You are viewing limited content. For full access, please sign in.

Question

Question

Forms Named User list shows "invalid" status for all AD users

Forms Licensing
Updated December 19, 2019
asked on July 22, 2015

Whenever the Synchronize Users occurs in Forms, all of the AD accounts get marked with an "invalid" status.  This is causing problems when working in forms because when forms tries to route to that user it seems to be terminating the form's process.

The tooltip over the status shows "This user is no longer a named user in the Laserfiche repostiory, or it no longer has a valid LDAP profile"

With my account, I did find that I can still log in to Forms and Repository, and am still an named user in the License manager.  After I log in the invalid status is cleared in the Named User list in Forms.

 

Any ideas?

0 0

Answer

SELECTED ANSWER
replied on July 23, 2015

Can you check the Active Directory domain controller on Forms Server page of FormsConfig site? If this setting is not correct Forms won't be able to synchronize the users so it would show invalid; but it won't affect login.

1 0
replied on July 27, 2015

I checked the server info.   It is the same primary domain controller set up for the license manager.

However, since the logon server used to authenticate my account to windows appears to be an alternate DC, i changed to that and forms is no longer showing "Invalid" status.

 

Not sure why the Primary DC didn't work though.

0 0

Replies

replied on July 22, 2015

Hello Bryce,

 

What version of Laserfiche Forms are you using? please include the full build. This can be found from the top right drop down > About.

You can also check the event viewers when the sychronization is occurring to see if anything is being reported there.

1 0
replied on July 22, 2015

Laserfiche Forms Version 9.2.1.1069

When I start a synchronization, I get the Application>Error Event:

7/22/2015 11:53:06 PM
Message: The server is not operational.

Stack trace:    at System.DirectoryServices.DirectoryEntry.Bind(Boolean throwIfFail)
   at System.DirectoryServices.DirectoryEntry.Bind()
   at System.DirectoryServices.DirectoryEntry.get_AdsObject()
   at System.DirectoryServices.DirectorySearcher.FindAll(Boolean findMoreThanOne)
   at System.DirectoryServices.DirectorySearcher.FindOne()
   at Laserfiche.Forms.CommonUtils.FormsUserSyncer.LDAPHelper.DirectoryEntrySearch(String filter, String[] propertiesToLoad)
   at Laserfiche.Forms.CommonUtils.FormsUserSyncer.LDAPHelper.GetGroupBySIDAndName(SecurityIdentifier sid, String name)
   at Laserfiche.Forms.CommonUtils.FormsUserSyncer.RetrieveWinGroupsFromRepository(cf_tenants defaultTenant, cf_roles basicRole)

 

0 0
replied on November 9, 2017

This happened to us as well. Repository logins worked but with the difference that "After I log in the invalid status is cleared in the Named User list in Forms." didn't seem to happen.  The fix was getting a new lf.licx file for the Laserfiche Server application as the thumbnails didn't match.  We think this was caused by a hardware change as a result of a SAN upgrade...and we don't know how that is possible but there is no other reasonable explanation of how.

1 0
replied on December 19, 2017

Had a customer call with the same issue, who is on Rio.  Just had to get a new license for the LF Server (made sure to hit "Look Up" for the HWFP), bounced the service, synced the Forms users, and good to go.  Their LF server is a VM as well, so the Hardware Fingerprint changed at some point which caused the issue.

0 0
replied on December 19, 2019

We had this problem for nearly 5 months in live environment. When the user sync ran, all users would become invalid and the users would become "Valid" once they logged in. But many processes were suspended if they had not logged in since the last User sync ran.

Finally we found the solution. In the Laserfiche Directory Server (web config) > Accounts > Organization > Choose the organization name > Security > Check show service accounts. And make your forms service account ( normal name/alias name of your Forms server) has Read checked. If its not present , just add it.

0 0
You are not allowed to follow up in this post.

Sign in to reply to this post.

Details
Related Posts
Loading ...