OPDK - unable to setup organization

When we try to set up an organization with the Apigee admin email (opdk@google.com) and admin password which was used to install Apigee edge components, the creation fails with a HTTP 401 UnAuthorized(Invalid credentials)error though the credentials are correct. Here is the detailed exception stacktrace from the management server log when we try to set up an organization with the Apigee admin email id above

2021-02-04 07:22:03,748 org: env: target: contextId: action: qtp355885103-64 ERROR REST - ExceptionMapper.toResponse() : Error occurred : Authentication failed for user : opdk@google.com

com.apigee.security.providers.UserAccessController.verifyUser(UserAccessController.java:122)

com.apigee.security.providers.UserAccessController.authenticate(UserAccessController.java:88)

com.apigee.rest.framework.security.authentication.ApigeeLoginModule.login(ApigeeLoginModule.java:50)

sun.reflect.GeneratedMethodAccessor70.invoke(Unknown Source)

Caused by Invalid EmailId Password for authentication

com.apigee.rbac.impl.AuthenticationServiceImpl.authenticateInTime(AuthenticationServiceImpl.java:513)

com.apigee.rbac.impl.AuthenticationServiceImpl.authenticateAndGetRoleDetails(AuthenticationServiceImpl.java:201)

com.apigee.security.providers.UserAccessController.verifyUser(UserAccessController.java:113)

com.apigee.security.providers.UserAccessController.authenticate(UserAccessController.java:88)

Caused by com.apigee.rest.framework.security.AuthenticationException{ code = usersandroles.InvalidEmailIdPasswordForAuthentication, message = Invalid EmailId Password for authentication, associated contexts = []}

java.util.concurrent.FutureTask.report(FutureTask.java:122)

java.util.concurrent.FutureTask.get(FutureTask.java:206)

com.apigee.rbac.impl.AuthenticationServiceImpl.authenticateInTime(AuthenticationServiceImpl.java:496)

com.apigee.rbac.impl.AuthenticationServiceImpl.authenticateAndGetRoleDetails(AuthenticationServiceImpl.java:201)

Caused by Invalid EmailId Password for authentication

com.apigee.rbac.impl.LdapAuthenticatorImpl.authenticate(LdapAuthenticatorImpl.java:236)

com.apigee.rbac.impl.AuthenticationServiceImpl$ExecuteAuthentication.call(AuthenticationServiceImpl.java:548)

com.apigee.rbac.impl.AuthenticationServiceImpl$ExecuteAuthentication.call(AuthenticationServiceImpl.java:521)

com.apigee.threadpool.CallableWrapperForMDCPreservation.call(CallableWrapperForMDCPreservation.java:26)


However, we did LDAP search using the ‘ldapsearch’ command and could find the opdk@google.com user created in Open LDAP. Command used below –

10773-ldaperror.jpg

Please help us to resolve this issue.

0 1 221
1 REPLY 1

Not applicable

Are you using the sysadmin credentials ?

Sysadmin credential is something that may not be present in ldap also. That is differnet from org admin credentials.