after restarted ovirt-engine if I try to loging with "juanjo" in the administrator portal and I receive the error "General command validation failure", as you can see in the attached image.<br><br></div>I'm showing below the engine.log lines with the error:<br><br>2014-11-25 12:54:10,680 ERROR [org.ovirt.engine.extensions.aaa.builtin.kerberosldap.GSSAPIDirContextAuthenticationStrategy] (ajp--127.0.0.1-8702-5) Kerberos error: Pre-authentication information was invalid (24)<br>2014-11-25 12:54:10,681 ERROR [org.ovirt.engine.extensions.aaa.builtin.kerberosldap.GSSAPIDirContextAuthenticationStrategy] (ajp--127.0.0.1-8702-5) Authentication Failed. Please verify the username and password.<br>2014-11-25 12:54:10,687 ERROR [org.ovirt.engine.extensions.aaa.builtin.kerberosldap.DirectorySearcher] (ajp--127.0.0.1-8702-5) Failed ldap search server ldap://adserver.siee.local:389 using user juanjo@SIEE.LOCAL due to Authentication Failed. Please verify the username and password.. We should not try the next server<br>2014-11-25 12:54:10,688 ERROR [org.ovirt.engine.extensions.aaa.builtin.kerberosldap.LdapBrokerCommandBase] (ajp--127.0.0.1-8702-5) Failed to run command LdapGetAdUserByUserNameCommand. Domain is siee.local. User is juanjo@SIEE.LOCAL.<br>2014-11-25 12:54:10,689 ERROR [org.ovirt.engine.core.bll.aaa.LoginAdminUserCommand] (ajp--127.0.0.1-8702-5) Error during CanDoActionFailure.: Class: class org.ovirt.engine.core.extensions.mgr.ExtensionInvokeCommandFailedException<br>Input:<br>{Extkey[name=EXTENSION_INVOKE_CONTEXT;type=class org.ovirt.engine.api.extensions.ExtMap;uuid=EXTENSION_INVOKE_CONTEXT[886d2ebb-312a-49ae-9cc3-e1f849834b7d];]={Extkey[name=EXTENSION_INTERFACE_VERSION_MAX;type=class java.lang.Integer;uuid=EXTENSION_INTERFACE_VERSION_MAX[f4cff49f-2717-4901-8ee9-df362446e3e7];]=0, Extkey[name=EXTENSION_LICENSE;type=class java.lang.String;uuid=EXTENSION_LICENSE[8a61ad65-054c-4e31-9c6d-1ca4d60a4c18];]=ASL 2.0, Extkey[name=EXTENSION_HOME_URL;type=class java.lang.String;uuid=EXTENSION_HOME_URL[4ad7a2f4-f969-42d4-b399-72d192e18304];]=<a href="http://www.ovirt.org">http://www.ovirt.org</a>, Extkey[name=EXTENSION_LOCALE;type=class java.lang.String;uuid=EXTENSION_LOCALE[0780b112-0ce0-404a-b85e-8765d778bb29];]=en_US, Extkey[name=EXTENSION_NAME;type=class java.lang.String;uuid=EXTENSION_NAME[651381d3-f54f-4547-bf28-b0b01a103184];]=Kerberos/Ldap Authz (Built-in), Extkey[name=EXTENSION_INTERFACE_VERSION_MIN;type=class java.lang.Integer;uuid=EXTENSION_INTERFACE_VERSION_MIN[2b84fc91-305b-497b-a1d7-d961b9d2ce0b];]=0, Extkey[name=EXTENSION_CONFIGURATION;type=class java.util.Properties;uuid=EXTENSION_CONFIGURATION[2d48ab72-f0a1-4312-b4ae-5068a226b0fc];]=***, Extkey[name=EXTENSION_AUTHOR;type=class java.lang.String;uuid=EXTENSION_AUTHOR[ef242f7a-2dad-4bc5-9aad-e07018b7fbcc];]=The oVirt Project, Extkey[name=AAA_AUTHZ_QUERY_MAX_FILTER_SIZE;type=class java.lang.Integer;uuid=AAA_AUTHZ_QUERY_MAX_FILTER_SIZE[2eb1f541-0f65-44a1-a6e3-014e247595f5];]=100, Extkey[name=EXTENSION_INSTANCE_NAME;type=class java.lang.String;uuid=EXTENSION_INSTANCE_NAME[65c67ff6-aeca-4bd5-a245-8674327f011b];]=siee.local, Extkey[name=EXTENSION_BUILD_INTERFACE_VERSION;type=class java.lang.Integer;uuid=EXTENSION_BUILD_INTERFACE_VERSION[cb479e5a-4b23-46f8-aed3-56a4747a8ab7];]=0, Extkey[name=AAA_AUTHZ_CAPABILITIES;type=class java.lang.Long;uuid=AAA_AUTHZ_CAPABILITIES[6106d1fb-9291-4351-a947-b897b9540a23];]=1, Extkey[name=EXTENSION_CONFIGURATION_SENSITIVE_KEYS;type=interface java.util.Collection;uuid=EXTENSION_CONFIGURATION_SENSITIVE_KEYS[a456efa1-73ff-4204-9f9b-ebff01e35263];]=[], Extkey[name=EXTENSION_GLOBAL_CONTEXT;type=class org.ovirt.engine.api.extensions.ExtMap;uuid=EXTENSION_GLOBAL_CONTEXT[9799e72f-7af6-4cf1-bf08-297bc8903676];]=*skip*, Extkey[name=EXTENSION_VERSION;type=class java.lang.String;uuid=EXTENSION_VERSION[fe35f6a8-8239-4bdb-ab1a-af9f779ce68c];]=N/A, Extkey[name=AAA_AUTHZ_AVAILABLE_NAMESPACES;type=interface java.util.Collection;uuid=AAA_AUTHZ_AVAILABLE_NAMESPACES[6dffa34c-955f-486a-bd35-0a272b45a711];]=[*], Extkey[name=EXTENSION_MANAGER_TRACE_LOG;type=interface org.slf4j.Logger;uuid=EXTENSION_MANAGER_TRACE_LOG[863db666-3ea7-4751-9695-918a3197ad83];]=org.slf4j.impl.Slf4jLogger(org.ovirt.engine.core.extensions.mgr.ExtensionsManager.trace.Kerberos/Ldap Authz (Built-in).siee.local), Extkey[name=EXTENSION_PROVIDES;type=interface java.util.Collection;uuid=EXTENSION_PROVIDES[8cf373a6-65b5-4594-b828-0e275087de91];]=[org.ovirt.engine.api.extensions.aaa.Authz]}, Extkey[name=AAA_AUTHZ_QUERY_FLAGS;type=class java.lang.Integer;uuid=AAA_AUTHZ_QUERY_FLAGS[97d226e9-8d87-49a0-9a7f-af689320907b];]=3, Extkey[name=EXTENSION_INVOKE_COMMAND;type=class org.ovirt.engine.api.extensions.ExtUUID;uuid=EXTENSION_INVOKE_COMMAND[485778ab-bede-4f1a-b823-77b262a2f28d];]=AAA_AUTHZ_FETCH_PRINCIPAL_RECORD[5a5bf9bb-9336-4376-a823-26efe1ba26df], Extkey[name=AAA_AUTHN_AUTH_RECORD;type=class org.ovirt.engine.api.extensions.ExtMap;uuid=AAA_AUTHN_AUTH_RECORD[e9462168-b53b-44ac-9af5-f25e1697173e];]={Extkey[name=AAA_AUTHN_AUTH_RECORD_PRINCIPAL;type=class java.lang.String;uuid=AAA_AUTHN_AUTH_RECORD_PRINCIPAL[c3498f07-11fe-464c-958c-8bd7490b119a];]=juanjo}}<br>Output:<br>{Extkey[name=EXTENSION_INVOKE_RESULT;type=class java.lang.Integer;uuid=EXTENSION_INVOKE_RESULT[0909d91d-8bde-40fb-b6c0-099c772ddd4e];]=2, Extkey[name=AAA_AUTHZ_STATUS;type=class java.lang.Integer;uuid=AAA_AUTHZ_STATUS[566f0ba5-8329-4de1-952a-7a81e4bedd3e];]=1}<br><br> at org.ovirt.engine.core.extensions.mgr.ExtensionProxy.invoke(ExtensionProxy.java:91) [extensions-manager.jar:]<br> at org.ovirt.engine.core.extensions.mgr.ExtensionProxy.invoke(ExtensionProxy.java:109) [extensions-manager.jar:]<br> at org.ovirt.engine.core.aaa.AuthzUtils.fetchPrincipalRecordImpl(AuthzUtils.java:51) [aaa.jar:]<br> at org.ovirt.engine.core.aaa.AuthzUtils.fetchPrincipalRecord(AuthzUtils.java:42) [aaa.jar:]<br> at org.ovirt.engine.core.bll.aaa.LoginBaseCommand.isUserCanBeAuthenticated(LoginBaseCommand.java:234) [bll.jar:]<br> at org.ovirt.engine.core.bll.aaa.LoginAdminUserCommand.canDoAction(LoginAdminUserCommand.java:15) [bll.jar:]<br> at org.ovirt.engine.core.bll.CommandBase.internalCanDoAction(CommandBase.java:744) [bll.jar:]<br> at org.ovirt.engine.core.bll.CommandBase.executeAction(CommandBase.java:338) [bll.jar:]<br> at org.ovirt.engine.core.bll.Backend.login(Backend.java:575) [bll.jar:]<br> at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) [rt.jar:1.7.0_51]<br> at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:57) [rt.jar:1.7.0_51]<br> at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43) [rt.jar:1.7.0_51]<br> at java.lang.reflect.Method.invoke(Method.java:606) [rt.jar:1.7.0_51]<br> at org.jboss.as.ee.component.ManagedReferenceMethodInterceptorFactory$ManagedReferenceMethodInterceptor.processInvocation(ManagedReferenceMethodInterceptorFactory.java:72) [jboss-as-ee-7.1.1.Final.jar:7.1.1.Final]<br> at org.jboss.invocation.InterceptorContext.proceed(InterceptorContext.java:288) [jboss-invocation-1.1.1.Final.jar:1.1.1.Final]<br> at org.jboss.invocation.InterceptorContext$Invocation.proceed(InterceptorContext.java:374) [jboss-invocation-1.1.1.Final.jar:1.1.1.Final]<br> at org.jboss.as.weld.ejb.Jsr299BindingsInterceptor.delegateInterception(Jsr299BindingsInterceptor.java:114) [jboss-as-weld-7.1.1.Final.jar:7.1.1.Final]<br> at org.jboss.as.weld.ejb.Jsr299BindingsInterceptor.doMethodInterception(Jsr299BindingsInterceptor.java:125) [jboss-as-weld-7.1.1.Final.jar:7.1.1.Final]<br> at org.jboss.as.weld.ejb.Jsr299BindingsInterceptor.processInvocation(Jsr299BindingsInterceptor.java:135) [jboss-as-weld-7.1.1.Final.jar:7.1.1.Final]<br> at org.jboss.as.ee.component.interceptors.UserInterceptorFactory$1.processInvocation(UserInterceptorFactory.java:36) [jboss-as-ee-7.1.1.Final.jar:7.1.1.Final]<br> at org.jboss.invocation.InterceptorContext.proceed(InterceptorContext.java:288) [jboss-invocation-1.1.1.Final.jar:1.1.1.Final]<br> at org.jboss.invocation.InterceptorContext$Invocation.proceed(InterceptorContext.java:374) [jboss-invocation-1.1.1.Final.jar:1.1.1.Final]<br> at org.ovirt.engine.core.bll.interceptors.ThreadLocalSessionCleanerInterceptor.injectWebContextToThreadLocal(ThreadLocalSessionCleanerInterceptor.java:13) [bll.jar:]<br> at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) [rt.jar:1.7.0_51]<br> at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:57) [rt.jar:1.7.0_51]<br> at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43) [rt.jar:1.7.0_51]<br> at java.lang.reflect.Method.invoke(Method.java:606) [rt.jar:1.7.0_51]<br> at org.jboss.as.ee.component.ManagedReferenceLifecycleMethodInterceptorFactory$ManagedReferenceLifecycleMethodInterceptor.processInvocation(ManagedReferenceLifecycleMethodInterceptorFactory.java:123) [jboss-as-ee-7.1.1.Final.jar:7.1.1.Final]<br> at org.jboss.invocation.InterceptorContext.proceed(InterceptorContext.java:288) [jboss-invocation-1.1.1.Final.jar:1.1.1.Final]<br> at org.jboss.invocation.WeavedInterceptor.processInvocation(WeavedInterceptor.java:53) [jboss-invocation-1.1.1.Final.jar:1.1.1.Final]<br> at org.jboss.as.ee.component.interceptors.UserInterceptorFactory$1.processInvocation(UserInterceptorFactory.java:36) [jboss-as-ee-7.1.1.Final.jar:7.1.1.Final]<br> at org.jboss.invocation.InterceptorContext.proceed(InterceptorContext.java:288) [jboss-invocation-1.1.1.Final.jar:1.1.1.Final]<br> at org.jboss.as.weld.ejb.EjbRequestScopeActivationInterceptor.processInvocation(EjbRequestScopeActivationInterceptor.java:82) [jboss-as-weld-7.1.1.Final.jar:7.1.1.Final]<br> at org.jboss.invocation.InterceptorContext.proceed(InterceptorContext.java:288) [jboss-invocation-1.1.1.Final.jar:1.1.1.Final]<br> at org.jboss.invocation.InitialInterceptor.processInvocation(InitialInterceptor.java:21) [jboss-invocation-1.1.1.Final.jar:1.1.1.Final]<br> at org.jboss.invocation.InterceptorContext.proceed(InterceptorContext.java:288) [jboss-invocation-1.1.1.Final.jar:1.1.1.Final]<br> at org.jboss.invocation.ChainedInterceptor.processInvocation(ChainedInterceptor.java:61) [jboss-invocation-1.1.1.Final.jar:1.1.1.Final]<br> at org.jboss.as.ee.component.interceptors.ComponentDispatcherInterceptor.processInvocation(ComponentDispatcherInterceptor.java:53) [jboss-as-ee-7.1.1.Final.jar:7.1.1.Final]<br> at org.jboss.invocation.InterceptorContext.proceed(InterceptorContext.java:288) [jboss-invocation-1.1.1.Final.jar:1.1.1.Final]<br> at org.jboss.as.ejb3.component.singleton.SingletonComponentInstanceAssociationInterceptor.processInvocation(SingletonComponentInstanceAssociationInterceptor.java:53) [jboss-as-ejb3-7.1.1.Final.jar:7.1.1.Final]<br> at org.jboss.invocation.InterceptorContext.proceed(InterceptorContext.java:288) [jboss-invocation-1.1.1.Final.jar:1.1.1.Final]<br> at org.jboss.as.ejb3.tx.CMTTxInterceptor.invokeInNoTx(CMTTxInterceptor.java:211) [jboss-as-ejb3-7.1.1.Final.jar:7.1.1.Final]<br> at org.jboss.as.ejb3.tx.CMTTxInterceptor.supports(CMTTxInterceptor.java:363) [jboss-as-ejb3-7.1.1.Final.jar:7.1.1.Final]<br> at org.jboss.as.ejb3.tx.CMTTxInterceptor.processInvocation(CMTTxInterceptor.java:194) [jboss-as-ejb3-7.1.1.Final.jar:7.1.1.Final]<br> at org.jboss.invocation.InterceptorContext.proceed(InterceptorContext.java:288) [jboss-invocation-1.1.1.Final.jar:1.1.1.Final]<br> at org.jboss.as.ejb3.component.interceptors.CurrentInvocationContextInterceptor.processInvocation(CurrentInvocationContextInterceptor.java:41) [jboss-as-ejb3-7.1.1.Final.jar:7.1.1.Final]<br> at org.jboss.invocation.InterceptorContext.proceed(InterceptorContext.java:288) [jboss-invocation-1.1.1.Final.jar:1.1.1.Final]<br> at org.jboss.as.ejb3.component.interceptors.LoggingInterceptor.processInvocation(LoggingInterceptor.java:59) [jboss-as-ejb3-7.1.1.Final.jar:7.1.1.Final]<br> at org.jboss.invocation.InterceptorContext.proceed(InterceptorContext.java:288) [jboss-invocation-1.1.1.Final.jar:1.1.1.Final]<br> at org.jboss.as.ee.component.NamespaceContextInterceptor.processInvocation(NamespaceContextInterceptor.java:50) [jboss-as-ee-7.1.1.Final.jar:7.1.1.Final]<br> at org.jboss.invocation.InterceptorContext.proceed(InterceptorContext.java:288) [jboss-invocation-1.1.1.Final.jar:1.1.1.Final]<br> at org.jboss.as.ee.component.TCCLInterceptor.processInvocation(TCCLInterceptor.java:45) [jboss-as-ee-7.1.1.Final.jar:7.1.1.Final]<br> at org.jboss.invocation.InterceptorContext.proceed(InterceptorContext.java:288) [jboss-invocation-1.1.1.Final.jar:1.1.1.Final]<br> at org.jboss.invocation.ChainedInterceptor.processInvocation(ChainedInterceptor.java:61) [jboss-invocation-1.1.1.Final.jar:1.1.1.Final]<br> at org.jboss.as.ee.component.ViewService$View.invoke(ViewService.java:165) [jboss-as-ee-7.1.1.Final.jar:7.1.1.Final]<br> at org.jboss.as.ee.component.ViewDescription$1.processInvocation(ViewDescription.java:173) [jboss-as-ee-7.1.1.Final.jar:7.1.1.Final]<br> at org.jboss.invocation.InterceptorContext.proceed(InterceptorContext.java:288) [jboss-invocation-1.1.1.Final.jar:1.1.1.Final]<br> at org.jboss.invocation.ChainedInterceptor.processInvocation(ChainedInterceptor.java:61) [jboss-invocation-1.1.1.Final.jar:1.1.1.Final]<br> at org.jboss.as.ee.component.ProxyInvocationHandler.invoke(ProxyInvocationHandler.java:72) [jboss-as-ee-7.1.1.Final.jar:7.1.1.Final]<br> at org.ovirt.engine.core.common.interfaces.BackendLocal$$$view7.login(Unknown Source) [common.jar:]<br> at org.ovirt.engine.ui.frontend.server.gwt.GenericApiGWTServiceImpl.login(GenericApiGWTServiceImpl.java:183)<br> at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) [rt.jar:1.7.0_51]<br> at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:57) [rt.jar:1.7.0_51]<br> at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43) [rt.jar:1.7.0_51]<br> at java.lang.reflect.Method.invoke(Method.java:606) [rt.jar:1.7.0_51]<br> at com.google.gwt.rpc.server.RPC.invokeAndStreamResponse(RPC.java:196)<br> at com.google.gwt.rpc.server.RpcServlet.processCall(RpcServlet.java:172)<br> at com.google.gwt.rpc.server.RpcServlet.processPost(RpcServlet.java:233)<br> at com.google.gwt.user.server.rpc.AbstractRemoteServiceServlet.doPost(AbstractRemoteServiceServlet.java:62)<br> at javax.servlet.http.HttpServlet.service(HttpServlet.java:754) [jboss-servlet-api_3.0_spec-1.0.0.Final.jar:1.0.0.Final]<br> at javax.servlet.http.HttpServlet.service(HttpServlet.java:847) [jboss-servlet-api_3.0_spec-1.0.0.Final.jar:1.0.0.Final]<br> at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:329)<br> at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:248)<br> at org.ovirt.engine.core.utils.servlet.HeaderFilter.doFilter(HeaderFilter.java:94) [utils.jar:]<br> at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:280)<br> at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:248)<br> at org.ovirt.engine.ui.frontend.server.gwt.GwtCachingFilter.doFilter(GwtCachingFilter.java:132)<br> at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:280)<br> at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:248)<br> at org.ovirt.engine.core.branding.BrandingFilter.doFilter(BrandingFilter.java:72)<br> at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:280)<br> at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:248)<br> at org.ovirt.engine.core.utils.servlet.LocaleFilter.doFilter(LocaleFilter.java:64) [utils.jar:]<br> at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:280)<br> at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:248)<br> at org.ovirt.engine.core.aaa.filters.SessionMgmtFilter.doFilter(SessionMgmtFilter.java:31) [aaa.jar:]<br> at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:280)<br> at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:248)<br> at org.ovirt.engine.core.aaa.filters.LoginFilter.doFilter(LoginFilter.java:73) [aaa.jar:]<br> at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:280)<br> at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:248)<br> at org.ovirt.engine.core.aaa.filters.NegotiationFilter.doFilter(NegotiationFilter.java:131) [aaa.jar:]<br> at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:280)<br> at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:248)<br> at org.ovirt.engine.core.aaa.filters.BasicAuthenticationFilter.doFilter(BasicAuthenticationFilter.java:75) [aaa.jar:]<br> at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:280)<br> at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:248)<br> at org.ovirt.engine.core.aaa.filters.SessionValidationFilter.doFilter(SessionValidationFilter.java:63) [aaa.jar:]<br> at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:280)<br> at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:248)<br> at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:275)<br> at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:161)<br> at org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:489)<br> at org.jboss.as.web.security.SecurityContextAssociationValve.invoke(SecurityContextAssociationValve.java:153)<br> at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:155)<br> at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:102)<br> at org.jboss.web.rewrite.RewriteValve.invoke(RewriteValve.java:466)<br> at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:109)<br> at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:368)<br> at org.apache.coyote.ajp.AjpProcessor.process(AjpProcessor.java:505)<br> at org.apache.coyote.ajp.AjpProtocol$AjpConnectionHandler.process(AjpProtocol.java:445)<br> at org.apache.tomcat.util.net.JIoEndpoint$Worker.run(JIoEndpoint.java:930)<br> at java.lang.Thread.run(Thread.java:744) [rt.jar:1.7.0_51]<br><br></div><div>Could you help me with this problem, please?<br><br></div>Many thanks in advanced,<br><br></div>Juanjo.<br></div><div class="gmail_extra"><br><div class="gmail_quote">On Tue, Nov 25, 2014 at 12:24 PM, Ondra Machacek <span dir="ltr"><<a href="mailto:omachace@redhat.com" target="_blank">omachace@redhat.com</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">Hi,<br>
<br>
can you please try different account than Administrator?<br>
<span class="im HOEnZb"><br>
----- Original Message -----<br>
> From: "Juan Jose" <<a href="mailto:jj197005@gmail.com">jj197005@gmail.com</a>><br>
</span><div class="HOEnZb"><div class="h5">> To: <a href="mailto:omachace@redhat.com">omachace@redhat.com</a>, <a href="mailto:alonbl@redhat.com">alonbl@redhat.com</a>, "Yair Zaslavsky" <<a href="mailto:yzaslavs@redhat.com">yzaslavs@redhat.com</a>>, <a href="mailto:users@ovirt.org">users@ovirt.org</a><br>
> Sent: Tuesday, November 25, 2014 11:01:13 AM<br>
> Subject: Re: [ovirt-users] Adding domain to oVirt to 3.5 issue<br>
><br>
> Hello everybody,<br>
><br>
> Ondra you are right, I removed the domain. I have already tried to execute<br>
> the command with lower case the domain name and the result is the same<br>
><br>
> engine-manage-domains add --domain=siee.local --provider=ad<br>
> --user=Administrator --add-permissions<br>
> Enter password:<br>
> No user in Directory was found for Administrator@SIEE.LOCAL. Trying next<br>
> LDAP server in list<br>
> Failure while testing domain siee.local. Details: No user information was<br>
> found for user<br>
><br>
> the result to the command psql -U engine -d engine -c "select * from<br>
> vdc_options where option_name='LDAPSecurityAuthentication'" is:<br>
><br>
> psql: FATAL: Ident authentication failed for user "engine"<br>
><br>
> And for second command psql -U engine -d engine -c "update vdc_options set<br>
> option_value='siee.local:GSSAPI' where<br>
> option_name='LDAPSecurityAuthentication'", I receive the same response:<br>
><br>
> psql: FATAL: Ident authentication failed for user "engine"<br>
><br>
> Is there any problem?<br>
><br>
> Many thanks in advanced,<br>
><br>
> Juanjo.<br>
><br>
><br>
> On Mon, Nov 24, 2014 at 1:57 PM, Ondra Machacek <<a href="mailto:omachace@redhat.com">omachace@redhat.com</a>> wrote:<br>
><br>
> > I understood that domain can be deleted, but can't be added,<br>
> > so there won't be needed values to update in vdc_options.<br>
> ><br>
> > Juanjo - Can you please provide us what's the result of command:<br>
> ><br>
> > $ psql -U engine -d engine -c "select * from vdc_options where<br>
> > option_name='LDAPSecurityAuthentication'"<br>
> ><br>
> > If it's empty or if the domain name is upper case or lower case?<br>
> > If it's upper, than please lower case it.<br>
> > $ psql -U engine -d engine -c "update vdc_options set<br>
> > option_value='siee.local:GSSAPI' where<br>
> > option_name='LDAPSecurityAuthentication'"<br>
> ><br>
> ><br>
> > ----- Original Message -----<br>
> > > From: "Alon Bar-Lev" <<a href="mailto:alonbl@redhat.com">alonbl@redhat.com</a>><br>
> > > To: "Ondra Machacek" <<a href="mailto:omachace@redhat.com">omachace@redhat.com</a>><br>
> > > Cc: <a href="mailto:jj197005@gmail.com">jj197005@gmail.com</a>, <a href="mailto:users@ovirt.org">users@ovirt.org</a>, "Yair Zaslavsky" <<br>
> > <a href="mailto:yzaslavs@redhat.com">yzaslavs@redhat.com</a>><br>
> > > Sent: Monday, November 24, 2014 1:49:11 PM<br>
> > > Subject: Re: [ovirt-users] Adding domain to oVirt to 3.5 issue<br>
> > ><br>
> > ><br>
> > ><br>
> > > ----- Original Message -----<br>
> > > > From: "Ondra Machacek" <<a href="mailto:omachace@redhat.com">omachace@redhat.com</a>><br>
> > > > To: <a href="mailto:jj197005@gmail.com">jj197005@gmail.com</a><br>
> > > > Cc: <a href="mailto:users@ovirt.org">users@ovirt.org</a>, "Yair Zaslavsky" <<a href="mailto:yzaslavs@redhat.com">yzaslavs@redhat.com</a>>, "Alon<br>
> > Bar-Lev"<br>
> > > > <<a href="mailto:alonbl@redhat.com">alonbl@redhat.com</a>><br>
> > > > Sent: Monday, November 24, 2014 2:46:20 PM<br>
> > > > Subject: Re: [ovirt-users] Adding domain to oVirt to 3.5 issue<br>
> > > ><br>
> > > > Please try to run your command with domain in lower case:<br>
> > > ><br>
> > > > engine-manage-domains add --domain=siee.local --provider=ad<br>
> > > > --user=Administrator<br>
> > ><br>
> > > it is already added, won't it simpler to modify the vdc_options?<br>
> > ><br>
> > > ><br>
> > > ><br>
> > > > ----- Original Message -----<br>
> > > > > From: "Alon Bar-Lev" <<a href="mailto:alonbl@redhat.com">alonbl@redhat.com</a>><br>
> > > > > To: "Juan Jose" <<a href="mailto:jj197005@gmail.com">jj197005@gmail.com</a>><br>
> > > > > Cc: <a href="mailto:users@ovirt.org">users@ovirt.org</a>, "Yair Zaslavsky" <<a href="mailto:yzaslavs@redhat.com">yzaslavs@redhat.com</a>>, "Ondra<br>
> > > > > Machacek" <<a href="mailto:omachace@redhat.com">omachace@redhat.com</a>><br>
> > > > > Sent: Monday, November 24, 2014 1:27:39 PM<br>
> > > > > Subject: Re: [ovirt-users] Adding domain to oVirt to 3.5 issue<br>
> > > > ><br>
> > > > ><br>
> > > > > Yes,<br>
> > > > > I think we just fixed this[1].<br>
> > > > > We can fix this manually, yair, ondra what is the easiest fix?<br>
> > > > ><br>
> > > > > BTW: you can also checkout the new ldap provider<br>
> > > > > (ovirt-engine-extension-aaa-ldap) in 3.5 which should be much more<br>
> > > > > robust[1], I can help you set it up.<br>
> > > > ><br>
> > > > > [1] <a href="https://bugzilla.redhat.com/show_bug.cgi?id=1167211" target="_blank">https://bugzilla.redhat.com/show_bug.cgi?id=1167211</a><br>
> > > > > [2]<br>
> > > > ><br>
> > <a href="http://gerrit.ovirt.org/gitweb?p=ovirt-engine-extension-aaa-ldap.git;a=blob;f=README;hb=HEAD" target="_blank">http://gerrit.ovirt.org/gitweb?p=ovirt-engine-extension-aaa-ldap.git;a=blob;f=README;hb=HEAD</a><br>
> > > > ><br>
> > > > > ----- Original Message -----<br>
> > > > > > From: "Juan Jose" <<a href="mailto:jj197005@gmail.com">jj197005@gmail.com</a>><br>
> > > > > > To: <a href="mailto:users@ovirt.org">users@ovirt.org</a><br>
> > > > > > Sent: Monday, November 24, 2014 2:22:44 PM<br>
> > > > > > Subject: [ovirt-users] Adding domain to oVirt to 3.5 issue<br>
> > > > > ><br>
> > > > > > Hello everybody,<br>
> > > > > ><br>
> > > > > > I have upgraded my oVirt 3.4 to 3.5 version without any problem<br>
> > > > > > apparently.<br>
> > > > > ><br>
> > > > > > After finish the upgrade I have tried to login with any of my AD<br>
> > users<br>
> > > > > > from<br>
> > > > > > my Samba 4, like I used to do in oVirt 3.4 but I received<br>
> > > > > > authentication<br>
> > > > > > errors as below error:<br>
> > > > > ><br>
> > > > > > 2014-11-21 14:06:02,681 ERROR<br>
> > > > > ><br>
> > [org.ovirt.engine.extensions.aaa.builtin.kerberosldap.GSSAPIDirContextAuthenticationStrategy]<br>
> > > > > > (ajp--127.0.0.1-8702-3) Kerberos error: Pre-authentication<br>
> > information<br>
> > > > > > was<br>
> > > > > > invalid (24)<br>
> > > > > > 2014-11-21 14:06:02,683 ERROR<br>
> > > > > ><br>
> > [org.ovirt.engine.extensions.aaa.builtin.kerberosldap.GSSAPIDirContextAuthenticationStrategy]<br>
> > > > > > (ajp--127.0.0.1-8702-3) Authentication Failed. Please verify the<br>
> > > > > > username<br>
> > > > > > and password.<br>
> > > > > > 2014-11-21 14:06:02,685 ERROR<br>
> > > > > ><br>
> > [org.ovirt.engine.extensions.aaa.builtin.kerberosldap.DirectorySearcher]<br>
> > > > > > (ajp--127.0.0.1-8702-3) Failed ldap search server<br>
> > > > > > ldap://adserver.siee.local:389 using user juanjo@SIEE.LOCAL due to<br>
> > > > > > Authentication Failed. Please verify the username and password.. We<br>
> > > > > > should<br>
> > > > > > not try the next server<br>
> > > > > > 2014-11-21 14:06:02,688 ERROR<br>
> > > > > ><br>
> > [org.ovirt.engine.extensions.aaa.builtin.kerberosldap.LdapBrokerCommandBase]<br>
> > > > > > (ajp--127.0.0.1-8702-3) Failed to run command<br>
> > > > > > LdapGetAdUserByUserNameCommand. Domain is siee.local. User is<br>
> > > > > > juanjo@SIEE.LOCAL.<br>
> > > > > > 2014-11-21 14:06:02,690 ERROR<br>
> > > > > > [org.ovirt.engine.core.bll.aaa.LoginAdminUserCommand]<br>
> > > > > > (ajp--127.0.0.1-8702-3) Error during CanDoActionFailure.: Class:<br>
> > class<br>
> > > > > ><br>
> > org.ovirt.engine.core.extensions.mgr.ExtensionInvokeCommandFailedException<br>
> > > > > > Input:<br>
> > > > > > {Extkey[name=EXTENSION_INVOKE_CONTEXT;type=class<br>
> > > > > ><br>
> > org.ovirt.engine.api.extensions.ExtMap;uuid=EXTENSION_INVOKE_CONTEXT[886d2ebb-312a-49ae-9cc3-e1f849834b7d];]={Extkey[name=EXTENSION_INTERFACE_VERSION_MAX;type=class<br>
> > > > > ><br>
> > java.lang.Integer;uuid=EXTENSION_INTERFACE_VERSION_MAX[f4cff49f-2717-4901-8ee9-df362446e3e7];]=0,<br>
> > > > > > Extkey[name=EXTENSION_LICENSE;type=class<br>
> > > > > ><br>
> > java.lang.String;uuid=EXTENSION_LICENSE[8a61ad65-054c-4e31-9c6d-1ca4d60a4c18];]=ASL<br>
> > > > > > 2.0, Extkey[name=EXTENSION_HOME_URL;type=class<br>
> > > > > ><br>
> > java.lang.String;uuid=EXTENSION_HOME_URL[4ad7a2f4-f969-42d4-b399-72d192e18304];]=<br>
> > > > > > <a href="http://www.ovirt.org" target="_blank">http://www.ovirt.org</a> , Extkey[name=EXTENSION_LOCALE;type=class<br>
> > > > > ><br>
> > java.lang.String;uuid=EXTENSION_LOCALE[0780b112-0ce0-404a-b85e-8765d778bb29];]=en_US,<br>
> > > > > > Extkey[name=EXTENSION_NAME;type=class<br>
> > > > > ><br>
> > java.lang.String;uuid=EXTENSION_NAME[651381d3-f54f-4547-bf28-b0b01a103184];]=Kerberos/Ldap<br>
> > > > > > Authz (Built-in),<br>
> > > > > > Extkey[name=EXTENSION_INTERFACE_VERSION_MIN;type=class<br>
> > > > > ><br>
> > java.lang.Integer;uuid=EXTENSION_INTERFACE_VERSION_MIN[2b84fc91-305b-497b-a1d7-d961b9d2ce0b];]=0,<br>
> > > > > > Extkey[name=EXTENSION_CONFIGURATION;type=class<br>
> > > > > ><br>
> > java.util.Properties;uuid=EXTENSION_CONFIGURATION[2d48ab72-f0a1-4312-b4ae-5068a226b0fc];]=***,<br>
> > > > > > Extkey[name=EXTENSION_AUTHOR;type=class<br>
> > > > > ><br>
> > java.lang.String;uuid=EXTENSION_AUTHOR[ef242f7a-2dad-4bc5-9aad-e07018b7fbcc];]=The<br>
> > > > > > oVirt Project,<br>
> > Extkey[name=AAA_AUTHZ_QUERY_MAX_FILTER_SIZE;type=class<br>
> > > > > ><br>
> > java.lang.Integer;uuid=AAA_AUTHZ_QUERY_MAX_FILTER_SIZE[2eb1f541-0f65-44a1-a6e3-014e247595f5];]=100,<br>
> > > > > > Extkey[name=EXTENSION_INSTANCE_NAME;type=class<br>
> > > > > ><br>
> > java.lang.String;uuid=EXTENSION_INSTANCE_NAME[65c67ff6-aeca-4bd5-a245-8674327f011b];]=siee.local,<br>
> > > > > > Extkey[name=EXTENSION_BUILD_INTERFACE_VERSION;type=class<br>
> > > > > ><br>
> > java.lang.Integer;uuid=EXTENSION_BUILD_INTERFACE_VERSION[cb479e5a-4b23-46f8-aed3-56a4747a8ab7];]=0,<br>
> > > > > > Extkey[name=AAA_AUTHZ_CAPABILITIES;type=class<br>
> > > > > ><br>
> > java.lang.Long;uuid=AAA_AUTHZ_CAPABILITIES[6106d1fb-9291-4351-a947-b897b9540a23];]=1,<br>
> > > > > > Extkey[name=EXTENSION_CONFIGURATION_SENSITIVE_KEYS;type=interface<br>
> > > > > ><br>
> > java.util.Collection;uuid=EXTENSION_CONFIGURATION_SENSITIVE_KEYS[a456efa1-73ff-4204-9f9b-ebff01e35263];]=[],<br>
> > > > > > Extkey[name=EXTENSION_GLOBAL_CONTEXT;type=class<br>
> > > > > ><br>
> > org.ovirt.engine.api.extensions.ExtMap;uuid=EXTENSION_GLOBAL_CONTEXT[9799e72f-7af6-4cf1-bf08-297bc8903676];]=*skip*,<br>
> > > > > > Extkey[name=EXTENSION_VERSION;type=class<br>
> > > > > ><br>
> > java.lang.String;uuid=EXTENSION_VERSION[fe35f6a8-8239-4bdb-ab1a-af9f779ce68c];]=N/A,<br>
> > > > > > Extkey[name=AAA_AUTHZ_AVAILABLE_NAMESPACES;type=interface<br>
> > > > > ><br>
> > java.util.Collection;uuid=AAA_AUTHZ_AVAILABLE_NAMESPACES[6dffa34c-955f-486a-bd35-0a272b45a711];]=[*],<br>
> > > > > > Extkey[name=EXTENSION_MANAGER_TRACE_LOG;type=interface<br>
> > > > > ><br>
> > org.slf4j.Logger;uuid=EXTENSION_MANAGER_TRACE_LOG[863db666-3ea7-4751-9695-918a3197ad83];]=org.slf4j.impl.Slf4jLogger(org.ovirt.engine.core.extensions.mgr.ExtensionsManager.trace.Kerberos/Ldap<br>
> > > > > > Authz (Built-in).siee.local),<br>
> > > > > > Extkey[name=EXTENSION_PROVIDES;type=interface<br>
> > > > > ><br>
> > java.util.Collection;uuid=EXTENSION_PROVIDES[8cf373a6-65b5-4594-b828-0e275087de91];]=[org.ovirt.engine.api.extensions.aaa.Authz]},<br>
> > > > > > Extkey[name=AAA_AUTHZ_QUERY_FLAGS;type=class<br>
> > > > > ><br>
> > java.lang.Integer;uuid=AAA_AUTHZ_QUERY_FLAGS[97d226e9-8d87-49a0-9a7f-af689320907b];]=3,<br>
> > > > > > Extkey[name=EXTENSION_INVOKE_COMMAND;type=class<br>
> > > > > ><br>
> > org.ovirt.engine.api.extensions.ExtUUID;uuid=EXTENSION_INVOKE_COMMAND[485778ab-bede-4f1a-b823-77b262a2f28d];]=AAA_AUTHZ_FETCH_PRINCIPAL_RECORD[5a5bf9bb-9336-4376-a823-26efe1ba26df],<br>
> > > > > > Extkey[name=AAA_AUTHN_AUTH_RECORD;type=class<br>
> > > > > ><br>
> > org.ovirt.engine.api.extensions.ExtMap;uuid=AAA_AUTHN_AUTH_RECORD[e9462168-b53b-44ac-9af5-f25e1697173e];]={Extkey[name=AAA_AUTHN_AUTH_RECORD_PRINCIPAL;type=class<br>
> > > > > ><br>
> > java.lang.String;uuid=AAA_AUTHN_AUTH_RECORD_PRINCIPAL[c3498f07-11fe-464c-958c-8bd7490b119a];]=juanjo}}<br>
> > > > > > Output:<br>
> > > > > > {Extkey[name=EXTENSION_INVOKE_RESULT;type=class<br>
> > > > > ><br>
> > java.lang.Integer;uuid=EXTENSION_INVOKE_RESULT[0909d91d-8bde-40fb-b6c0-099c772ddd4e];]=2,<br>
> > > > > > Extkey[name=AAA_AUTHZ_STATUS;type=class<br>
> > > > > ><br>
> > java.lang.Integer;uuid=AAA_AUTHZ_STATUS[566f0ba5-8329-4de1-952a-7a81e4bedd3e];]=1}<br>
> > > > > ><br>
> > > > > > at<br>
> > > > > ><br>
> > org.ovirt.engine.core.extensions.mgr.ExtensionProxy.invoke(ExtensionProxy.java:91)<br>
> > > > > > [extensions-manager.jar:]<br>
> > > > > > at<br>
> > > > > ><br>
> > org.ovirt.engine.core.extensions.mgr.ExtensionProxy.invoke(ExtensionProxy.java:109)<br>
> > > > > > [extensions-manager.jar:]<br>
> > > > > > at<br>
> > > > > ><br>
> > org.ovirt.engine.core.aaa.AuthzUtils.fetchPrincipalRecordImpl(AuthzUtils.java:51)<br>
> > > > > > [aaa.jar:]<br>
> > > > > > at<br>
> > > > > ><br>
> > org.ovirt.engine.core.aaa.AuthzUtils.fetchPrincipalRecord(AuthzUtils.java:42)<br>
> > > > > > [aaa.jar:]<br>
> > > > > > at<br>
> > > > > ><br>
> > org.ovirt.engine.core.bll.aaa.LoginBaseCommand.isUserCanBeAuthenticated(LoginBaseCommand.java:234)<br>
> > > > > > [bll.jar:]<br>
> > > > > > at<br>
> > > > > ><br>
> > org.ovirt.engine.core.bll.aaa.LoginAdminUserCommand.canDoAction(LoginAdminUserCommand.java:15)<br>
> > > > > > [bll.jar:]<br>
> > > > > > at<br>
> > > > > ><br>
> > org.ovirt.engine.core.bll.CommandBase.internalCanDoAction(CommandBase.java:744)<br>
> > > > > > [bll.jar:]<br>
> > > > > > at<br>
> > > > > ><br>
> > org.ovirt.engine.core.bll.CommandBase.executeAction(CommandBase.java:338)<br>
> > > > > > [bll.jar:]<br>
> > > > > > at org.ovirt.engine.core.bll.Backend.login(Backend.java:575)<br>
> > [bll.jar:]<br>
> > > > > > at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)<br>
> > > > > > [rt.jar:1.7.0_51]<br>
> > > > > > at<br>
> > > > > ><br>
> > sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:57)<br>
> > > > > > [rt.jar:1.7.0_51]<br>
> > > > > > at<br>
> > > > > ><br>
> > sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)<br>
> > > > > > [rt.jar:1.7.0_51]<br>
> > > > > > at java.lang.reflect.Method.invoke(Method.java:606)<br>
> > [rt.jar:1.7.0_51]<br>
> > > > > > at<br>
> > > > > ><br>
> > org.jboss.as.ee.component.ManagedReferenceMethodInterceptorFactory$ManagedReferenceMethodInterceptor.processInvocation(ManagedReferenceMethodInterceptorFactory.java:72)<br>
> > > > > > [jboss-as-ee-7.1.1.Final.jar:7.1.1.Final]<br>
> > > > > > at<br>
> > > > > ><br>
> > org.jboss.invocation.InterceptorContext.proceed(InterceptorContext.java:288)<br>
> > > > > > [jboss-invocation-1.1.1.Final.jar:1.1.1.Final]<br>
> > > > > > at<br>
> > > > > ><br>
> > org.jboss.invocation.InterceptorContext$Invocation.proceed(InterceptorContext.java:374)<br>
> > > > > > [jboss-invocation-1.1.1.Final.jar:1.1.1.Final]<br>
> > > > > > at<br>
> > > > > ><br>
> > org.jboss.as.weld.ejb.Jsr299BindingsInterceptor.delegateInterception(Jsr299BindingsInterceptor.java:114)<br>
> > > > > > [jboss-as-weld-7.1.1.Final.jar:7.1.1.Final]<br>
> > > > > > at<br>
> > > > > ><br>
> > org.jboss.as.weld.ejb.Jsr299BindingsInterceptor.doMethodInterception(Jsr299BindingsInterceptor.java:125)<br>
> > > > > > [jboss-as-weld-7.1.1.Final.jar:7.1.1.Final]<br>
> > > > > > at<br>
> > > > > ><br>
> > org.jboss.as.weld.ejb.Jsr299BindingsInterceptor.processInvocation(Jsr299BindingsInterceptor.java:135)<br>
> > > > > > [jboss-as-weld-7.1.1.Final.jar:7.1.1.Final]<br>
> > > > > > at<br>
> > > > > ><br>
> > org.jboss.as.ee.component.interceptors.UserInterceptorFactory$1.processInvocation(UserInterceptorFactory.java:36)<br>
> > > > > > [jboss-as-ee-7.1.1.Final.jar:7.1.1.Final]<br>
> > > > > > at<br>
> > > > > ><br>
> > org.jboss.invocation.InterceptorContext.proceed(InterceptorContext.java:288)<br>
> > > > > > [jboss-invocation-1.1.1.Final.jar:1.1.1.Final]<br>
> > > > > > at<br>
> > > > > ><br>
> > org.jboss.invocation.InterceptorContext$Invocation.proceed(InterceptorContext.java:374)<br>
> > > > > > [jboss-invocation-1.1.1.Final.jar:1.1.1.Final]<br>
> > > > > > at<br>
> > > > > ><br>
> > org.ovirt.engine.core.bll.interceptors.ThreadLocalSessionCleanerInterceptor.injectWebContextToThreadLocal(ThreadLocalSessionCleanerInterceptor.java:13)<br>
> > > > > > [bll.jar:]<br>
> > > > > > at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)<br>
> > > > > > [rt.jar:1.7.0_51]<br>
> > > > > > at<br>
> > > > > ><br>
> > sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:57)<br>
> > > > > > [rt.jar:1.7.0_51]<br>
> > > > > > at<br>
> > > > > ><br>
> > sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)<br>
> > > > > > [rt.jar:1.7.0_51]<br>
> > > > > > at java.lang.reflect.Method.invoke(Method.java:606)<br>
> > [rt.jar:1.7.0_51]<br>
> > > > > > at<br>
> > > > > ><br>
> > org.jboss.as.ee.component.ManagedReferenceLifecycleMethodInterceptorFactory$ManagedReferenceLifecycleMethodInterceptor.processInvocation(ManagedReferenceLifecycleMethodInterceptorFactory.java:123)<br>
> > > > > > [jboss-as-ee-7.1.1.Final.jar:7.1.1.Final]<br>
> > > > > > at<br>
> > > > > ><br>
> > org.jboss.invocation.InterceptorContext.proceed(InterceptorContext.java:288)<br>
> > > > > > [jboss-invocation-1.1.1.Final.jar:1.1.1.Final]<br>
> > > > > > at<br>
> > > > > ><br>
> > org.jboss.invocation.WeavedInterceptor.processInvocation(WeavedInterceptor.java:53)<br>
> > > > > > [jboss-invocation-1.1.1.Final.jar:1.1.1.Final]<br>
> > > > > > at<br>
> > > > > ><br>
> > org.jboss.as.ee.component.interceptors.UserInterceptorFactory$1.processInvocation(UserInterceptorFactory.java:36)<br>
> > > > > > [jboss-as-ee-7.1.1.Final.jar:7.1.1.Final]<br>
> > > > > > at<br>
> > > > > ><br>
> > org.jboss.invocation.InterceptorContext.proceed(InterceptorContext.java:288)<br>
> > > > > > [jboss-invocation-1.1.1.Final.jar:1.1.1.Final]<br>
> > > > > > at<br>
> > > > > ><br>
> > org.jboss.as.weld.ejb.EjbRequestScopeActivationInterceptor.processInvocation(EjbRequestScopeActivationInterceptor.java:82)<br>
> > > > > > [jboss-as-weld-7.1.1.Final.jar:7.1.1.Final]<br>
> > > > > > at<br>
> > > > > ><br>
> > org.jboss.invocation.InterceptorContext.proceed(InterceptorContext.java:288)<br>
> > > > > > [jboss-invocation-1.1.1.Final.jar:1.1.1.Final]<br>
> > > > > > at<br>
> > > > > ><br>
> > org.jboss.invocation.InitialInterceptor.processInvocation(InitialInterceptor.java:21)<br>
> > > > > > [jboss-invocation-1.1.1.Final.jar:1.1.1.Final]<br>
> > > > > > at<br>
> > > > > ><br>
> > org.jboss.invocation.InterceptorContext.proceed(InterceptorContext.java:288)<br>
> > > > > > [jboss-invocation-1.1.1.Final.jar:1.1.1.Final]<br>
> > > > > > at<br>
> > > > > ><br>
> > org.jboss.invocation.ChainedInterceptor.processInvocation(ChainedInterceptor.java:61)<br>
> > > > > > [jboss-invocation-1.1.1.Final.jar:1.1.1.Final]<br>
> > > > > > at<br>
> > > > > ><br>
> > org.jboss.as.ee.component.interceptors.ComponentDispatcherInterceptor.processInvocation(ComponentDispatcherInterceptor.java:53)<br>
> > > > > > [jboss-as-ee-7.1.1.Final.jar:7.1.1.Final]<br>
> > > > > > at<br>
> > > > > ><br>
> > org.jboss.invocation.InterceptorContext.proceed(InterceptorContext.java:288)<br>
> > > > > > [jboss-invocation-1.1.1.Final.jar:1.1.1.Final]<br>
> > > > > > at<br>
> > > > > ><br>
> > org.jboss.as.ejb3.component.singleton.SingletonComponentInstanceAssociationInterceptor.processInvocation(SingletonComponentInstanceAssociationInterceptor.java:53)<br>
> > > > > > [jboss-as-ejb3-7.1.1.Final.jar:7.1.1.Final]<br>
> > > > > > at<br>
> > > > > ><br>
> > org.jboss.invocation.InterceptorContext.proceed(InterceptorContext.java:288)<br>
> > > > > > [jboss-invocation-1.1.1.Final.jar:1.1.1.Final]<br>
> > > > > > at<br>
> > > > > ><br>
> > org.jboss.as.ejb3.tx.CMTTxInterceptor.invokeInNoTx(CMTTxInterceptor.java:211)<br>
> > > > > > [jboss-as-ejb3-7.1.1.Final.jar:7.1.1.Final]<br>
> > > > > > at<br>
> > > > > ><br>
> > org.jboss.as.ejb3.tx.CMTTxInterceptor.supports(CMTTxInterceptor.java:363)<br>
> > > > > > [jboss-as-ejb3-7.1.1.Final.jar:7.1.1.Final]<br>
> > > > > > at<br>
> > > > > ><br>
> > org.jboss.as.ejb3.tx.CMTTxInterceptor.processInvocation(CMTTxInterceptor.java:194)<br>
> > > > > > [jboss-as-ejb3-7.1.1.Final.jar:7.1.1.Final]<br>
> > > > > > at<br>
> > > > > ><br>
> > org.jboss.invocation.InterceptorContext.proceed(InterceptorContext.java:288)<br>
> > > > > > [jboss-invocation-1.1.1.Final.jar:1.1.1.Final]<br>
> > > > > > at<br>
> > > > > ><br>
> > org.jboss.as.ejb3.component.interceptors.CurrentInvocationContextInterceptor.processInvocation(CurrentInvocationContextInterceptor.java:41)<br>
> > > > > > [jboss-as-ejb3-7.1.1.Final.jar:7.1.1.Final]<br>
> > > > > > at<br>
> > > > > ><br>
> > org.jboss.invocation.InterceptorContext.proceed(InterceptorContext.java:288)<br>
> > > > > > [jboss-invocation-1.1.1.Final.jar:1.1.1.Final]<br>
> > > > > > at<br>
> > > > > ><br>
> > org.jboss.as.ejb3.component.interceptors.LoggingInterceptor.processInvocation(LoggingInterceptor.java:59)<br>
> > > > > > [jboss-as-ejb3-7.1.1.Final.jar:7.1.1.Final]<br>
> > > > > > at<br>
> > > > > ><br>
> > org.jboss.invocation.InterceptorContext.proceed(InterceptorContext.java:288)<br>
> > > > > > [jboss-invocation-1.1.1.Final.jar:1.1.1.Final]<br>
> > > > > > at<br>
> > > > > ><br>
> > org.jboss.as.ee.component.NamespaceContextInterceptor.processInvocation(NamespaceContextInterceptor.java:50)<br>
> > > > > > [jboss-as-ee-7.1.1.Final.jar:7.1.1.Final]<br>
> > > > > > at<br>
> > > > > ><br>
> > org.jboss.invocation.InterceptorContext.proceed(InterceptorContext.java:288)<br>
> > > > > > [jboss-invocation-1.1.1.Final.jar:1.1.1.Final]<br>
> > > > > > at<br>
> > > > > ><br>
> > org.jboss.as.ee.component.TCCLInterceptor.processInvocation(TCCLInterceptor.java:45)<br>
> > > > > > [jboss-as-ee-7.1.1.Final.jar:7.1.1.Final]<br>
> > > > > > at<br>
> > > > > ><br>
> > org.jboss.invocation.InterceptorContext.proceed(InterceptorContext.java:288)<br>
> > > > > > [jboss-invocation-1.1.1.Final.jar:1.1.1.Final]<br>
> > > > > > at<br>
> > > > > ><br>
> > org.jboss.invocation.ChainedInterceptor.processInvocation(ChainedInterceptor.java:61)<br>
> > > > > > [jboss-invocation-1.1.1.Final.jar:1.1.1.Final]<br>
> > > > > > at<br>
> > > > > ><br>
> > org.jboss.as.ee.component.ViewService$View.invoke(ViewService.java:165)<br>
> > > > > > [jboss-as-ee-7.1.1.Final.jar:7.1.1.Final]<br>
> > > > > > at<br>
> > > > > ><br>
> > org.jboss.as.ee.component.ViewDescription$1.processInvocation(ViewDescription.java:173)<br>
> > > > > > [jboss-as-ee-7.1.1.Final.jar:7.1.1.Final]<br>
> > > > > > at<br>
> > > > > ><br>
> > org.jboss.invocation.InterceptorContext.proceed(InterceptorContext.java:288)<br>
> > > > > > [jboss-invocation-1.1.1.Final.jar:1.1.1.Final]<br>
> > > > > > at<br>
> > > > > ><br>
> > org.jboss.invocation.ChainedInterceptor.processInvocation(ChainedInterceptor.java:61)<br>
> > > > > > [jboss-invocation-1.1.1.Final.jar:1.1.1.Final]<br>
> > > > > > at<br>
> > > > > ><br>
> > org.jboss.as.ee.component.ProxyInvocationHandler.invoke(ProxyInvocationHandler.java:72)<br>
> > > > > > [jboss-as-ee-7.1.1.Final.jar:7.1.1.Final]<br>
> > > > > > at<br>
> > > > > ><br>
> > org.ovirt.engine.core.common.interfaces.BackendLocal$$$view7.login(Unknown<br>
> > > > > > Source) [common.jar:]<br>
> > > > > > at<br>
> > > > > ><br>
> > org.ovirt.engine.ui.frontend.server.gwt.GenericApiGWTServiceImpl.login(GenericApiGWTServiceImpl.java:183)<br>
> > > > > > at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)<br>
> > > > > > [rt.jar:1.7.0_51]<br>
> > > > > > at<br>
> > > > > ><br>
> > sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:57)<br>
> > > > > > [rt.jar:1.7.0_51]<br>
> > > > > > at<br>
> > > > > ><br>
> > sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)<br>
> > > > > > [rt.jar:1.7.0_51]<br>
> > > > > > at java.lang.reflect.Method.invoke(Method.java:606)<br>
> > [rt.jar:1.7.0_51]<br>
> > > > > > at<br>
> > com.google.gwt.rpc.server.RPC.invokeAndStreamResponse(RPC.java:196)<br>
> > > > > > at<br>
> > > > > ><br>
> > com.google.gwt.rpc.server.RpcServlet.processCall(RpcServlet.java:172)<br>
> > > > > > at<br>
> > > > > ><br>
> > com.google.gwt.rpc.server.RpcServlet.processPost(RpcServlet.java:233)<br>
> > > > > > at<br>
> > > > > ><br>
> > com.google.gwt.user.server.rpc.AbstractRemoteServiceServlet.doPost(AbstractRemoteServiceServlet.java:62)<br>
> > > > > > at javax.servlet.http.HttpServlet.service(HttpServlet.java:754)<br>
> > > > > > [jboss-servlet-api_3.0_spec-1.0.0.Final.jar:1.0.0.Final]<br>
> > > > > > at javax.servlet.http.HttpServlet.service(HttpServlet.java:847)<br>
> > > > > > [jboss-servlet-api_3.0_spec-1.0.0.Final.jar:1.0.0.Final]<br>
> > > > > > at<br>
> > > > > ><br>
> > org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:329)<br>
> > > > > > at<br>
> > > > > ><br>
> > org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:248)<br>
> > > > > > at<br>
> > > > > ><br>
> > org.ovirt.engine.core.utils.servlet.HeaderFilter.doFilter(HeaderFilter.java:94)<br>
> > > > > > [utils.jar:]<br>
> > > > > > at<br>
> > > > > ><br>
> > org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:280)<br>
> > > > > > at<br>
> > > > > ><br>
> > org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:248)<br>
> > > > > > at<br>
> > > > > ><br>
> > org.ovirt.engine.ui.frontend.server.gwt.GwtCachingFilter.doFilter(GwtCachingFilter.java:132)<br>
> > > > > > at<br>
> > > > > ><br>
> > org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:280)<br>
> > > > > > at<br>
> > > > > ><br>
> > org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:248)<br>
> > > > > > at<br>
> > > > > ><br>
> > org.ovirt.engine.core.branding.BrandingFilter.doFilter(BrandingFilter.java:72)<br>
> > > > > > at<br>
> > > > > ><br>
> > org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:280)<br>
> > > > > > at<br>
> > > > > ><br>
> > org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:248)<br>
> > > > > > at<br>
> > > > > ><br>
> > org.ovirt.engine.core.utils.servlet.LocaleFilter.doFilter(LocaleFilter.java:64)<br>
> > > > > > [utils.jar:]<br>
> > > > > > at<br>
> > > > > ><br>
> > org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:280)<br>
> > > > > > at<br>
> > > > > ><br>
> > org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:248)<br>
> > > > > > at<br>
> > > > > ><br>
> > org.ovirt.engine.core.aaa.filters.SessionMgmtFilter.doFilter(SessionMgmtFilter.java:31)<br>
> > > > > > [aaa.jar:]<br>
> > > > > > at<br>
> > > > > ><br>
> > org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:280)<br>
> > > > > > at<br>
> > > > > ><br>
> > org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:248)<br>
> > > > > > at<br>
> > > > > ><br>
> > org.ovirt.engine.core.aaa.filters.LoginFilter.doFilter(LoginFilter.java:73)<br>
> > > > > > [aaa.jar:]<br>
> > > > > > at<br>
> > > > > ><br>
> > org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:280)<br>
> > > > > > at<br>
> > > > > ><br>
> > org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:248)<br>
> > > > > > at<br>
> > > > > ><br>
> > org.ovirt.engine.core.aaa.filters.NegotiationFilter.doFilter(NegotiationFilter.java:131)<br>
> > > > > > [aaa.jar:]<br>
> > > > > > at<br>
> > > > > ><br>
> > org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:280)<br>
> > > > > > at<br>
> > > > > ><br>
> > org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:248)<br>
> > > > > > at<br>
> > > > > ><br>
> > org.ovirt.engine.core.aaa.filters.BasicAuthenticationFilter.doFilter(BasicAuthenticationFilter.java:75)<br>
> > > > > > [aaa.jar:]<br>
> > > > > > at<br>
> > > > > ><br>
> > org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:280)<br>
> > > > > > at<br>
> > > > > ><br>
> > org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:248)<br>
> > > > > > at<br>
> > > > > ><br>
> > org.ovirt.engine.core.aaa.filters.SessionValidationFilter.doFilter(SessionValidationFilter.java:63)<br>
> > > > > > [aaa.jar:]<br>
> > > > > > at<br>
> > > > > ><br>
> > org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:280)<br>
> > > > > > at<br>
> > > > > ><br>
> > org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:248)<br>
> > > > > > at<br>
> > > > > ><br>
> > org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:275)<br>
> > > > > > at<br>
> > > > > ><br>
> > org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:161)<br>
> > > > > > at<br>
> > > > > ><br>
> > org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:489)<br>
> > > > > > at<br>
> > > > > ><br>
> > org.jboss.as.web.security.SecurityContextAssociationValve.invoke(SecurityContextAssociationValve.java:153)<br>
> > > > > > at<br>
> > > > > ><br>
> > org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:155)<br>
> > > > > > at<br>
> > > > > ><br>
> > org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:102)<br>
> > > > > > at org.jboss.web.rewrite.RewriteValve.invoke(RewriteValve.java:466)<br>
> > > > > > at<br>
> > > > > ><br>
> > org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:109)<br>
> > > > > > at<br>
> > > > > ><br>
> > org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:368)<br>
> > > > > > at<br>
> > org.apache.coyote.ajp.AjpProcessor.process(AjpProcessor.java:505)<br>
> > > > > > at<br>
> > > > > ><br>
> > org.apache.coyote.ajp.AjpProtocol$AjpConnectionHandler.process(AjpProtocol.java:445)<br>
> > > > > > at<br>
> > > > > ><br>
> > org.apache.tomcat.util.net.JIoEndpoint$Worker.run(JIoEndpoint.java:930)<br>
> > > > > > at java.lang.Thread.run(Thread.java:744) [rt.jar:1.7.0_51]<br>
> > > > > ><br>
> > > > > > I have not changed any password from any of my AD users.<br>
> > > > > ><br>
> > > > > > I have removed from my oVirt 3.5 the domain with:<br>
> > > > > ><br>
> > > > > > engine-manage-domains delete --domain=siee.local<br>
> > --user=Administrator<br>
> > > > > ><br>
> > > > > > And I have removed the domain without problems. But I want to add<br>
> > it<br>
> > > > > > again<br>
> > > > > > but I can't. I execute the bellow command, put the password of my<br>
> > > > > > Administrator domain and I receive the error showed bellow:<br>
> > > > > ><br>
> > > > > > engine-manage-domains add --domain=SIEE.LOCAL --provider=ad<br>
> > > > > > --user=Administrator<br>
> > > > > > Enter password:<br>
> > > > > > No user in Directory was found for Administrator@SIEE.LOCAL.<br>
> > Trying<br>
> > > > > > next<br>
> > > > > > LDAP<br>
> > > > > > server in list<br>
> > > > > > Failure while testing domain siee.local. Details: No user<br>
> > information<br>
> > > > > > was<br>
> > > > > > found for user<br>
> > > > > ><br>
> > > > > > The password that I use is correct because I can login with user<br>
> > > > > > Administrator in the domain siee.local through a Windows 7<br>
> > Enterprise<br>
> > > > > > client. All this issue comes after my upgrade to oVirt 3.5. Does<br>
> > > > > > someone<br>
> > > > > > help me with this problem?. If more info is needed or logs, please<br>
> > ask<br>
> > > > > > me.<br>
> > > > > ><br>
> > > > > > Many thanks in advanced,<br>
> > > > > ><br>
> > > > > > Juanjo<br>
> > > > > ><br>
> > > > > > _______________________________________________<br>
> > > > > > Users mailing list<br>
> > > > > > <a href="mailto:Users@ovirt.org">Users@ovirt.org</a><br>
> > > > > > <a href="http://lists.ovirt.org/mailman/listinfo/users" target="_blank">http://lists.ovirt.org/mailman/listinfo/users</a><br>
> > > > > ><br>
> > > > ><br>
> > > ><br>
> > ><br>
> ><br>
><br>
</div></div></blockquote></div><br></div>