topic Ldap authentication in ALfresco2.1 in Alfresco Archive https://connect.hyland.com/t5/alfresco-archive/ldap-authentication-in-alfresco2-1/m-p/132663#M93180 <HTML><HEAD></HEAD><BODY><SPAN>Hi,</SPAN><BR /><BR /><SPAN>Can anyone suggest me the Ldap authentication process in alfresco2.1.</SPAN><BR /><SPAN>I have integrated Alfresco2.1 with Liferay4.3, but i am now unable to authenticate the Ldap server from alfresco.</SPAN><BR /><BR /><SPAN>I have provided the Ldap server values and other details in </SPAN><BR /><SPAN>ldap-authentication-context.xml. The file is as follows:</SPAN><BR /><BR /><BR /><BR /><SPAN>Here's the code:</SPAN><BR /><BR /><SPAN>&lt;?xml version='1.0' encoding='UTF-8'?&gt;</SPAN><BR /><SPAN>&lt;!DOCTYPE beans PUBLIC '-//SPRING//DTD BEAN//EN' '</SPAN><A href="http://www.springframework.org/dtd/spring-beans.dtd" rel="nofollow noopener noreferrer">http://www.springframework.org/dtd/spring-beans.dtd</A><SPAN>'&gt;</SPAN><BR /><BR /><SPAN>&lt;beans&gt;</SPAN><BR /><BR /><SPAN>&lt;!– DAO that rejects changes - LDAP is read only at the moment. It does allow users to be deleted with out warnings from the UI. –&gt;</SPAN><BR /><BR /><SPAN>&lt;bean name="authenticationDao" class="org.alfresco.repo.security.authentication.DefaultMutableAuthenticationDao" &gt;</SPAN><BR /><SPAN>&lt;property name="allowDeleteUser"&gt;</SPAN><BR /><SPAN>&lt;value&gt;true&lt;/value&gt;</SPAN><BR /><SPAN>&lt;/property&gt;</SPAN><BR /><SPAN>&lt;/bean&gt;</SPAN><BR /><BR /><BR /><SPAN>&lt;!– LDAP authentication configuration –&gt;</SPAN><BR /><BR /><SPAN>&lt;!–</SPAN><BR /><BR /><SPAN>You can also use JAAS authentication for Kerberos against Active Directory or NTLM if you also require single sign on from the</SPAN><BR /><SPAN>web browser. You do not have to use LDAP authentication to synchronise groups and users from an LDAP store if it supports other</SPAN><BR /><SPAN>authentication routes, like Active Directory.</SPAN><BR /><BR /><SPAN>–&gt;</SPAN><BR /><BR /><SPAN>&lt;bean id="authenticationComponent" class="org.alfresco.repo.security.authentication.ldap.LDAPAuthenticationComponentImpl"&gt;</SPAN><BR /><SPAN>&lt;property name="LDAPInitialDirContextFactory"&gt;</SPAN><BR /><SPAN>&lt;ref bean="ldapInitialDirContextFactory"/&gt;</SPAN><BR /><SPAN>&lt;/property&gt;</SPAN><BR /><SPAN>&lt;property name="userNameFormat"&gt;</SPAN><BR /><SPAN>&lt;!–</SPAN><BR /><BR /><SPAN>This maps between what the user types in and what is passed through to the underlying LDAP authentication.</SPAN><BR /><BR /><SPAN>"%s" - the user id is passed through without modification.</SPAN><BR /><SPAN>Used for LDAP authentication such as DIGEST-MD5, anything that is not "simple".</SPAN><BR /><BR /><SPAN>"cn=%s,ou=London,dc=company,dc=com" - If the user types in "Joe Bloggs" the authentricate as "cn=Joe Bloggs,ou=London,dc=company,dc=com"</SPAN><BR /><SPAN>Usually for simple authentication.</SPAN><BR /><BR /><SPAN>–&gt;</SPAN><BR /><SPAN>&lt;value&gt;%s&lt;/value&gt;</SPAN><BR /><SPAN>&lt;/property&gt;</SPAN><BR /><SPAN>&lt;/bean&gt;</SPAN><BR /><BR /><SPAN>&lt;!–</SPAN><BR /><BR /><SPAN>This bean is used to support general LDAP authentication. It is also used to provide read only access to users and groups</SPAN><BR /><SPAN>to pull them out of the LDAP reopsitory</SPAN><BR /><BR /><SPAN>–&gt;</SPAN><BR /><BR /><SPAN>&lt;bean id="ldapInitialDirContextFactory" class="org.alfresco.repo.security.authentication.ldap.LDAPInitialDirContextFactoryImpl"&gt;</SPAN><BR /><SPAN>&lt;property name="initialDirContextEnvironment"&gt;</SPAN><BR /><SPAN>&lt;map&gt;</SPAN><BR /><SPAN>&lt;!– The LDAP provider –&gt;</SPAN><BR /><SPAN>&lt;entry key="java.naming.factory.initial"&gt;</SPAN><BR /><SPAN>&lt;value&gt;com.sun.jndi.ldap.LdapCtxFactory&lt;/value&gt;</SPAN><BR /><SPAN>&lt;/entry&gt;</SPAN><BR /><BR /><SPAN>&lt;!– The url to the LDAP server –&gt;</SPAN><BR /><SPAN>&lt;!– Note you can use space separated urls - they will be tried in turn until one works –&gt;</SPAN><BR /><SPAN>&lt;!– This could be used to authenticate against one or more ldap servers (you will not know which one ….) –&gt;</SPAN><BR /><SPAN>&lt;entry key="java.naming.provider.url"&gt;</SPAN><BR /><SPAN>&lt;value&gt;ldap://*********&lt;/value&gt;</SPAN><BR /><SPAN>&lt;/entry&gt;</SPAN><BR /><BR /><SPAN>&lt;!– The authentication mechanism to use –&gt;</SPAN><BR /><SPAN>&lt;!– Some sasl authentication mechanisms may require a realm to be set –&gt;</SPAN><BR /><SPAN>&lt;!– java.naming.security.sasl.realm –&gt;</SPAN><BR /><SPAN>&lt;!– The available options will depend on your LDAP provider –&gt;</SPAN><BR /><SPAN>&lt;entry key="java.naming.security.authentication"&gt;</SPAN><BR /><SPAN>&lt;value&gt;DIGEST-MD5&lt;/value&gt;</SPAN><BR /><SPAN>&lt;/entry&gt;</SPAN><BR /><BR /><SPAN>&lt;!– The id of a user who can read group and user information –&gt;</SPAN><BR /><SPAN>&lt;!– This does not go through the pattern substitution defined above and is used "as is" –&gt;</SPAN><BR /><SPAN>&lt;entry key="java.naming.security.principal"&gt;</SPAN><BR /><SPAN>&lt;value&gt;cn=****,ou=***,dc=***&lt;/value&gt;</SPAN><BR /><SPAN>&lt;/entry&gt;</SPAN><BR /><BR /><SPAN>&lt;!– The password for the user defined above –&gt;</SPAN><BR /><SPAN>&lt;entry key="java.naming.security.credentials"&gt;</SPAN><BR /><SPAN>&lt;value&gt;******&lt;/value&gt;</SPAN><BR /><SPAN>&lt;/entry&gt;</SPAN><BR /><SPAN>&lt;/map&gt;</SPAN><BR /><SPAN>&lt;/property&gt;</SPAN><BR /><SPAN>&lt;/bean&gt;</SPAN><BR /><BR /><SPAN>&lt;!– Ldap Syncronisation support –&gt;</SPAN><BR /><BR /><SPAN>&lt;!–</SPAN><BR /><BR /><SPAN>There can be more than one stack of beans that import users or groups. For example, it may be easier</SPAN><BR /><SPAN>to have a version of ldapPeopleExportSource, and associated beans, for each sub-tree of your ldap directory</SPAN><BR /><SPAN>from which you want to import users. You could then limit users to be imported from two or more sub tress and ignore</SPAN><BR /><SPAN>users found else where. The same applies to the import of groups.</SPAN><BR /><BR /><SPAN>The defaults shown below are for OpenLDAP.</SPAN><BR /><BR /><SPAN>–&gt;</SPAN><BR /><BR /><BR /><SPAN>&lt;!– Extract user information from LDAP and transform this to XML –&gt;</SPAN><BR /><BR /><SPAN>&lt;bean id="ldapPeopleExportSource" class="org.alfresco.repo.security.authentication.ldap.LDAPPersonExportSource"&gt;</SPAN><BR /><SPAN>&lt;!–</SPAN><BR /><SPAN>The query to select objects that represent the users to import.</SPAN><BR /><BR /><SPAN>For Open LDAP, using a basic schema, the following is probably what you want:</SPAN><BR /><SPAN>(objectclass=inetOrgPerson)</SPAN><BR /><BR /><SPAN>For Active Directory:</SPAN><BR /><SPAN>(objectclass=user)</SPAN><BR /><SPAN>–&gt;</SPAN><BR /><SPAN>&lt;property name="personQuery"&gt;</SPAN><BR /><SPAN>&lt;value&gt;(objectclass=inetOrgPerson)&lt;/value&gt;</SPAN><BR /><SPAN>&lt;/property&gt;</SPAN><BR /><BR /><SPAN>&lt;!–</SPAN><BR /><SPAN>The seach base restricts the LDAP query to a sub section of tree on the LDAP server.</SPAN><BR /><SPAN>–&gt;</SPAN><BR /><SPAN>&lt;property name="searchBase"&gt;</SPAN><BR /><SPAN>&lt;value&gt;OU=*****,dc=*****&lt;/value&gt;</SPAN><BR /><SPAN>&lt;/property&gt;</SPAN><BR /><BR /><SPAN>&lt;!–</SPAN><BR /><SPAN>The unique identifier for the user.</SPAN><BR /><BR /><SPAN>THIS MUST MATCH WHAT THE USER TYPES IN AT THE LOGIN PROMPT</SPAN><BR /><BR /><SPAN>For simple LDAP authentication this is likely to be "cn" or, less friendly, "distinguishedName"</SPAN><BR /><BR /><SPAN>In OpenLDAP, using other authentication mechanisms "uid", but this depends on how you map</SPAN><BR /><SPAN>from the id in the LDAP authentication request to search for the inetOrgPerson against which</SPAN><BR /><SPAN>to authenticate.</SPAN><BR /><BR /><SPAN>In Active Directory this is most likely to be "sAMAccountName"</SPAN><BR /><BR /><SPAN>This property is mandatory and must appear on all users found by the query defined above.</SPAN><BR /><BR /><SPAN>–&gt;</SPAN><BR /><SPAN>&lt;property name="userIdAttributeName"&gt;</SPAN><BR /><SPAN>&lt;value&gt;sAMAccountName&lt;/value&gt;</SPAN><BR /><SPAN>&lt;/property&gt;</SPAN><BR /><BR /><SPAN>&lt;!– Services –&gt;</SPAN><BR /><SPAN>&lt;property name="LDAPInitialDirContextFactory"&gt;</SPAN><BR /><SPAN>&lt;ref bean="ldapInitialDirContextFactory"/&gt;</SPAN><BR /><SPAN>&lt;/property&gt;</SPAN><BR /><SPAN>&lt;property name="personService"&gt;</SPAN><BR /><SPAN>&lt;ref bean="personService"&gt;&lt;/ref&gt;</SPAN><BR /><SPAN>&lt;/property&gt;</SPAN><BR /><SPAN>&lt;property name="namespaceService"&gt;</SPAN><BR /><SPAN>&lt;ref bean="namespaceService"/&gt;</SPAN><BR /><SPAN>&lt;/property&gt;</SPAN><BR /><BR /><SPAN>&lt;!–</SPAN><BR /><SPAN>This property defines a mapping between attributes held on LDAP user objects and</SPAN><BR /><SPAN>the properties of user objects held in the repository. The key is the QName of an attribute in</SPAN><BR /><SPAN>the repository, the value is the attribute name from the user/inetOrgPerson/.. object in the</SPAN><BR /><SPAN>LDAP repository.</SPAN><BR /><SPAN>–&gt;</SPAN><BR /><SPAN>&lt;property name="attributeMapping"&gt;</SPAN><BR /><SPAN>&lt;map&gt;</SPAN><BR /><SPAN>&lt;entry key="cm:userName"&gt;</SPAN><BR /><SPAN>&lt;!– Must match the same attribute as userIdAttributeName –&gt;</SPAN><BR /><SPAN>&lt;value&gt;sAMAccountName&lt;/value&gt;</SPAN><BR /><SPAN>&lt;/entry&gt;</SPAN><BR /><SPAN>&lt;entry key="cm:firstName"&gt;</SPAN><BR /><SPAN>&lt;!– OpenLDAP: "givenName" –&gt;</SPAN><BR /><SPAN>&lt;!– Active Directory: "givenName" –&gt;</SPAN><BR /><SPAN>&lt;value&gt;givenName&lt;/value&gt;</SPAN><BR /><SPAN>&lt;/entry&gt;</SPAN><BR /><SPAN>&lt;entry key="cm:lastName"&gt;</SPAN><BR /><SPAN>&lt;!– OpenLDAP: "sn" –&gt;</SPAN><BR /><SPAN>&lt;!– Active Directory: "sn" –&gt;</SPAN><BR /><SPAN>&lt;value&gt;sn&lt;/value&gt;</SPAN><BR /><SPAN>&lt;/entry&gt;</SPAN><BR /><SPAN>&lt;entry key="cm:email"&gt;</SPAN><BR /><SPAN>&lt;!– OpenLDAP: "mail" –&gt;</SPAN><BR /><SPAN>&lt;!– Active Directory: "???" –&gt;</SPAN><BR /><SPAN>&lt;value&gt;mail&lt;/value&gt;</SPAN><BR /><SPAN>&lt;/entry&gt;</SPAN><BR /><SPAN>&lt;entry key="cm<img id="smileysurprised" class="emoticon emoticon-smileysurprised" src="https://connect.hyland.com/i/smilies/16x16_smiley-surprised.png" alt="Smiley Surprised" title="Smiley Surprised" />rganizationId"&gt;</SPAN><BR /><SPAN>&lt;!– OpenLDAP: "o" –&gt;</SPAN><BR /><SPAN>&lt;!– Active Directory: "???" –&gt;</SPAN><BR /><SPAN>&lt;value&gt;o&lt;/value&gt;</SPAN><BR /><SPAN>&lt;/entry&gt;</SPAN><BR /><SPAN>&lt;!– Always use the default –&gt;</SPAN><BR /><SPAN>&lt;entry key="cm:homeFolderProvider"&gt;</SPAN><BR /><SPAN>&lt;null/&gt;</SPAN><BR /><SPAN>&lt;/entry&gt;</SPAN><BR /><SPAN>&lt;/map&gt;</SPAN><BR /><SPAN>&lt;/property&gt;</SPAN><BR /><SPAN>&lt;!– Set a default home folder provider –&gt;</SPAN><BR /><SPAN>&lt;!– Defaults only apply for values above –&gt;</SPAN><BR /><SPAN>&lt;property name="attributeDefaults"&gt;</SPAN><BR /><SPAN>&lt;map&gt;</SPAN><BR /><SPAN>&lt;entry key="cm:homeFolderProvider"&gt;</SPAN><BR /><SPAN>&lt;value&gt;companyFolderProvider&lt;/value&gt;</SPAN><BR /><SPAN>&lt;/entry&gt;</SPAN><BR /><SPAN>&lt;/map&gt;</SPAN><BR /><SPAN>&lt;/property&gt;</SPAN><BR /><SPAN>&lt;/bean&gt;</SPAN><BR /><BR /><SPAN>&lt;!– Extract group information from LDAP and transform this to XML –&gt;</SPAN><BR /><BR /><SPAN>&lt;bean id="ldapGroupExportSource" class="org.alfresco.repo.security.authentication.ldap.LDAPGroupExportSource"&gt;</SPAN><BR /><SPAN>&lt;!–</SPAN><BR /><SPAN>The query to select objects that represent the groups to import.</SPAN><BR /><BR /><SPAN>For Open LDAP, using a basic schema, the following is probably what you want:</SPAN><BR /><SPAN>(objectclass=groupOfNames)</SPAN><BR /><BR /><SPAN>For Active Directory:</SPAN><BR /><SPAN>(objectclass=group)</SPAN><BR /><SPAN>–&gt;</SPAN><BR /><SPAN>&lt;property name="groupQuery"&gt;</SPAN><BR /><SPAN>&lt;value&gt;(objectclass=groupOfNames)&lt;/value&gt;</SPAN><BR /><SPAN>&lt;/property&gt;</SPAN><BR /><BR /><SPAN>&lt;!–</SPAN><BR /><SPAN>The search base restricts the LDAP query to a sub section of tree on the LDAP server.</SPAN><BR /><SPAN>–&gt;</SPAN><BR /><SPAN>&lt;property name="searchBase"&gt;</SPAN><BR /><SPAN>&lt;value&gt;OU=*****,dc=****&lt;/value&gt;</SPAN><BR /><SPAN>&lt;/property&gt;</SPAN><BR /><BR /><SPAN>&lt;!–</SPAN><BR /><SPAN>The unique identifier for the user. This must match the userIdAttributeName on the ldapPeopleExportSource bean above.</SPAN><BR /><SPAN>–&gt;</SPAN><BR /><SPAN>&lt;property name="userIdAttributeName"&gt;</SPAN><BR /><SPAN>&lt;value&gt;sAMAccountName&lt;/value&gt;</SPAN><BR /><SPAN>&lt;/property&gt;</SPAN><BR /><BR /><SPAN>&lt;!–</SPAN><BR /><SPAN>An attribute that is a unique identifier for each group found.</SPAN><BR /><SPAN>This is also the name of the group with the current group implementation.</SPAN><BR /><SPAN>This is mandatory for any groups found.</SPAN><BR /><BR /><SPAN>OpenLDAP: "cn" as it is mandatory on groupOfNames</SPAN><BR /><SPAN>Active Directory: "cn"</SPAN><BR /><BR /><SPAN>–&gt;</SPAN><BR /><SPAN>&lt;property name="groupIdAttributeName"&gt;</SPAN><BR /><SPAN>&lt;value&gt;cn&lt;/value&gt;</SPAN><BR /><SPAN>&lt;/property&gt;</SPAN><BR /><BR /><SPAN>&lt;!–</SPAN><BR /><SPAN>The objectClass attribute for group members.</SPAN><BR /><SPAN>For each member of a group, the distinguished name is given.</SPAN><BR /><SPAN>The object is looked up by its DN. If the object is of this class it is treated as a group.</SPAN><BR /><SPAN>–&gt;</SPAN><BR /><SPAN>&lt;property name="groupType"&gt;</SPAN><BR /><SPAN>&lt;value&gt;groupOfNames&lt;/value&gt;</SPAN><BR /><SPAN>&lt;/property&gt;</SPAN><BR /><BR /><SPAN>&lt;!–</SPAN><BR /><SPAN>The objectClass attribute for person members.</SPAN><BR /><SPAN>For each member of a group, the distinguished name is given.</SPAN><BR /><SPAN>The object is looked up by its DN. If the object is of this class it is treated as a person.</SPAN><BR /><SPAN>–&gt;</SPAN><BR /><SPAN>&lt;property name="personType"&gt;</SPAN><BR /><SPAN>&lt;value&gt;inetOrgPerson&lt;/value&gt;</SPAN><BR /><SPAN>&lt;/property&gt;</SPAN><BR /><SPAN>&lt;property name="LDAPInitialDirContextFactory"&gt;</SPAN><BR /><SPAN>&lt;ref bean="ldapInitialDirContextFactory"/&gt;</SPAN><BR /><SPAN>&lt;/property&gt;</SPAN><BR /><SPAN>&lt;property name="namespaceService"&gt;</SPAN><BR /><SPAN>&lt;ref bean="namespaceService"/&gt;</SPAN><BR /><SPAN>&lt;/property&gt;</SPAN><BR /><BR /><SPAN>&lt;!–</SPAN><BR /><SPAN>The repeating attribute on group objects (found by query or as sub groups)</SPAN><BR /><SPAN>used to define membership of the group. This is assumed to hold distinguished names of</SPAN><BR /><SPAN>other groups or users/people; the above types are used to determine this.</SPAN><BR /><BR /><SPAN>OpenLDAP: "member" as it is mandatory on groupOfNames</SPAN><BR /><SPAN>Active Directory: "member"</SPAN><BR /><BR /><SPAN>–&gt;</SPAN><BR /><SPAN>&lt;property name="memberAttribute"&gt;</SPAN><BR /><SPAN>&lt;value&gt;member&lt;/value&gt;</SPAN><BR /><SPAN>&lt;/property&gt;</SPAN><BR /><BR /><SPAN>&lt;property name="authorityDAO"&gt;</SPAN><BR /><SPAN>&lt;ref bean="authorityDAO"/&gt;</SPAN><BR /><SPAN>&lt;/property&gt;</SPAN><BR /><SPAN>&lt;/bean&gt;</SPAN><BR /><BR /><SPAN>&lt;!– Job definitions to import LDAP people and groups –&gt;</SPAN><BR /><SPAN>&lt;!– The triggers register themselves with the scheduler –&gt;</SPAN><BR /><SPAN>&lt;!– You may comment in the default scheduler to enable these triggers –&gt;</SPAN><BR /><SPAN>&lt;!– If a cron base trigger is what you want seee scheduled-jobs-context.xml for examples. –&gt;</SPAN><BR /><BR /><SPAN>&lt;!– Trigger to load poeple –&gt;</SPAN><BR /><SPAN>&lt;!– Note you can have more than one initial (context, trigger, import job and export source) set –&gt;</SPAN><BR /><SPAN>&lt;!– This would allow you to load people from more than one ldap store –&gt;</SPAN><BR /><BR /><SPAN>&lt;bean id="ldapPeopleTrigger" class="org.alfresco.util.TriggerBean"&gt;</SPAN><BR /><SPAN>&lt;property name="jobDetail"&gt;</SPAN><BR /><SPAN>&lt;bean id="ldapPeopleJobDetail" class="org.springframework.scheduling.quartz.JobDetailBean"&gt;</SPAN><BR /><SPAN>&lt;property name="jobClass"&gt;</SPAN><BR /><SPAN>&lt;value&gt;org.alfresco.repo.importer.ImporterJob&lt;/value&gt;</SPAN><BR /><SPAN>&lt;/property&gt;</SPAN><BR /><SPAN>&lt;property name="jobDataAsMap"&gt;</SPAN><BR /><SPAN>&lt;map&gt;</SPAN><BR /><SPAN>&lt;entry key="bean"&gt;</SPAN><BR /><SPAN>&lt;ref bean="ldapPeopleImport"/&gt;</SPAN><BR /><SPAN>&lt;/entry&gt;</SPAN><BR /><SPAN>&lt;/map&gt;</SPAN><BR /><SPAN>&lt;/property&gt;</SPAN><BR /><SPAN>&lt;/bean&gt;</SPAN><BR /><SPAN>&lt;/property&gt;</SPAN><BR /><SPAN>&lt;!– Start after 1 minutes of starting the repository –&gt;</SPAN><BR /><SPAN>&lt;property name="startDelay"&gt;</SPAN><BR /><SPAN>&lt;value&gt;300&lt;/value&gt;</SPAN><BR /><SPAN>&lt;/property&gt;</SPAN><BR /><SPAN>&lt;!– Repeat every hour –&gt;</SPAN><BR /><SPAN>&lt;property name="repeatInterval"&gt;</SPAN><BR /><SPAN>&lt;value&gt;3600000&lt;/value&gt;</SPAN><BR /><SPAN>&lt;/property&gt;</SPAN><BR /><SPAN>&lt;!– Commented out to disable</SPAN><BR /><SPAN>&lt;property name="scheduler"&gt;</SPAN><BR /><SPAN>&lt;ref bean="schedulerFactory" /&gt;</SPAN><BR /><SPAN>&lt;/property&gt;</SPAN><BR /><SPAN>–&gt;</SPAN><BR /><SPAN>&lt;/bean&gt;</SPAN><BR /><BR /><SPAN>&lt;bean id="ldapGroupTrigger" class="org.alfresco.util.TriggerBean"&gt;</SPAN><BR /><SPAN>&lt;property name="jobDetail"&gt;</SPAN><BR /><SPAN>&lt;bean id="ldapGroupJobDetail" class="org.springframework.scheduling.quartz.JobDetailBean"&gt;</SPAN><BR /><SPAN>&lt;property name="jobClass"&gt;</SPAN><BR /><SPAN>&lt;value&gt;org.alfresco.repo.importer.ImporterJob&lt;/value&gt;</SPAN><BR /><SPAN>&lt;/property&gt;</SPAN><BR /><SPAN>&lt;property name="jobDataAsMap"&gt;</SPAN><BR /><SPAN>&lt;map&gt;</SPAN><BR /><SPAN>&lt;entry key="bean"&gt;</SPAN><BR /><SPAN>&lt;ref bean="ldapGroupImport"/&gt;</SPAN><BR /><SPAN>&lt;/entry&gt;</SPAN><BR /><SPAN>&lt;/map&gt;</SPAN><BR /><SPAN>&lt;/property&gt;</SPAN><BR /><SPAN>&lt;/bean&gt;</SPAN><BR /><SPAN>&lt;/property&gt;</SPAN><BR /><SPAN>&lt;!– Start after 1 minutes of starting the repository –&gt;</SPAN><BR /><SPAN>&lt;property name="startDelay"&gt;</SPAN><BR /><SPAN>&lt;value&gt;300&lt;/value&gt;</SPAN><BR /><SPAN>&lt;/property&gt;</SPAN><BR /><SPAN>&lt;!– Repeat every hour –&gt;</SPAN><BR /><SPAN>&lt;property name="repeatInterval"&gt;</SPAN><BR /><SPAN>&lt;value&gt;3600000&lt;/value&gt;</SPAN><BR /><SPAN>&lt;/property&gt;</SPAN><BR /><SPAN>&lt;!– Commented out to disable</SPAN><BR /><SPAN>&lt;property name="scheduler"&gt;</SPAN><BR /><SPAN>&lt;ref bean="schedulerFactory" /&gt;</SPAN><BR /><SPAN>&lt;/property&gt;</SPAN><BR /><SPAN>–&gt;</SPAN><BR /><SPAN>&lt;/bean&gt;</SPAN><BR /><BR /><SPAN>&lt;!– The bean that imports xml describing people –&gt;</SPAN><BR /><BR /><SPAN>&lt;bean id="ldapPeopleImport" class="org.alfresco.repo.importer.ExportSourceImporter"&gt;</SPAN><BR /><SPAN>&lt;property name="importerService"&gt;</SPAN><BR /><SPAN>&lt;ref bean="importerComponentWithBehaviour"/&gt;</SPAN><BR /><SPAN>&lt;/property&gt;</SPAN><BR /><SPAN>&lt;property name="transactionService"&gt;</SPAN><BR /><SPAN>&lt;ref bean="transactionComponent"/&gt;</SPAN><BR /><SPAN>&lt;/property&gt;</SPAN><BR /><SPAN>&lt;property name="authenticationComponent"&gt;</SPAN><BR /><SPAN>&lt;ref bean="authenticationComponent"/&gt;</SPAN><BR /><SPAN>&lt;/property&gt;</SPAN><BR /><SPAN>&lt;property name="exportSource"&gt;</SPAN><BR /><SPAN>&lt;ref bean="ldapPeopleExportSource"/&gt;</SPAN><BR /><SPAN>&lt;/property&gt;</SPAN><BR /><BR /><SPAN>&lt;!– The store that contains people - this should not be changed –&gt;</SPAN><BR /><SPAN>&lt;property name="storeRef"&gt;</SPAN><BR /><SPAN>&lt;value&gt;${spaces.store}&lt;/value&gt;</SPAN><BR /><SPAN>&lt;/property&gt;</SPAN><BR /><BR /><SPAN>&lt;!– The location of people nodes within the store defined above - this should not be changed –&gt;</SPAN><BR /><SPAN>&lt;property name="path"&gt;</SPAN><BR /><SPAN>&lt;value&gt;/${system.system_container.childname}/${system.people_container.childname}&lt;/value&gt;</SPAN><BR /><SPAN>&lt;/property&gt;</SPAN><BR /><BR /><SPAN>&lt;!– If true, clear all existing people before import, if false update/add people from the xml –&gt;</SPAN><BR /><SPAN>&lt;property name="clearAllChildren"&gt;</SPAN><BR /><SPAN>&lt;value&gt;false&lt;/value&gt;</SPAN><BR /><SPAN>&lt;/property&gt;</SPAN><BR /><SPAN>&lt;property name="nodeService"&gt;</SPAN><BR /><SPAN>&lt;ref bean="nodeService"/&gt;</SPAN><BR /><SPAN>&lt;/property&gt;</SPAN><BR /><SPAN>&lt;property name="searchService"&gt;</SPAN><BR /><SPAN>&lt;ref bean="searchService"/&gt;</SPAN><BR /><SPAN>&lt;/property&gt;</SPAN><BR /><SPAN>&lt;property name="namespacePrefixResolver"&gt;</SPAN><BR /><SPAN>&lt;ref bean="namespaceService"/&gt;</SPAN><BR /><SPAN>&lt;/property&gt;</SPAN><BR /><BR /><BR /><SPAN>&lt;property name="caches"&gt;</SPAN><BR /><SPAN>&lt;set&gt;</SPAN><BR /><SPAN>&lt;ref bean="permissionsAccessCache"/&gt;</SPAN><BR /><SPAN>&lt;/set&gt;</SPAN><BR /><SPAN>&lt;/property&gt;</SPAN><BR /><SPAN>&lt;/bean&gt;</SPAN><BR /><BR /><SPAN>&lt;!– The bean that imports xml descibing groups –&gt;</SPAN><BR /><BR /><SPAN>&lt;bean id="ldapGroupImport" class="org.alfresco.repo.importer.ExportSourceImporter"&gt;</SPAN><BR /><SPAN>&lt;property name="importerService"&gt;</SPAN><BR /><SPAN>&lt;ref bean="importerComponentWithBehaviour"/&gt;</SPAN><BR /><SPAN>&lt;/property&gt;</SPAN><BR /><SPAN>&lt;property name="transactionService"&gt;</SPAN><BR /><SPAN>&lt;ref bean="transactionComponent"/&gt;</SPAN><BR /><SPAN>&lt;/property&gt;</SPAN><BR /><SPAN>&lt;property name="authenticationComponent"&gt;</SPAN><BR /><SPAN>&lt;ref bean="authenticationComponent"/&gt;</SPAN><BR /><SPAN>&lt;/property&gt;</SPAN><BR /><SPAN>&lt;property name="exportSource"&gt;</SPAN><BR /><SPAN>&lt;ref bean="ldapGroupExportSource"/&gt;</SPAN><BR /><SPAN>&lt;/property&gt;</SPAN><BR /><SPAN>&lt;!– The store that contains group information - this should not be changed –&gt;</SPAN><BR /><SPAN>&lt;property name="storeRef"&gt;</SPAN><BR /><SPAN>&lt;value&gt;${alfresco_user_store.store}&lt;/value&gt;</SPAN><BR /><SPAN>&lt;/property&gt;</SPAN><BR /><BR /><SPAN>&lt;!– The location of group information in the store above - this should not be changed –&gt;</SPAN><BR /><SPAN>&lt;property name="path"&gt;</SPAN><BR /><SPAN>&lt;value&gt;/${alfresco_user_store.system_container.childname}/${alfresco_user_store.authorities_container.childname}&lt;/value&gt;</SPAN><BR /><SPAN>&lt;/property&gt;</SPAN><BR /><BR /><SPAN>&lt;!– If true, clear all existing groups before import, if false update/add groups from the xml –&gt;</SPAN><BR /><SPAN>&lt;property name="clearAllChildren"&gt;</SPAN><BR /><SPAN>&lt;value&gt;true&lt;/value&gt;</SPAN><BR /><SPAN>&lt;/property&gt;</SPAN><BR /><SPAN>&lt;property name="nodeService"&gt;</SPAN><BR /><SPAN>&lt;ref bean="nodeService"/&gt;</SPAN><BR /><SPAN>&lt;/property&gt;</SPAN><BR /><SPAN>&lt;property name="searchService"&gt;</SPAN><BR /><SPAN>&lt;ref bean="searchService"/&gt;</SPAN><BR /><SPAN>&lt;/property&gt;</SPAN><BR /><SPAN>&lt;property name="namespacePrefixResolver"&gt;</SPAN><BR /><SPAN>&lt;ref bean="namespaceService"/&gt;</SPAN><BR /><SPAN>&lt;/property&gt;</SPAN><BR /><BR /><SPAN>&lt;!– caches to clear on import of groups –&gt;</SPAN><BR /><SPAN>&lt;property name="caches"&gt;</SPAN><BR /><SPAN>&lt;set&gt;</SPAN><BR /><SPAN>&lt;ref bean="userToAuthorityCache"/&gt;</SPAN><BR /><SPAN>&lt;ref bean="permissionsAccessCache"/&gt;</SPAN><BR /><SPAN>&lt;/set&gt;</SPAN><BR /><SPAN>&lt;/property&gt;</SPAN><BR /><BR /><SPAN>&lt;!– userToAuthorityCache –&gt;</SPAN><BR /><SPAN>&lt;/bean&gt;</SPAN><BR /><BR /><SPAN>&lt;/beans&gt;</SPAN></BODY></HTML> Fri, 31 Aug 2007 06:23:52 GMT sanghamitra 2007-08-31T06:23:52Z Ldap authentication in ALfresco2.1 https://connect.hyland.com/t5/alfresco-archive/ldap-authentication-in-alfresco2-1/m-p/132663#M93180 Hi,Can anyone suggest me the Ldap authentication process in alfresco2.1.I have integrated Alfresco2.1 with Liferay4.3, but i am now unable to authenticate the Ldap server from alfresco.I have provided the Ldap server values and other details in ldap-authentication-context.xml. The file is as follows Fri, 31 Aug 2007 06:23:52 GMT https://connect.hyland.com/t5/alfresco-archive/ldap-authentication-in-alfresco2-1/m-p/132663#M93180 sanghamitra 2007-08-31T06:23:52Z Re: Ldap authentication in ALfresco2.1 https://connect.hyland.com/t5/alfresco-archive/ldap-authentication-in-alfresco2-1/m-p/132664#M93181 <HTML><HEAD></HEAD><BODY><SPAN>Hi sanghamitra,</SPAN><BR /><BR /><SPAN>I have a ldap configuration working using simple authentication and no synchronization of users or groups. </SPAN><BR /><SPAN>My ldap file looks like this :</SPAN><BR /><BR /><BR /><PRE class="language-none line-numbers"><CODE><BR />&lt;beans&gt;<BR />&nbsp;&nbsp;&nbsp; <BR />&nbsp;&nbsp;&nbsp; &lt;bean name="authenticationDao" class="org.alfresco.repo.security.authentication.DefaultMutableAuthenticationDao" &gt;<BR />&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; &lt;property name="allowDeleteUser"&gt;<BR />&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; &lt;value&gt;true&lt;/value&gt;<BR />&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; &lt;/property&gt;<BR />&nbsp;&nbsp;&nbsp; &lt;/bean&gt;&nbsp;&nbsp;&nbsp; <BR />&nbsp;&nbsp; <BR /><BR />&nbsp;&nbsp;&nbsp; &lt;!– LDAP authentication configuration –&gt;<BR /><BR /><BR />&nbsp;&nbsp; &lt;bean id="authenticationComponent" class="es.retevision.ecompany.alfresco.repo.security.authentication.ldap.LDAPAuthenticationComponentWrapper"&gt;<BR />&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; &lt;property name="LDAPInitialDirContextFactory"&gt;<BR />&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; &lt;ref bean="ldapInitialDirContextFactory"/&gt;<BR />&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; &lt;/property&gt;<BR />&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; &lt;property name="userNameFormat"&gt;<BR />&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; &lt;value&gt;uid=%s,ou=***,dc=***,dc=***&lt;/value&gt;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; <BR />&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; &lt;/property&gt;<BR />&nbsp;&nbsp; &lt;/bean&gt;<BR />&lt;/bean&gt;<BR /><BR /><BR /><BR /><BR />&nbsp;&nbsp; &lt;!– LDAP authentication configuration –&gt;<BR /><BR />&nbsp;&nbsp;&nbsp; &lt;bean id="ldapInitialDirContextFactory" class="es.retevision.ecompany.alfresco.repo.security.authentication.ldap.LDAPInitialDirContextFactoryWrapper"&gt;<BR />&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; &lt;property name="initialDirContextEnvironment"&gt;<BR />&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; &lt;map&gt;<BR />&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; &lt;entry key="java.naming.factory.initial"&gt;<BR />&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; &lt;value&gt;com.sun.jndi.ldap.LdapCtxFactory&lt;/value&gt;<BR />&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; &lt;/entry&gt; <BR />&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; &lt;entry key="java.naming.provider.url"&gt;<BR />&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; &lt;value&gt;ldap://my.ldap.server:port&lt;/value&gt;<BR />&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; &lt;/entry&gt;<BR />&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; &lt;entry key="java.naming.security.authentication"&gt;<BR />&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; &lt;value&gt;simple&lt;/value&gt;&nbsp;&nbsp; <BR />&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; &lt;/entry&gt;<BR />&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; &lt;/map&gt;<BR />&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; &lt;/property&gt;<BR />&nbsp;&nbsp;&nbsp; &lt;/bean&gt;<BR /> &lt;/beans&gt;<BR /><SPAN class="line-numbers-rows"><SPAN>‍</SPAN><SPAN>‍</SPAN><SPAN>‍</SPAN><SPAN>‍</SPAN><SPAN>‍</SPAN><SPAN>‍</SPAN><SPAN>‍</SPAN><SPAN>‍</SPAN><SPAN>‍</SPAN><SPAN>‍</SPAN><SPAN>‍</SPAN><SPAN>‍</SPAN><SPAN>‍</SPAN><SPAN>‍</SPAN><SPAN>‍</SPAN><SPAN>‍</SPAN><SPAN>‍</SPAN><SPAN>‍</SPAN><SPAN>‍</SPAN><SPAN>‍</SPAN><SPAN>‍</SPAN><SPAN>‍</SPAN><SPAN>‍</SPAN><SPAN>‍</SPAN><SPAN>‍</SPAN><SPAN>‍</SPAN><SPAN>‍</SPAN><SPAN>‍</SPAN><SPAN>‍</SPAN><SPAN>‍</SPAN><SPAN>‍</SPAN><SPAN>‍</SPAN><SPAN>‍</SPAN><SPAN>‍</SPAN><SPAN>‍</SPAN><SPAN>‍</SPAN><SPAN>‍</SPAN><SPAN>‍</SPAN><SPAN>‍</SPAN><SPAN>‍</SPAN><SPAN>‍</SPAN><SPAN>‍</SPAN><SPAN>‍</SPAN><SPAN>‍</SPAN><SPAN>‍</SPAN></SPAN></CODE></PRE><BR /><SPAN>I would suggest you try the config first with "simple" authentication. I haven't been able to configure it with DIGEST-MD5. </SPAN><BR /><BR /><SPAN>Hope this is of help</SPAN><BR /><SPAN>Finner</SPAN></BODY></HTML> Fri, 31 Aug 2007 07:27:48 GMT https://connect.hyland.com/t5/alfresco-archive/ldap-authentication-in-alfresco2-1/m-p/132664#M93181 finner 2007-08-31T07:27:48Z Re: Ldap authentication in ALfresco2.1 https://connect.hyland.com/t5/alfresco-archive/ldap-authentication-in-alfresco2-1/m-p/132665#M93182 <HTML><HEAD></HEAD><BODY><SPAN>Hi Finner,</SPAN><BR /><BR /><SPAN>I tried with the simple authentication too, but that still it doesnt work.</SPAN><BR /><SPAN>Here's the code of My log4j file inside tomcat55/common/classes.</SPAN><BR /><BR /><SPAN># Set root logger level to error</SPAN><BR /><SPAN>log4j.rootLogger=error, Console, File</SPAN><BR /><BR /><SPAN>###### Console appender definition #######</SPAN><BR /><BR /><SPAN># All outputs currently set to be a ConsoleAppender.</SPAN><BR /><SPAN>log4j.appender.Console=org.apache.log4j.ConsoleAppender</SPAN><BR /><SPAN>log4j.appender.Console.layout=org.apache.log4j.PatternLayout</SPAN><BR /><SPAN>log4j.appender.Console.layout.ConversionPattern=%d{ABSOLUTE} %-5p [%c{3}] %m%n</SPAN><BR /><SPAN>#log4j.appender.Console.layout.ConversionPattern=%d{ABSOLUTE} %-5p [%c] %m%n</SPAN><BR /><BR /><SPAN>###### File appender definition #######</SPAN><BR /><SPAN>log4j.appender.File=org.apache.log4j.DailyRollingFileAppender</SPAN><BR /><SPAN>log4j.appender.File.File=alfresco.log</SPAN><BR /><SPAN>log4j.appender.File.Append=true</SPAN><BR /><SPAN>log4j.appender.File.DatePattern='.'yyyy-MM-dd</SPAN><BR /><SPAN>log4j.appender.File.layout=org.apache.log4j.PatternLayout</SPAN><BR /><SPAN>log4j.appender.File.layout.ConversionPattern=%d{ABSOLUTE} %-5p [%c] %m%n</SPAN><BR /><BR /><SPAN>###### Hibernate specific appender definition #######</SPAN><BR /><SPAN>#log4j.appender.file=org.apache.log4j.FileAppender</SPAN><BR /><SPAN>#log4j.appender.file.File=hibernate.log</SPAN><BR /><SPAN>#log4j.appender.file.layout=org.apache.log4j.PatternLayout</SPAN><BR /><SPAN>#log4j.appender.file.layout.ConversionPattern=%d{ABSOLUTE} %5p %c{1}:%L - %m%n</SPAN><BR /><BR /><SPAN>###### Log level overrides #######</SPAN><BR /><BR /><SPAN>log4j.logger.org.alfresco.repo.model.filefolder=info</SPAN><BR /><BR /><SPAN># Hibernate</SPAN><BR /><SPAN>log4j.logger.org.hibernate=error</SPAN><BR /><SPAN>log4j.logger.org.hibernate.util.JDBCExceptionReporter=fatal</SPAN><BR /><SPAN>log4j.logger.org.hibernate.event.def.AbstractFlushingEventListener=fatal</SPAN><BR /><SPAN>#log4j.logger.org.hibernate.cache.EhCacheProvider=warn</SPAN><BR /><SPAN>log4j.logger.org.hibernate.type=warn</SPAN><BR /><SPAN># log4j.logger.org.hibernate.persister.collection=DEBUG</SPAN><BR /><BR /><SPAN># Spring</SPAN><BR /><SPAN>log4j.logger.org.springframework=warn</SPAN><BR /><BR /><SPAN># Axis/WSS4J</SPAN><BR /><SPAN>log4j.logger.org.apache.axis=info</SPAN><BR /><SPAN>log4j.logger.org.apache.ws=info</SPAN><BR /><BR /><SPAN># MyFaces</SPAN><BR /><SPAN>log4j.logger.org.apache.myfaces.util.DebugUtils=info</SPAN><BR /><SPAN>log4j.logger.org.apache.myfaces.el.VariableResolverImpl=error</SPAN><BR /><SPAN>log4j.logger.org.apache.myfaces.application.jsp.JspViewHandlerImpl=error</SPAN><BR /><SPAN>log4j.logger.org.apache.myfaces.taglib=error</SPAN><BR /><BR /><SPAN># log prepared statement cache activity ###</SPAN><BR /><SPAN>log4j.logger.org.hibernate.ps.PreparedStatementCache=info</SPAN><BR /><BR /><SPAN># Alfresco</SPAN><BR /><SPAN>log4j.logger.org.alfresco=error</SPAN><BR /><SPAN>log4j.logger.org.alfresco.repo.avm=info</SPAN><BR /><SPAN>log4j.logger.org.alfresco.config=info</SPAN><BR /><SPAN>log4j.logger.org.alfresco.sample=info</SPAN><BR /><SPAN>log4j.logger.org.alfresco.web=info</SPAN><BR /><SPAN>log4j.logger.org.alfresco.web.scripts=warn</SPAN><BR /><SPAN>#log4j.logger.org.alfresco.web.ui.repo.component.UIActions=debug</SPAN><BR /><SPAN>#log4j.logger.org.alfresco.web.ui.repo.tag.PageTag=debug</SPAN><BR /><SPAN>#log4j.logger.org.alfresco.web.bean.clipboard=debug</SPAN><BR /><SPAN>log4j.logger.org.alfresco.repo.webservice=info</SPAN><BR /><SPAN>log4j.logger.org.alfresco.service.descriptor.DescriptorService=info</SPAN><BR /><SPAN>#log4j.logger.org.alfresco.repo.importer.ImporterBootstrap=info</SPAN><BR /><SPAN>#log4j.logger.org.alfresco.web.ui.common.Utils=info</SPAN><BR /><SPAN>log4j.logger.org.alfresco.repo.admin.patch.PatchExecuter=info</SPAN><BR /><SPAN>log4j.logger.org.alfresco.repo.module.ModuleServiceImpl=info</SPAN><BR /><SPAN>log4j.logger.org.alfresco.repo.domain.schema.SchemaBootstrap=info</SPAN><BR /><SPAN>log4j.logger.org.alfresco.repo.admin.ConfigurationChecker=info</SPAN><BR /><SPAN>log4j.logger.org.alfresco.repo.node.index.FullIndexRecoveryComponent=info</SPAN><BR /><SPAN>log4j.logger.org.alfresco.util.OpenOfficeConnectionTester=warn</SPAN><BR /><SPAN>log4j.logger.org.alfresco.repo.node.db.hibernate.HibernateNodeDaoServiceImpl=warn</SPAN><BR /><SPAN>#log4j.logger.org.alfresco.web.app.DebugPhaseListener=debug</SPAN><BR /><SPAN>#log4j.logger.org.alfresco.repo.cache.EhCacheTracerJob=debug</SPAN><BR /><SPAN>#log4j.logger.org.alfresco.repo.search.Indexer=debug</SPAN><BR /><SPAN>#log4j.logger.org.alfresco.repo.workflow=info</SPAN><BR /><SPAN>#log4j.logger.org.alfresco.repo.jscript=DEBUG</SPAN><BR /><SPAN>log4j.logger.org.alfresco.repo.jscript.AlfrescoRhinoScriptDebugger=off</SPAN><BR /><BR /><SPAN># CIFS server debugging</SPAN><BR /><SPAN>#log4j.logger.org.alfresco.smb.protocol=debug</SPAN><BR /><SPAN>#log4j.logger.org.alfresco.smb.protocol.auth=debug</SPAN><BR /><SPAN>#log4j.logger.org.alfresco.acegi=debug</SPAN><BR /><BR /><SPAN># FTP server debugging</SPAN><BR /><SPAN>#log4j.logger.org.alfresco.ftp.protocol=debug</SPAN><BR /><SPAN>#log4j.logger.org.alfresco.ftp.server=debug</SPAN><BR /><BR /><SPAN># WebDAV debugging</SPAN><BR /><SPAN>#log4j.logger.org.alfresco.webdav.protocol=debug</SPAN><BR /><BR /><SPAN># NTLM servlet filters</SPAN><BR /><SPAN>#log4j.logger.org.alfresco.web.app.servlet.NTLMAuthenticationFilter=debug</SPAN><BR /><SPAN>#log4j.logger.org.alfresco.repo.webdav.auth.NTLMAuthenticationFilter=debug</SPAN><BR /><BR /><SPAN># Integrity message threshold - if 'failOnViolation' is off, then WARNINGS are generated</SPAN><BR /><SPAN>log4j.logger.org.alfresco.repo.node.integrity=ERROR</SPAN><BR /><BR /><SPAN># New indexer debugging</SPAN><BR /><SPAN>#log4j.logger.org.alfresco.repo.search.impl.lucene.index=DEBUG</SPAN><BR /><BR /><SPAN># Audit debugging</SPAN><BR /><SPAN># log4j.logger.org.alfresco.repo.audit=DEBUG</SPAN><BR /><SPAN># log4j.logger.org.alfresco.repo.audit.model=DEBUG</SPAN><BR /><BR /><SPAN># Turn off Spring remoting warnings that should really be info or debug.</SPAN><BR /><SPAN>log4j.logger.org.springframework.remoting.support=error</SPAN><BR /><BR /><SPAN># Templating debugging</SPAN><BR /><SPAN># log4j.logger.org.alfresco.web.forms=debug</SPAN><BR /><SPAN># log4j.logger.org.chiba.xml.xforms=debug</SPAN><BR /><BR /><SPAN># Property sheet and modelling debugging</SPAN><BR /><SPAN># change to error to hide the warnings about missing properties and associations</SPAN><BR /><SPAN>log4j.logger.alfresco.missingProperties=warn</SPAN><BR /><SPAN>log4j.logger.org.alfresco.web.ui.repo.component.property.UIChildAssociation=warn</SPAN><BR /><SPAN>log4j.logger.org.alfresco.web.ui.repo.component.property.UIAssociation=warn</SPAN><BR /><SPAN>#log4j.logger.org.alfresco.web.ui.repo.component.property=debug</SPAN><BR /><SPAN>#log4j.logger.org.alfresco.repo.dictionary.DictionaryDAO=info</SPAN><BR /><SPAN>#added the below line to enter the debug mode</SPAN><BR /><SPAN>log4.logger.org.alfresco.repo.security.authentication.ldap=debug </SPAN><BR /><BR /><BR /><SPAN># Virtualization Server Registry</SPAN><BR /><SPAN>#log4j.logger.org.alfresco.mbeans.VirtServerRegistry=debug</SPAN><BR /><BR /><SPAN># Link Validation debugging</SPAN><BR /><SPAN>#log4j.logger.org.alfresco.linkvalidation.LinkValidationServiceImpl=debug</SPAN><BR /><SPAN>#log4j.logger.org.alfresco.linkvalidation.LinkValidationStoreCallbackHandler=debug</SPAN></BODY></HTML> Fri, 31 Aug 2007 09:01:25 GMT https://connect.hyland.com/t5/alfresco-archive/ldap-authentication-in-alfresco2-1/m-p/132665#M93182 sanghamitra 2007-08-31T09:01:25Z