https://connect.hyland.com/t5/alfresco-archive/filtre-sur-l-authentification-ldap/m-p/168221#M121705 <HTML><HEAD></HEAD><BODY><SPAN>Bonjour,</SPAN><BR /><BR /><SPAN>je vois bien que vous parler du subsystem "Authentication", mais je vous propose un lien vers le subsystem "Synchronization".</SPAN><BR /><SPAN>Vous pouvez peut-être y trouver votre bonheur :</SPAN><BR /><A href="http://wiki.alfresco.com/wiki/The_Synchronization_Subsystem#Configuration" rel="nofollow noopener noreferrer">http://wiki.alfresco.com/wiki/The_Synchronization_Subsystem#Configuration</A><BR /><BR /><BLOCKQUOTE class="jive-quote"><STRONG>synchronization.autoCreatePeopleOnLogin</STRONG><BR />&nbsp;&nbsp;&nbsp; Should we create a user with default properties when a user is successfully authenticated who does not yet exist in Alfresco and was not returned by a differential sync (if enabled with the property above)? The default is true. Setting this to false would allow you to restrict Alfresco to a subset of those users who could be authenticated by LDAP; only those created by synchronization would be allowed to log in. You could control the set of users that would be in this more restricted set by overriding the user query properties of the LDAP authentication subsystem.</BLOCKQUOTE><BR /><SPAN>Bonne chance !</SPAN></BODY></HTML> Fri, 28 Jan 2011 15:49:35 GMT jayjayecl 2011-01-28T15:49:35Z https://connect.hyland.com/t5/alfresco-archive/filtre-sur-l-authentification-ldap/m-p/168220#M121704 Alfresco 3.4c + authentification OpenLDAP en fonctionnement + authentificaion CIFS via SAMBA en fonctionnement.Une limite identifiée à la configuration Alfresco : *&nbsp; Le sous-système Synchronization supporte des filtres dans les user et group queries, pour le select des objets a synchroniser entre Al Tue, 25 Jan 2011 17:45:59 GMT https://connect.hyland.com/t5/alfresco-archive/filtre-sur-l-authentification-ldap/m-p/168220#M121704 eweller 2011-01-25T17:45:59Z https://connect.hyland.com/t5/alfresco-archive/filtre-sur-l-authentification-ldap/m-p/168221#M121705 <HTML><HEAD></HEAD><BODY><SPAN>Bonjour,</SPAN><BR /><BR /><SPAN>je vois bien que vous parler du subsystem "Authentication", mais je vous propose un lien vers le subsystem "Synchronization".</SPAN><BR /><SPAN>Vous pouvez peut-être y trouver votre bonheur :</SPAN><BR /><A href="http://wiki.alfresco.com/wiki/The_Synchronization_Subsystem#Configuration" rel="nofollow noopener noreferrer">http://wiki.alfresco.com/wiki/The_Synchronization_Subsystem#Configuration</A><BR /><BR /><BLOCKQUOTE class="jive-quote"><STRONG>synchronization.autoCreatePeopleOnLogin</STRONG><BR />&nbsp;&nbsp;&nbsp; Should we create a user with default properties when a user is successfully authenticated who does not yet exist in Alfresco and was not returned by a differential sync (if enabled with the property above)? The default is true. Setting this to false would allow you to restrict Alfresco to a subset of those users who could be authenticated by LDAP; only those created by synchronization would be allowed to log in. You could control the set of users that would be in this more restricted set by overriding the user query properties of the LDAP authentication subsystem.</BLOCKQUOTE><BR /><SPAN>Bonne chance !</SPAN></BODY></HTML> Fri, 28 Jan 2011 15:49:35 GMT https://connect.hyland.com/t5/alfresco-archive/filtre-sur-l-authentification-ldap/m-p/168221#M121705 jayjayecl 2011-01-28T15:49:35Z https://connect.hyland.com/t5/alfresco-archive/filtre-sur-l-authentification-ldap/m-p/168222#M121706 <HTML><HEAD></HEAD><BODY><SPAN>Malheureusement le sous-système synchronization ne porte que sur la planification du CRON assurant la récupération de données depuis le LDAP vers Alfresco… donc pas franchement d'issue pour ce point….on restera dans le paradoxe de ne synchroniser qu'un groupe en acceptant l'ouverture d'une session de tout l'annuaire…dommage</SPAN></BODY></HTML> Mon, 21 Feb 2011 21:04:25 GMT https://connect.hyland.com/t5/alfresco-archive/filtre-sur-l-authentification-ldap/m-p/168222#M121706 eweller 2011-02-21T21:04:25Z