Audit Logs Failure

Starting in software version 6.3.00, for all LDAP errors, GigaVUE‑FM will display an error message in the audit logs description field for all the failed authentication attempts. For authentication failures (48 and 49) alone, GigaVUE‑FM will map the LDAP error codes and display a custom description.

For all other error codes, GigaVUE‑FM will display only the error code details. The following are examples of the error code message formats for LDAP errors.

[LDAP: error code 32 - 0000208D: NameErr: DSID-03100241, problem 2001 (NO_OBJECT), data 0, best match of: ‘DC=hqdevtest,DC=com’]

[LDAP: error code 34 - 0000208F: NameErr: DSID-0310022D, problem 2006 (BAD_NAME), data 8350, best match of: ‘userbasedncheck’]

Note: In the event of failure of all the configured LDAP servers, GigaVUE-FM will display a single common error message in the audit logs description field. Refer to the following example.
Error connecting to all LDAP servers configured. Please see the logs for more detailed info

Refer to the following table for more information on the LDAP error codes, error message, and exception details.

LDAP Status Code	Meaning	Exception or Action
0	Success	Report success
1	Operations error	NamingException
2	Protocol error	CommunicationException
3	Time limit exceeded	TimeLimitExceededException
4	Size limit exceeded	SizeLimitExceededException
5	Compared false	Used by DirContext.search(). Does not generate an exception.
6	Compared true	Used by DirContext.search(). Does not generate an exception.
7	Authentication method not supported	AuthenticationNotSupportedException
8	Strong authentication required	AuthenticationNotSupportedException
9	Partial results being returned	If the environment property "java.naming.referral" is set to "ignore" or the contents of the error do not contain a referral, throw a PartialResultException. Otherwise, use contents to build a referral.
10	Referral encountered	If the environment property "java.naming.referral" is set to "ignore", then ignore. If the property is set to "throw", throw ReferralException. If the property is set to "follow", then the LDAP provider processes the referral. If the "java.naming.ldap.referral.limit" property has been exceeded, throw LimitExceededException.
11	Administrative limit exceeded	LimitExceededException
12	Unavailable critical extension requested	OperationNotSupportedException
13	Confidentiality required	AuthenticationNotSupportedException
14	SASL bind in progress	Used internally by the LDAP provider during authentication.
16	No such attribute exists	NoSuchAttributeException
17	An undefined attribute type	InvalidAttributeIdentifierException
18	Inappropriate matching	InvalidSearchFilterException
19	A constraint violation	InvalidAttributeValueException
20	An attribute or value already in use	AttributeInUseException
21	An invalid attribute syntax	InvalidAttributeValueException
32	No such object exists	NameNotFoundException
33	Alias problem	NamingException
34	An invalid DN syntax	InvalidNameException
35	Is a leaf	Used by the LDAP provider; usually doesn't generate an exception.
36	Alias dereferencing problem	NamingException
48	Inappropriate authentication	AuthenticationNotSupportedException
49	Invalid credentials	AuthenticationException
50	Insufficient access rights	NoPermissionException
51	Busy	ServiceUnavailableException
52	Unavailable	ServiceUnavailableException
53	Unwilling to perform	OperationNotSupportedException
54	Loop detected	NamingException
64	Naming violation	InvalidNameException
65	Object class violation	SchemaViolationException
66	Not allowed on non-leaf	ContextNotEmptyException
67	Not allowed on RDN	SchemaViolationException
68	Entry already exists	NameAlreadyBoundException
69	Object class modifications prohibited	SchemaViolationException
71	Affects multiple DSAs	NamingException
80	Other	NamingException