When setting an LDAP repository in WebSphere Application WE get the following error:

Validation failed: SECJ7716E: Primary administrative user Id does not exist in the registry.


When I click Set as current, I get the following error as seen in SystemError.log




[14/04/15 21:07:17:768 BST] 00000066 SystemErr R com.ibm.websphere.wim.exception.WIMConfigurationException: CWWIM5020E Could not connect to the ldap://localhostcell01:10389 repository using properties: [port=10389],[bindDN=cn=WebSphere+sn=LDAP Bind+uid=wasladapbind,ou=users,ou=system],[certificateMapMode=exactdn],[sslConfiguration=],[securityDomainName=admin],[sslEnabled=false],[connectTimeout=20],[connectionPool=false],[id=LDAP1],[ldapServerType=CUSTOM],[host=localhostcell01],[referal=ignore],[derefAliases=always],[certificateFilter=],[authentication=simple],[bindPassword=****]. Exception occurred: javax.naming.AuthenticationException.
<Content Removed For Brevity>

[14/04/15 21:07:17:793 BST] 00000066 SystemErr R Caused by: javax.naming.AuthenticationException: [LDAP: error code 49 – INVALID_CREDENTIALS: Bind failed: Attempt to lookup non-existant entry: cn=WebSphere+sn=LDAP Bind+uid=wasladapbind,ou=users,ou=system]

These are the setting used



AS we can see above Bind distrinquished name (DN) field contains

bindDN=cn=WebSphere+sn=LDAP Bind+uid=wasladapbind,ou=users,ou=system

Note the spelling error, there is an extra ‘a’ in the word ldap!

It should contain

bindDN=cn=WebSphere+sn=LDAP Bind+uid=wasldapbind,ou=users,ou=system


Note: This error can also happen when you are using an invalid password, best to log into LDAP Administration console of your LDAP server and re-validate the password. Most LDAP Servers have some sort of Administrative GUI that often provides a validate existing password function. Alternatively, just change the password.


To learn more about the courses available from The Middleware Shop, please go to http://www.themiddlewareshop.com/products to see a full list of the current courses available.


If you or your organization require support in architecture, performance tuning, automation or simply advice, then please contact me via my support site and request a conversation, where we can discuss your requirement.

About Steve

Steve is a seasoned passionate technology professional, strategist and leader.

An expert in technical communications, and adept in almost all forms of Internet and mobile related technology, Steve has time and time again proven his tenacity to improve systems around him and deliver.

Steve has worn many hats during his career such as Chief Technical Officer, Founding Member of several business ventures, Programmer, Systems Administrator, Architect, Blogger and Published Author to name a few.

Due to 20 years Industry experience in Middleware, Programming, Networks and Internet Technologies, He combines systems knowledge with efficient working methods and inter personal skills required to build effective relationship with clients and colleagues alike. Exceeding typical expectations in any role undertaken, Steve is certain to become a valuable asset within any organisation He joins.

 Key Skills

  • Leadership (Team, Project, Business, People).
  • Architecture (Solutions, Information, Technical, Applications).

Simply, I help you deal with CANETI: Constant And Never Ending Technological Innovation

Specific IBM WebSphere skills:

WebSphere Application Server (WAS Base, WAS ND & Liberty Profile & Liberty Runtime)

  • Automation
  • Security, SSL
  • Dev Ops
  • Architecture
  • Performance Tuning

Middleware Integration Skills:

  • .NET programming, and Architecture
  • Java Programming, and Architecture
  • SOA, SOAP and XML messaging
  • JBoss Fuse, WMQ, IIB, Mule

Integration Skills:

  • SOA
  • Process Improvement
  • ICD’s
  • Messaging Architecture
  • Governance

General Digital Architecture & Governance

  • Lightweight Architectures
  • Digital Strategy, platform stacks for example IAAS, PAAS, SAAS

 Industry Qualifications & Recognition


  • IBM Champion 2013

Leave a Reply