Greg,
The SOAP trace shows it's getting hung up on ModifyAdminSavedSearchesRequest:
Code:
ModifyAdminSavedSearchesRequest
<soap:Envelope xmlns:soap="http://www.w3.org/2003/05/soap-envelope">
<soap:Header>
<context xmlns="urn:zimbra">
<userAgent name="ZimbraWebClient - FF2.0 (Mac)"/>
<sessionId id="3643"/>
<format type="js"/>
<authToken>
0_this_69643d33363a3130626636366530token230343030393233373536303b61646dfor38you03b
</authToken>
</context>
</soap:Header>
<soap:Body>
<ModifyAdminSavedSearchesRequest xmlns="urn:zimbraAdmin">
<search name="Admin Accounts">
(|(zimbraIsAdminAccount=TRUE)(zimbraIsDomainAdminAccount=TRUE))
</search>
<search name="Locked Out Accounts">
(zimbraAccountStatus=*lockout*)
</search>
<search name="Closed Accounts">
(zimbraAccountStatus=*closed*)
</search>
<search name="Maintenance Accounts">
(zimbraAccountStatus=*maintenance*)
</search>
<search name="Non-Active Accounts">
(!(zimbraAccountStatus=*active*))
</search>
<search name="Inactive Accounts (30 days)">
(zimbraLastLogonTimestamp<=###JSON:{func: ZaSearch.getTimestampByDays, args:[-30]}###)
</search>
<search name="Inactive Accounts (90 days)">
(zimbraLastLogonTimestamp<=###JSON:{func: ZaSearch.getTimestampByDays, args:[-90]}###)
</search>
</ModifyAdminSavedSearchesRequest>
</soap:Body>
</soap:Envelope>
ROUND TRIP TIME: 57
RESPONSE
Body: {
Fault: {
Code: {
Value: "soap:Receiver"
},
Detail: {
Error: {
Code: "service.FAILURE",
Trace: "com.zimbra.common.service.ServiceException: system failure: unable to modify attrs: [LDAP: error code 50 - Insufficient Access Rights]
Code:service.FAILURE
at com.zimbra.common.service.ServiceException.FAILURE(ServiceException.java:183)
at com.zimbra.cs.account.ldap.LdapProvisioning.modifyAttrsInternal(LdapProvisioning.java:300)
at com.zimbra.cs.account.ldap.LdapProvisioning.modifyAttrs(LdapProvisioning.java:268)
at com.zimbra.cs.account.ldap.LdapProvisioning.modifyAttrs(LdapProvisioning.java:249)
at com.zimbra.cs.account.Provisioning.modifyAttrs(Provisioning.java:1473)
at com.zimbra.cs.service.admin.ModifyAdminSavedSearches.handle(ModifyAdminSavedSearches.java:100)
at com.zimbra.cs.service.admin.ModifyAdminSavedSearches.handle(ModifyAdminSavedSearches.java:60)
at com.zimbra.soap.SoapEngine.dispatchRequest(SoapEngine.java:342)
at com.zimbra.soap.SoapEngine.dispatch(SoapEngine.java:208)
at com.zimbra.soap.SoapEngine.dispatch(SoapEngine.java:113)
at com.zimbra.soap.SoapServlet.doPost(SoapServlet.java:272)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:727)
at com.zimbra.cs.servlet.ZimbraServlet.service(ZimbraServlet.java:174)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:820)
at org.mortbay.jetty.servlet.ServletHolder.handle(ServletHolder.java:487)
at org.mortbay.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.java:1093)
at org.mortbay.servlet.UserAgentFilter.doFilter(UserAgentFilter.java:81)
at org.mortbay.servlet.GzipFilter.doFilter(GzipFilter.java:132)
at org.mortbay.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.java:1084)
at org.mortbay.jetty.servlet.ServletHandler.handle(ServletHandler.java:360)
at org.mortbay.jetty.security.SecurityHandler.handle(SecurityHandler.java:216)
at org.mortbay.jetty.servlet.SessionHandler.handle(SessionHandler.java:181)
at org.mortbay.jetty.handler.ContextHandler.handle(ContextHandler.java:716)
at org.mortbay.jetty.webapp.WebAppContext.handle(WebAppContext.java:406)
at org.mortbay.jetty.handler.ContextHandlerCollection.handle(ContextHandlerCollection.java:211)
at org.mortbay.jetty.handler.HandlerCollection.handle(HandlerCollection.java:114)
at org.mortbay.jetty.handler.HandlerWrapper.handle(HandlerWrapper.java:139)
at org.mortbay.jetty.handler.RewriteHandler.handle(RewriteHandler.java:176)
at org.mortbay.jetty.handler.HandlerWrapper.handle(HandlerWrapper.java:139)
at org.mortbay.jetty.Server.handle(Server.java:313)
at org.mortbay.jetty.HttpConnection.handleRequest(HttpConnection.java:506)
at org.mortbay.jetty.HttpConnection$RequestHandler.content(HttpConnection.java:844)
at org.mortbay.jetty.HttpParser.parseNext(HttpParser.java:644)
at org.mortbay.jetty.HttpParser.parseAvailable(HttpParser.java:205)
at org.mortbay.jetty.HttpConnection.handle(HttpConnection.java:381)
at org.mortbay.io.nio.SelectChannelEndPoint.run(SelectChannelEndPoint.java:396)
at org.mortbay.thread.BoundedThreadPool$PoolThread.run(BoundedThreadPool.java:442)
Caused by: javax.naming.NoPermissionException: [LDAP: error code 50 - Insufficient Access Rights]; remaining name 'uid=sharlow,ou=people,dc=medinavoip,dc=com'
at com.sun.jndi.ldap.LdapCtx.mapErrorCode(LdapCtx.java:3013)
at com.sun.jndi.ldap.LdapCtx.processReturnCode(LdapCtx.java:2951)
at com.sun.jndi.ldap.LdapCtx.processReturnCode(LdapCtx.java:2758)
at com.sun.jndi.ldap.LdapCtx.c_modifyAttributes(LdapCtx.java:1441)
at com.sun.jndi.toolkit.ctx.ComponentDirContext.p_modifyAttributes(ComponentDirContext.java:255)
at com.sun.jndi.toolkit.ctx.PartialCompositeDirContext.modifyAttributes(PartialCompositeDirContext.java:172)
at javax.naming.directory.InitialDirContext.modifyAttributes(InitialDirContext.java:153)
at com.zimbra.cs.account.ldap.LdapUtil.modifyAttributes(LdapUtil.java:1260)
at com.zimbra.cs.account.ldap.LdapUtil.modifyAttrs(LdapUtil.java:661)
at com.zimbra.cs.account.ldap.LdapProvisioning.modifyAttrsInternal(LdapProvisioning.java:285)
... 35 more
",
_jsns: "urn:zimbra"
}
},
Reason: {
Text: "system failure: unable to modify attrs: [LDAP: error code 50 - Insufficient Access Rights]"
}
}
},
Header: {
context: {
_jsns: "urn:zimbra",
change: {
token: 418768
},
sessionId: [
0: {
_content: "3643",
id: "3643",
type: "admin"
}
]
}
},
_jsns: "urn:zimbraSoap"
ROUND TRIP TIME: 326 We've made modifications to ACLs for slapd and I expect you're running into something there. Greg may have a good idea of what the request is doing, but you might also try setting:
Code:
$ zmlocalconfig -e ldap_log_level=256
$ ldap stop
$ ldap start
Grep for slapd and hope for smoking gun:
Code:
$ grep slapd /var/log/zimbra.log
--
Jason Bryan
Zimbra Network Support