LDAP/Flowable integration throws 401

Hi all,

Somehow this keeps happening when I try to log in to Flowable IDM via LDAP:

10:03:15,837 [http-nio-8181-exec-3] DEBUG org.flowable.app.security.Http401UnauthorizedEntryPoint - Pre-authenticated entry point called. Rejecting access

These are the properties I’ve set:

flowable-ui-app.properties

LDAP

ldap.enabled=true
ldap.server=ldap://servername.com
ldap.port=389
ldap.user=CN=MY_USER,OU=Users,OU=Accounts,OU=org,DC=organisation,DC=mydomain
ldap.password=******
ldap.basedn=OU=Users,OU=Accounts,OU=Org,DC=organisation,DC=mydomain
ldap.groupbasedn=OU=User Groups,OU=Users,OU=Groups,OU=Org,DC=organisation,DC=mydomain
ldap.query.userbyid=(&(objectClass=user)(sAMAccountName={0}))
ldap.query.userbyname=(&(objectClass=user)(|({0}={1})({2}={3})))
ldap.query.userall=(objectclass=user)
ldap.query.groupsforuser=(&(objectCategory=group)(member={0}))
ldap.query.groupall=(objectClass=group)
ldap.attribute.userid=sAMAccountName
ldap.attribute.firstname=cn
ldap.attribute.lastname=sn
ldap.attribute.email=mail
ldap.attribute.groupid=cn
ldap.attribute.groupname=cn
ldap.cache.groupsize=10000
ldap.cache.groupexpiration=180000

admin.userid=MY_USER

LDAP

Has anybody else had this issue? I can’t find anything through the usual channels. Any help is appreciated :slight_smile:

Full stack trace upon attempting to log into Flowable IDM via LDAP:

10:51:47,021 [http-nio-8181-exec-7] DEBUG org.flowable.app.web.CustomUsernamePasswordAuthenticationFilter - Request is to process authentication
10:51:47,032 [http-nio-8181-exec-7] DEBUG com.mchange.v2.c3p0.impl.C3P0PooledConnectionPool - Testing PooledConnection [com.mchange.v2.c3p0.impl.NewPooledConnection@2e78584b] on CHECKOUT.
10:51:47,033 [http-nio-8181-exec-7] DEBUG com.mchange.v2.c3p0.impl.C3P0PooledConnectionPool - Test of PooledConnection [com.mchange.v2.c3p0.impl.NewPooledConnection@2e78584b] on CHECKOUT has SUCCEEDED.
10:51:47,049 [http-nio-8181-exec-7] DEBUG org.flowable.engine.common.impl.interceptor.LogInterceptor -

10:51:47,049 [http-nio-8181-exec-7] DEBUG org.flowable.engine.common.impl.interceptor.LogInterceptor - — starting CreatePrivilegeQueryCmd --------------------------------------------------------
10:51:47,049 [http-nio-8181-exec-7] DEBUG org.flowable.idm.spring.SpringTransactionInterceptor - Running command with propagation REQUIRED
10:51:47,049 [http-nio-8181-exec-7] DEBUG org.flowable.engine.common.impl.interceptor.LogInterceptor - — CreatePrivilegeQueryCmd finished --------------------------------------------------------
10:51:47,049 [http-nio-8181-exec-7] DEBUG org.flowable.engine.common.impl.interceptor.LogInterceptor -

10:51:47,049 [http-nio-8181-exec-7] DEBUG org.flowable.engine.common.impl.interceptor.LogInterceptor -

10:51:47,049 [http-nio-8181-exec-7] DEBUG org.flowable.engine.common.impl.interceptor.LogInterceptor - — starting PrivilegeQueryImpl --------------------------------------------------------
10:51:47,049 [http-nio-8181-exec-7] DEBUG org.flowable.idm.spring.SpringTransactionInterceptor - Running command with propagation REQUIRED
10:51:47,050 [http-nio-8181-exec-7] DEBUG org.flowable.idm.engine.impl.persistence.entity.PrivilegeEntityImpl.selectPrivilegeByQueryCriteria - ==> Preparing: select RES.* from ACT_ID_PRIV RES inner join ACT_ID_PRIV_MAPPING MAPPING on RES.ID_ = MAPPING.PRIV_ID_ WHERE MAPPING.USER_ID_ = ? order by RES.ID_ asc
10:51:47,053 [http-nio-8181-exec-7] DEBUG org.flowable.idm.engine.impl.persistence.entity.PrivilegeEntityImpl.selectPrivilegeByQueryCriteria - ==> Parameters: user(String)
10:51:47,054 [http-nio-8181-exec-7] DEBUG org.flowable.idm.engine.impl.persistence.entity.PrivilegeEntityImpl.selectPrivilegeByQueryCriteria - <== Total: 0
10:51:47,056 [http-nio-8181-exec-7] DEBUG org.flowable.engine.common.impl.db.DbSqlSession - Flushing dbSqlSession
10:51:47,056 [http-nio-8181-exec-7] DEBUG org.flowable.engine.common.impl.db.DbSqlSession - flush summary: 0 insert, 0 update, 0 delete.
10:51:47,057 [http-nio-8181-exec-7] DEBUG org.flowable.engine.common.impl.db.DbSqlSession - now executing flush…
10:51:47,057 [http-nio-8181-exec-7] DEBUG org.flowable.engine.common.impl.interceptor.LogInterceptor - — PrivilegeQueryImpl finished --------------------------------------------------------
10:51:47,057 [http-nio-8181-exec-7] DEBUG org.flowable.engine.common.impl.interceptor.LogInterceptor -

10:51:47,062 [C3P0PooledConnectionPoolManager[identityToken->2wzy8s9ttjwrwgbe28bx|e2722d8]-HelperThread-#2] DEBUG com.mchange.v2.c3p0.impl.C3P0PooledConnectionPool - Testing PooledConnection [com.mchange.v2.c3p0.impl.NewPooledConnection@2e78584b] on CHECKIN.
10:51:47,062 [http-nio-8181-exec-7] DEBUG org.flowable.app.web.CustomUsernamePasswordAuthenticationFilter - Authentication success. Updating SecurityContextHolder to contain: org.springframework.security.authentication.UsernamePasswordAuthenticationToken@ffcf2233: Principal: org.flowable.app.security.FlowableAppUser@30c011: Username: user; Password: [PROTECTED]; Enabled: true; AccountNonExpired: true; credentialsNonExpired: true; AccountNonLocked: true; Not granted any authorities; Credentials: [PROTECTED]; Authenticated: true; Details: org.springframework.security.web.authentication.WebAuthenticationDetails@1de6: RemoteIpAddress: 10.128.122.39; SessionId: null; Not granted any authorities
10:51:47,063 [http-nio-8181-exec-7] DEBUG org.flowable.app.security.CustomPersistentRememberMeServices - Creating new persistent login for user user
10:51:47,063 [C3P0PooledConnectionPoolManager[identityToken->2wzy8s9ttjwrwgbe28bx|e2722d8]-HelperThread-#2] DEBUG com.mchange.v2.c3p0.impl.C3P0PooledConnectionPool - Test of PooledConnection [com.mchange.v2.c3p0.impl.NewPooledConnection@2e78584b] on CHECKIN has SUCCEEDED.
10:51:47,063 [http-nio-8181-exec-7] DEBUG com.mchange.v2.c3p0.impl.C3P0PooledConnectionPool - Testing PooledConnection [com.mchange.v2.c3p0.impl.NewPooledConnection@45f9f6f7] on CHECKOUT.
10:51:47,064 [http-nio-8181-exec-7] DEBUG com.mchange.v2.c3p0.impl.C3P0PooledConnectionPool - Test of PooledConnection [com.mchange.v2.c3p0.impl.NewPooledConnection@45f9f6f7] on CHECKOUT has SUCCEEDED.
10:51:47,064 [http-nio-8181-exec-7] DEBUG org.flowable.engine.common.impl.interceptor.LogInterceptor -

10:51:47,064 [http-nio-8181-exec-7] DEBUG org.flowable.engine.common.impl.interceptor.LogInterceptor - — starting CreateTokenCmd --------------------------------------------------------
10:51:47,064 [http-nio-8181-exec-7] DEBUG org.flowable.idm.spring.SpringTransactionInterceptor - Running command with propagation REQUIRED
10:51:47,064 [http-nio-8181-exec-7] DEBUG org.flowable.engine.common.impl.interceptor.LogInterceptor - — CreateTokenCmd finished --------------------------------------------------------
10:51:47,064 [http-nio-8181-exec-7] DEBUG org.flowable.engine.common.impl.interceptor.LogInterceptor -

10:51:47,064 [http-nio-8181-exec-7] DEBUG org.flowable.engine.common.impl.interceptor.LogInterceptor -

10:51:47,064 [http-nio-8181-exec-7] DEBUG org.flowable.engine.common.impl.interceptor.LogInterceptor - — starting SaveTokenCmd --------------------------------------------------------
10:51:47,064 [http-nio-8181-exec-7] DEBUG org.flowable.idm.spring.SpringTransactionInterceptor - Running command with propagation REQUIRED
10:51:47,065 [http-nio-8181-exec-7] DEBUG org.flowable.engine.common.impl.db.DbSqlSession - Flushing dbSqlSession
10:51:47,065 [http-nio-8181-exec-7] DEBUG org.flowable.engine.common.impl.db.DbSqlSession - insert TokenEntity[tokenValue=wmz48nHUxvdsGLyrC2d6AQ==, userId=user]
10:51:47,065 [http-nio-8181-exec-7] DEBUG org.flowable.engine.common.impl.db.DbSqlSession - flush summary: 1 insert, 0 update, 0 delete.
10:51:47,065 [http-nio-8181-exec-7] DEBUG org.flowable.engine.common.impl.db.DbSqlSession - now executing flush…
10:51:47,065 [http-nio-8181-exec-7] DEBUG org.flowable.engine.common.impl.db.DbSqlSession - inserting: TokenEntity[tokenValue=wmz48nHUxvdsGLyrC2d6AQ==, userId=user]
10:51:47,065 [http-nio-8181-exec-7] DEBUG org.flowable.idm.engine.impl.persistence.entity.TokenEntityImpl.insertToken - ==> Preparing: insert into ACT_ID_TOKEN ( ID_, REV_, TOKEN_VALUE_, TOKEN_DATE_, IP_ADDRESS_, USER_AGENT_, USER_ID_, TOKEN_DATA_ ) values ( ?, 1, ?, ?, ?, ?, ?, ? )
10:51:47,068 [http-nio-8181-exec-7] DEBUG org.flowable.idm.engine.impl.persistence.entity.TokenEntityImpl.insertToken - ==> Parameters: y3V5kxsECwSsq61NSGzwQQ==(String), wmz48nHUxvdsGLyrC2d6AQ==(String), 2018-02-06 10:51:47.064(Timestamp), 10.128.122.39(String), Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:58.0) Gecko/20100101 Firefox/58.0(String), user(String), null
10:51:47,071 [http-nio-8181-exec-7] DEBUG org.flowable.idm.engine.impl.persistence.entity.TokenEntityImpl.insertToken - <== Updates: 1
10:51:47,071 [http-nio-8181-exec-7] DEBUG org.flowable.engine.common.impl.interceptor.LogInterceptor - — SaveTokenCmd finished --------------------------------------------------------
10:51:47,071 [http-nio-8181-exec-7] DEBUG org.flowable.engine.common.impl.interceptor.LogInterceptor -

10:51:47,072 [C3P0PooledConnectionPoolManager[identityToken->2wzy8s9ttjwrwgbe28bx|e2722d8]-HelperThread-#2] DEBUG com.mchange.v2.c3p0.impl.C3P0PooledConnectionPool - Testing PooledConnection [com.mchange.v2.c3p0.impl.NewPooledConnection@45f9f6f7] on CHECKIN.
10:51:47,072 [C3P0PooledConnectionPoolManager[identityToken->2wzy8s9ttjwrwgbe28bx|e2722d8]-HelperThread-#2] DEBUG com.mchange.v2.c3p0.impl.C3P0PooledConnectionPool - Test of PooledConnection [com.mchange.v2.c3p0.impl.NewPooledConnection@45f9f6f7] on CHECKIN has SUCCEEDED.
10:51:47,147 [http-nio-8181-exec-10] DEBUG org.flowable.app.security.CustomPersistentRememberMeServices - Remember-me cookie detected
10:51:47,148 [http-nio-8181-exec-10] DEBUG com.mchange.v2.c3p0.impl.C3P0PooledConnectionPool - Testing PooledConnection [com.mchange.v2.c3p0.impl.NewPooledConnection@45f9f6f7] on CHECKOUT.
10:51:47,149 [http-nio-8181-exec-10] DEBUG com.mchange.v2.c3p0.impl.C3P0PooledConnectionPool - Test of PooledConnection [com.mchange.v2.c3p0.impl.NewPooledConnection@45f9f6f7] on CHECKOUT has SUCCEEDED.
10:51:47,149 [http-nio-8181-exec-10] DEBUG org.flowable.engine.common.impl.interceptor.LogInterceptor -

10:51:47,149 [http-nio-8181-exec-10] DEBUG org.flowable.engine.common.impl.interceptor.LogInterceptor - — starting CreateTokenQueryCmd --------------------------------------------------------
10:51:47,149 [http-nio-8181-exec-10] DEBUG org.flowable.idm.spring.SpringTransactionInterceptor - Running command with propagation REQUIRED
10:51:47,149 [http-nio-8181-exec-10] DEBUG org.flowable.engine.common.impl.interceptor.LogInterceptor - — CreateTokenQueryCmd finished --------------------------------------------------------
10:51:47,149 [http-nio-8181-exec-10] DEBUG org.flowable.engine.common.impl.interceptor.LogInterceptor -

10:51:47,149 [http-nio-8181-exec-10] DEBUG org.flowable.engine.common.impl.interceptor.LogInterceptor -

10:51:47,149 [http-nio-8181-exec-10] DEBUG org.flowable.engine.common.impl.interceptor.LogInterceptor - — starting TokenQueryImpl --------------------------------------------------------
10:51:47,149 [http-nio-8181-exec-3] DEBUG org.flowable.app.security.CustomPersistentRememberMeServices - Remember-me cookie detected
10:51:47,149 [http-nio-8181-exec-3] DEBUG com.mchange.v2.c3p0.impl.C3P0PooledConnectionPool - Testing PooledConnection [com.mchange.v2.c3p0.impl.NewPooledConnection@2e78584b] on CHECKOUT.
10:51:47,149 [http-nio-8181-exec-3] DEBUG com.mchange.v2.c3p0.impl.C3P0PooledConnectionPool - Test of PooledConnection [com.mchange.v2.c3p0.impl.NewPooledConnection@2e78584b] on CHECKOUT has SUCCEEDED.
10:51:47,149 [http-nio-8181-exec-10] DEBUG org.flowable.idm.spring.SpringTransactionInterceptor - Running command with propagation REQUIRED
10:51:47,151 [http-nio-8181-exec-10] DEBUG org.flowable.idm.engine.impl.persistence.entity.TokenEntityImpl.selectTokenByQueryCriteria - ==> Preparing: select RES.* from ACT_ID_TOKEN RES WHERE RES.ID_ = ? order by RES.ID_ asc
10:51:47,151 [http-nio-8181-exec-10] DEBUG org.flowable.idm.engine.impl.persistence.entity.TokenEntityImpl.selectTokenByQueryCriteria - ==> Parameters: y3V5kxsECwSsq61NSGzwQQ==(String)
10:51:47,155 [http-nio-8181-exec-10] DEBUG org.flowable.idm.engine.impl.persistence.entity.TokenEntityImpl.selectTokenByQueryCriteria - <== Total: 1
10:51:47,155 [http-nio-8181-exec-10] DEBUG org.flowable.engine.common.impl.db.DbSqlSession - Flushing dbSqlSession
10:51:47,155 [http-nio-8181-exec-10] DEBUG org.flowable.engine.common.impl.db.DbSqlSession - flush summary: 0 insert, 0 update, 0 delete.
10:51:47,155 [http-nio-8181-exec-10] DEBUG org.flowable.engine.common.impl.db.DbSqlSession - now executing flush…
10:51:47,155 [http-nio-8181-exec-10] DEBUG org.flowable.engine.common.impl.interceptor.LogInterceptor - — TokenQueryImpl finished --------------------------------------------------------
10:51:47,155 [http-nio-8181-exec-10] DEBUG org.flowable.engine.common.impl.interceptor.LogInterceptor -

10:51:47,155 [http-nio-8181-exec-3] DEBUG com.mchange.v2.c3p0.impl.C3P0PooledConnectionPool - Testing PooledConnection [com.mchange.v2.c3p0.impl.NewPooledConnection@75077a14] on CHECKOUT.
10:51:47,156 [C3P0PooledConnectionPoolManager[identityToken->2wzy8s9ttjwrwgbe28bx|e2722d8]-HelperThread-#2] DEBUG com.mchange.v2.c3p0.impl.C3P0PooledConnectionPool - Testing PooledConnection [com.mchange.v2.c3p0.impl.NewPooledConnection@2e78584b] on CHECKIN.
10:51:47,160 [C3P0PooledConnectionPoolManager[identityToken->2wzy8s9ttjwrwgbe28bx|e2722d8]-HelperThread-#2] DEBUG com.mchange.v2.c3p0.impl.C3P0PooledConnectionPool - Test of PooledConnection [com.mchange.v2.c3p0.impl.NewPooledConnection@2e78584b] on CHECKIN has SUCCEEDED.
10:51:47,160 [http-nio-8181-exec-3] DEBUG com.mchange.v2.c3p0.impl.C3P0PooledConnectionPool - Test of PooledConnection [com.mchange.v2.c3p0.impl.NewPooledConnection@75077a14] on CHECKOUT has SUCCEEDED.
10:51:47,161 [http-nio-8181-exec-3] DEBUG org.flowable.app.security.CustomPersistentRememberMeServices - Remember-me cookie accepted
10:51:47,163 [C3P0PooledConnectionPoolManager[identityToken->2wzy8s9ttjwrwgbe28bx|e2722d8]-HelperThread-#2] DEBUG com.mchange.v2.c3p0.impl.C3P0PooledConnectionPool - Testing PooledConnection [com.mchange.v2.c3p0.impl.NewPooledConnection@75077a14] on CHECKIN.
10:51:47,163 [C3P0PooledConnectionPoolManager[identityToken->2wzy8s9ttjwrwgbe28bx|e2722d8]-HelperThread-#2] DEBUG com.mchange.v2.c3p0.impl.C3P0PooledConnectionPool - Test of PooledConnection [com.mchange.v2.c3p0.impl.NewPooledConnection@75077a14] on CHECKIN has SUCCEEDED.
10:51:47,163 [C3P0PooledConnectionPoolManager[identityToken->2wzy8s9ttjwrwgbe28bx|e2722d8]-HelperThread-#2] DEBUG com.mchange.v2.c3p0.impl.C3P0PooledConnectionPool - Testing PooledConnection [com.mchange.v2.c3p0.impl.NewPooledConnection@45f9f6f7] on CHECKIN.
10:51:47,163 [http-nio-8181-exec-10] DEBUG com.mchange.v2.c3p0.impl.C3P0PooledConnectionPool - Testing PooledConnection [com.mchange.v2.c3p0.impl.NewPooledConnection@75077a14] on CHECKOUT.
10:51:47,163 [C3P0PooledConnectionPoolManager[identityToken->2wzy8s9ttjwrwgbe28bx|e2722d8]-HelperThread-#2] DEBUG com.mchange.v2.c3p0.impl.C3P0PooledConnectionPool - Test of PooledConnection [com.mchange.v2.c3p0.impl.NewPooledConnection@45f9f6f7] on CHECKIN has SUCCEEDED.
10:51:47,164 [http-nio-8181-exec-10] DEBUG com.mchange.v2.c3p0.impl.C3P0PooledConnectionPool - Test of PooledConnection [com.mchange.v2.c3p0.impl.NewPooledConnection@75077a14] on CHECKOUT has SUCCEEDED.
10:51:47,164 [http-nio-8181-exec-10] DEBUG org.flowable.app.security.CustomPersistentRememberMeServices - Remember-me cookie accepted
10:51:47,164 [C3P0PooledConnectionPoolManager[identityToken->2wzy8s9ttjwrwgbe28bx|e2722d8]-HelperThread-#2] DEBUG com.mchange.v2.c3p0.impl.C3P0PooledConnectionPool - Testing PooledConnection [com.mchange.v2.c3p0.impl.NewPooledConnection@75077a14] on CHECKIN.
10:51:47,165 [C3P0PooledConnectionPoolManager[identityToken->2wzy8s9ttjwrwgbe28bx|e2722d8]-HelperThread-#2] DEBUG com.mchange.v2.c3p0.impl.C3P0PooledConnectionPool - Test of PooledConnection [com.mchange.v2.c3p0.impl.NewPooledConnection@75077a14] on CHECKIN has SUCCEEDED.
10:51:47,166 [http-nio-8181-exec-10] DEBUG org.flowable.app.security.Http401UnauthorizedEntryPoint - Pre-authenticated entry point called. Rejecting access
10:51:47,223 [http-nio-8181-exec-4] DEBUG org.flowable.app.security.CustomPersistentRememberMeServices - Remember-me cookie detected
10:51:47,223 [http-nio-8181-exec-4] DEBUG com.mchange.v2.c3p0.impl.C3P0PooledConnectionPool - Testing PooledConnection [com.mchange.v2.c3p0.impl.NewPooledConnection@75077a14] on CHECKOUT.
10:51:47,224 [http-nio-8181-exec-4] DEBUG com.mchange.v2.c3p0.impl.C3P0PooledConnectionPool - Test of PooledConnection [com.mchange.v2.c3p0.impl.NewPooledConnection@75077a14] on CHECKOUT has SUCCEEDED.
10:51:47,224 [http-nio-8181-exec-4] DEBUG com.mchange.v2.c3p0.impl.C3P0PooledConnectionPool - Testing PooledConnection [com.mchange.v2.c3p0.impl.NewPooledConnection@45f9f6f7] on CHECKOUT.
10:51:47,224 [C3P0PooledConnectionPoolManager[identityToken->2wzy8s9ttjwrwgbe28bx|e2722d8]-HelperThread-#2] DEBUG com.mchange.v2.c3p0.impl.C3P0PooledConnectionPool - Testing PooledConnection [com.mchange.v2.c3p0.impl.NewPooledConnection@75077a14] on CHECKIN.
10:51:47,225 [C3P0PooledConnectionPoolManager[identityToken->2wzy8s9ttjwrwgbe28bx|e2722d8]-HelperThread-#2] DEBUG com.mchange.v2.c3p0.impl.C3P0PooledConnectionPool - Test of PooledConnection [com.mchange.v2.c3p0.impl.NewPooledConnection@75077a14] on CHECKIN has SUCCEEDED.
10:51:47,225 [http-nio-8181-exec-4] DEBUG com.mchange.v2.c3p0.impl.C3P0PooledConnectionPool - Test of PooledConnection [com.mchange.v2.c3p0.impl.NewPooledConnection@45f9f6f7] on CHECKOUT has SUCCEEDED.
10:51:47,225 [http-nio-8181-exec-4] DEBUG org.flowable.app.security.CustomPersistentRememberMeServices - Remember-me cookie accepted
10:51:47,225 [http-nio-8181-exec-4] DEBUG org.flowable.app.security.Http401UnauthorizedEntryPoint - Pre-authenticated entry point called. Rejecting access
10:51:47,226 [C3P0PooledConnectionPoolManager[identityToken->2wzy8s9ttjwrwgbe28bx|e2722d8]-HelperThread-#2] DEBUG com.mchange.v2.c3p0.impl.C3P0PooledConnectionPool - Testing PooledConnection [com.mchange.v2.c3p0.impl.NewPooledConnection@45f9f6f7] on CHECKIN.
10:51:47,226 [C3P0PooledConnectionPoolManager[identityToken->2wzy8s9ttjwrwgbe28bx|e2722d8]-HelperThread-#2] DEBUG com.mchange.v2.c3p0.impl.C3P0PooledConnectionPool - Test of PooledConnection [com.mchange.v2.c3p0.impl.NewPooledConnection@45f9f6f7] on CHECKIN has SUCCEEDED.

That debug message is not wrong on itself: it’s giving back a 401 to start the basic auth protocol, which starts with the 401 being sent to the browser. However, this should only happen when talking to the REST api directly, not when you’re logging in through the web form. Hence my question: what are you trying to do: rest communication or UI log in?

Hi Joram,

Thanks for the quick reply. I am trying to login to the UI through http://servername:8080/flowable-idm/.

Cheers!

Hi @joram,

Can you help me as well

https://forum.flowable.org/t/integration-with-microsoft-active-directory/492/28?u=arpit.agrawal

I am also getting 401 but no error in the log of idm app.

Edit 1 :

with this application.properties config

ldap.enabled=true
ldap.server=ldap://ldap.forumsys.com
ldap.port=389
ldap.user=cn=read-only-admin,dc=example,dc=com
ldap.password=password
ldap.basedn=dc=example,dc=com
ldap.query.userbyid=(&(objectClass=inetOrgPerson)(uid={0}))
ldap.query.userbyname=(&(objectClass=inetOrgPerson)(|({0}={1})({2}={3})))
ldap.query.userall=(objectClass=inetOrgPerson)
ldap.query.groupsforuser=(&(objectClass=groupOfUniqueNames)(uniqueMember={0}))
ldap.query.groupall=(objectClass=groupOfUniqueNames)
ldap.attribute.userid=uid
ldap.attribute.firstname=cn
ldap.attribute.lastname=sn
ldap.attribute.email=mail
ldap.attribute.groupid=cn
ldap.attribute.groupname=cn
ldap.cache.groupsize=10000
ldap.cache.groupexpiration=180000
#
# DEFAULT ADMINISTRATOR ACCOUNT
#
admin.userid=boyle

my authentication is success but my account api is giving 401.
I am using username as “boyle” and password as “password”.
I think this is because boyle is not getting privileges to access the ui apps. How can i add it?

unauth

Edit 2:
https://forum.flowable.org/t/integration-with-microsoft-active-directory/492/37?u=arpit.agrawal

https://forum.flowable.org/t/integration-with-microsoft-active-directory/492/39?u=arpit.agrawal

Thank You,
Arpit Agrawal