`Login failed` message

An LDAP directory is defined as a repository in the realm, but certain LDAP users cannot log in.

Affected users receive the following error message:

Login failed. Check the user ID and password and try again

Cause

In the LDAP directory, the affected users do not have sufficient privileges to look up all the groups in the directory. If this is the cause of the problem, the following entries are written to the SystemOut.log file.

com.ibm.websphere.security. CustomRegistryException com.ibm.ws.security.auth.ContextManagerImpl. runAs 4161
java.security.PrivilegedActionException com.ibm.ws.security.web.FormLoginServlet.formLogin 308

com.ibm.websphere.security.CustomRegistryException com.ibm.ws.security.registry.UserRegistryImpl.createCredential 818

com.ibm.websphere.security.auth.WSLoginFailedException com.ibm.ws.security.server.lm. wsMapDefaultInboundLoginModule.login 556

com.ibm.websphere.security.auth.WSLoginFailedException com.ibm.ws.security.server.lm.ltpaLoginModule.login 452

com.ibm.websphere.security.auth.WSLoginFailedException com.ibm.ws.security.auth.ContextManagerImpl.login 3560

com.ibm.websphere.security.CustomRegistryException com.ibm.ws.security.ltpa.LTPAServerObject.authenticate 798

com.ibm.websphere.security.auth.WSLoginFailedException com.ibm.ws.security.auth.JaasLoginHelper.jaas_login 487

com.ibm.websphere.wim.exception.WIMSystemException com.ibm.websphere.security.CustomRegistryException 190

Resolution

Work with your LDAP administrator to ensure that the affected LDAP users have sufficient privileges to look up all the groups in the LDAP directory.

Login failed message

Cause

Resolution

`Login failed` message