Shagul Khajamohideen:

It may be nice if a user can unset all the preferences from the UI. Did you try deleting the LDAP server that you added in the UI and see if that helps? In most cases portal admins prefer to manage those settings via the control panel after the initial deployment.

I did. I had a similar thought, but because the preferences were still there, the ones indicating that LDAP was enabled, the login process broke and I had all sorts of LDAP errors in the console.

I'm going to try the suggestion from the previous post this afternoon and I'll post back with the results.

So I did as suggested. I logged into my SQL Server instance and deleted all the preferences that were at the portal level and related to LDAP. I restarted everything and set my properties for LDAP in the portal-ext.properties file. I have debug enabled, so I see the file being referenced at startup. When I tried to login however, an exception occurred, causing the login to fail. So, I put the row back in the database, removed all the portal-ext properties and moved all the configurations to the admin portlet.

Now I am getting this error...

javax.naming.directory.SchemaViolationException: [LDAP: error code 65 - Entry cn=ajuser,dc=company,dc=com violates the Directory Server schema configuration because it includes attribute givenName which is not allowed by any of the objectclasses defined in that entry]; remaining name 'cn=ajuser,dc=company,dc=com'

I also get an error for the LDAPImportUtilImpl along these lines as well. I realize that this is an error being thrown by LDAP, but what I don;t understand is, when I click the "Test Users" button in the admin portlet (to validate the mappings), it comes back saying everything is fine.

I'm a total newbie to LDAP so if anyone has any suggestions, please send them my way.

Thanks in advance.

A.