5 Replies Latest reply on Aug 27, 2018 4:05 PM by Jim Nathlich

    LDAP Connection to JumpCloud

    Jim Nathlich

      Trying to connect Tableau Server (Linux) to Jumpcloud via LDAP.

      The connection appears to be succeeding, but I think the query is returning no results.

      Unfortunately, I can't tell what ldap query Tableau is using, and JumpCloud logs ssh events and console changes, but not LDAP events, so I can't check there for errors.

      I'm guessing the ldap query from tableau isn't handling the "o=1111" parameter used by jumpcloud to designate each account.

       

      Here's my identity store JSON:

      {

      "configEntities":{

        "identityStore": {

         "_type": "identityStoreType",

         "type": "activedirectory",

         "domain": "jumpcloud.com",

         "nickname": "",

         "hostname": "ldap.jumpcloud.com",

         "sslPort": "636",

         "directoryServiceType": "openldap",

         "bind": "simple",

         "username": "uid=(ldap user),ou=Users,o=(jumpcloud organization ID),dc=jumpcloud,dc=com",

         "password": "jumpcloudpassword",

         "identityStoreSchemaType": {

                "userBaseFilter": "(objectClass=inetOrgPerson)",

                "userUsername": "uid",

                "userDisplayName": "displayname",

                "userEmail": "email",

                "userCertificate": "certificate",

                "userThumbnail": "thumbnail",

                "userJpegPhoto": "photo",

                "groupBaseFilter": "(objectClass=groupofNames)",

                "groupName": "groupname",

                "groupEmail": "groupemail",

                "groupDescription": "groupdescription",

                "member": "member",

                "distinguishedNameAttribute": "",

                "serverSideSorting": "false",

                "rangeRetrieval": "false"

                }

          }

        }

      }

       

      And here's the error from tabadmincontroller, specifically /var/opt/tableau/tableau_server/data/tabsvc/logs/tabadmincontroller/tabadmincontroller_node1-0.log

      2018-08-23 18:29:43.233 +0000 29511 qtp22864481-21 : INFO  com.tableausoftware.ldap.LdapConnectionFactory - Success connecting to Domain Controller:ldap://ldap.jumpcloud.com:636

      2018-08-23 18:29:43.237 +0000 29511 qtp22864481-21 : ERROR com.tableausoftware.tabadmin.webapp.impl.IdentityStoreService - IdentityStoreService failure:com.tableausoftware.domain.ldap.LdapSearchException: javax.naming.NameNotFoundException: [LDAP: error code 32 - No Such Object]; remaining name

      'DC=jumpcloud,DC=com' (errorCode=100081)

       

      I also tried the "userBaseDN" and "groupBaseDN" parameters mentioned elsewhere in the forum, but the error message did not change.

      Thanks for any help you can provide, and free mini JumpCloud accounts are available if you want to replicate the problem.