Orgadmin User is getting revoked

pranjalic
Participant II

I have created a user in my organization Let's say "abc@infosys.com" and have assigned Orgadmin userrole to it. It works fine for some days but after 4-5 weeks it starts throwing 401 Unauthorized error.

When I check the Userrole of this user with below command I get successful 200 OK response as shown below :

curl -u "sysadminuser:passwd" -X GET http://ip:8080/v1/users/abc@infosys.com/userroles -v

Response :

{
"role" : [ {
"name" : "orgadmin",
"organization" : "MyOrg"
} ]

But when I use this user to perform any other operation on my Org its not working. for eg If I try to see product details of MyOrg :

curl -X GET "http://ip:8080/v1/organizations/MyOrg/apiproducts" -u abc@infosys.com:passwd -v

HTTP/1.1 401 Unauthorized

Does anyone know reason behind this behavior of Edge. Will there be a validation period associated with an user.

Solved Solved
0 4 263
1 ACCEPTED SOLUTION

Not applicable

Hi,

You don't state which version of Private Cloud (OPDK) you are using. However there is a known issue with password expiry on older versions. I suspect you are running into that given the timings you have provided.

The problem and solution is given here:-

https://community.apigee.com/articles/21617/have-you-installed-opdk-versions-150x-1601-1605-16.html

View solution in original post

4 REPLIES 4

@Pranjali which version of Private cloud are you on? It seems you might be hitting the following:

https://community.apigee.com/articles/21617/have-you-installed-opdk-versions-150x-1601-1605-16.html

Yes, this link helped me to solve the issue

Not applicable

Hi,

You don't state which version of Private Cloud (OPDK) you are using. However there is a known issue with password expiry on older versions. I suspect you are running into that given the timings you have provided.

The problem and solution is given here:-

https://community.apigee.com/articles/21617/have-you-installed-opdk-versions-150x-1601-1605-16.html

We have 4.17.05 this OPDK version installed.

I have executed commands mentioned in the link above and can now see the

pwdMaxAge:0

Now I tried changing the password of abc@infosys.com with below command :

ldappasswd -H ldap://localhost:10389 -x -D "cn=manager,dc=apigee,dc=com" -W -S "uid=uid_of_abc_user,ou=users,ou=global,dc=apigee,dc=com"

Its working now. Thank you for your help 🙂