Error: “[1205002] You are not authorized to use this database.” (4322542)

立即与支持人员聊天

获得即时帮助
完成注册

登录

请求定价

联系销售人员

反馈已提交

本文是否解决了您的问题？

选择评级

标题

Error: “[1205002] You are not authorized to use this database.”
说明

After configuring the Authentication Module Active Directory user account (Manual Input) the error message, “[1205002] You are not authorized to use this database.” upon attempting to log in.
解决办法

These are the necessary configuration steps for “Authentication Module Active Directory user account (Manual Input)”:

Basically, for all authentication modules, a system user has to be determined, which is used to access Identity Manager data. The difference between the authentication modules is in how this system user is determined.

1. An Identity (Employee) linked to an AD Account is required, but not necessarily with a system user assigned. The latter depends on another configuration step:

2. An authentication domain has to be configured:

3. The desired authentication module has to be enabled in Designer:

4. Finally, it is required to configure for every tool separately, for which the authentication method is required, how the system user should be determined:

It is a very common pitfall to forget this step and there will be no specific error message pointing to this missing configuration for the above mentioned reasons.

Here are some example configurations:

This configuration would result in everyone logged in as viadmin:

<DialogUserDetect>
<Usermappings>
<Usermapping
DialogUser = "viadmin"
/>
</Usermappings>
</DialogUserDetect>

This configuration would result in everyone who is designated as VIP logged in as viadmin. Everyone else as viITShop:

<DialogUserDetect>
<Usermappings>
<Usermapping
DialogUser = "viadmin"
Selection = "select 1 from Person where UID_Person = %uid% and isvip=1"
/>
<Usermapping
DialogUser = "viITShop"
/>
</Usermappings>
</DialogUserDetect>

This configuration would result in everyone logged in as viadmin, who has this system user assigned. All other Employees would be rejected. If the requirement is to use multiple system users, it's necessary to configure an appropriate block in this configuration for every system user

<DialogUserDetect>
<Usermappings>
<Usermapping
DialogUser = "viadmin"
Selection = "select 1 from Person where UID_Person = %uid% and UID_DialogUser in (select UID_DialogUser from DialogUser where UserName = 'viadmin')"
/>
</Usermappings>
</DialogUserDetect>
其他信息

The error messages for the authentication modules are deliberately not very helpful for troubleshooting, as this would be helpful as well for potential hackers. For difficult troubleshooting scenarios, Support may provide a special DLL with enhanced logging.