- Jamf Nation Community
- Products
- Jamf Pro
- LDAP Error Messages in Casper Logs
Options
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Mute
- Printer Friendly Page
LDAP Error Messages in Casper Logs
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Posted on 01-10-2014 06:14 AM
Big hello to all you casper people,
I am experiencing the following error messages in the casper server log file
2014-01-09 15:54:28,183 [ERROR] [LookupIPhone ] - Exception: LookupIPhone: java.lang.NullPointerException
2014-01-09 15:54:28,184 [ERROR] [LookupMDMCommand ] - Error in LookupMDMCommandWithCommandAndDevice: null
2014-01-09 15:54:28,184 [ERROR] [LookupIPhone ] - Exception: LookupIPhone: java.lang.NullPointerException
2014-01-09 15:54:28,184 [ERROR] [LookupMDMCommand ] - Error in LookupMDMCommandWithCommandAndDevice: null
2014-01-09 15:54:28,184 [ERROR] [LookupMobileDeviceGroups ] - Error looking up Mobile Device Group Membership: java.lang.NullPointerException
2014-01-09 15:54:43,199 [ERROR] [LookupLDAPUserIsInGroup ] - LDAP Lookup User Is In Group Exception (1): javax.naming.CommunicationException: arts.local:389 [Root exception is java.net.SocketTimeoutException: connect timed out]
2014-01-09 15:54:58,216 [ERROR] [LookupLDAPUserIsInGroup ] - LDAP Lookup User Is In Group Exception (1): javax.naming.CommunicationException: arts.local:389 [Root exception is java.net.SocketTimeoutException: connect timed out]
2014-01-09 15:55:13,232 [ERROR] [LookupLDAPUserIsInGroup ] - LDAP Lookup User Is In Group Exception (1): javax.naming.CommunicationException: arts.local:389 [Root exception is java.net.SocketTimeoutException: connect timed out]
2014-01-09 15:55:28,249 [ERROR] [LookupLDAPUserIsInGroup ] - LDAP Lookup User Is In Group Exception (1): javax.naming.CommunicationException: arts.local:389 [Root exception is java.net.SocketTimeoutException: connect timed out]
2014-01-09 15:55:43,265 [ERROR] [LookupLDAPUserIsInGroup ] - LDAP Lookup User Is In Group Exception (1): javax.naming.CommunicationException: arts.local:389 [Root exception is java.net.SocketTimeoutException: connect timed out]
2014-01-09 15:55:58,282 [ERROR] [LookupLDAPUserIsInGroup ] - LDAP Lookup User Is In Group Exception (1): javax.naming.CommunicationException: arts.local:389 [Root exception is java.net.SocketTimeoutException: connect timed out]
2014-01-09 15:56:13,298 [ERROR] [LookupLDAPUserIsInGroup ] - LDAP Lookup User Is In Group Exception (1): javax.naming.CommunicationException: arts.local:389 [Root exception is java.net.SocketTimeoutException: connect timed out]
2014-01-09 15:56:13,307 [ERROR] [LookupMDMCommand ] - Error in UPDATE mobile_device_management_commands: null
2014-01-09 15:56:13,308 [ERROR] [LookupMDMCommand ] - Error in SELECT * FROM mobile_device_management_commands: null
2014-01-09 15:56:28,391 [ERROR] [LookupLDAPUserIsInGroup ] - LDAP Lookup User Is In Group Exception (1): javax.naming.CommunicationException: arts.local:389 [Root exception is java.net.SocketTimeoutException: connect timed out]
Sorry for the spam, but i assure you that this is a small snippet of what I am actually seeing.
This is happening 24/7 and has been ongoing for several months. It seems to be linked to mobile devices - I have spoken to our AD admins and they believe the problem is related to our LDAP scope being too broad and thus bringing back too many results causing timeouts.
We are experiencing random config profile and app removals on mobile devices as well - I cannot be certain if this is a sympton of the messages we are seeing. The problem is this is happening so frequently , that it is impossible to tie the date and time of a config profile removal to an error log!
Has anyone else had/seen this error before. Any help greatly appreciated =)
3 REPLIES 3
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Posted on 01-10-2014 10:27 PM
@jamesdurler, certainly sounds like your NW guys are on the right track.
You can change the LDAP timeout settings on the LDAP connection.. Which could help.
Also, I see your using a .local name. Can you maybe try an IP?
If you plug an iDevice into a computer running iPhone Configuration Utility you should be able to get some logs.
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Posted on 01-13-2014 12:26 AM
Thanks @bentoms][/url. Pointing to an IP address isn't really an option as we had this setup before but had to change it to arts.local as this round robins to a random DC (more reliable)
The last point is very interesting, I didn't actually know you could do that. Thanks for your help :)
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Posted on 02-26-2014 07:45 AM
@bentoms This issue is still on going. I have managed to retrieve some logs from an iDevice.
Feb 21 09:01:33 MP-A6851 mdmd[203] <Notice>: (Note ) MDM: Polling MDM server https://jss.arts.ac.uk:8443/mdm/ServerURL for next command.
Feb 21 09:01:33 MP-A6851 mdmd[203] <Notice>: (Note ) MDM: Transaction completed. Status: 200
Feb 21 09:01:33 MP-A6851 mdmd[203] <Notice>: (Note ) MDM: Attempting to perform MDM request: RemoveApplication
Feb 21 09:01:33 MP-A6851 mdmd[203] <Notice>: (Note ) MDM: Handling request type: RemoveApplication
Feb 21 09:01:33 MP-A6851 installd[62] <Notice>: 0x2c3000 handle_uninstall: Uninstall requested by mdmd
Feb 21 09:01:33 MP-A6851 installd[62] <Notice>: 0x2c3000 MobileInstallationUninstall_Server: Uninstalling azdev.citymapper
It seems to be removing applications and/or configuration profiles for no reason and at random. I'm at a loss with it currently. I am about to change the LDAP server to a particular server rather than a hostname which load balances between 4 domain controllers
