I would suggest an authentication chain containing the passthru subsystem for authentication and the ldap-ad subsystem for synchronization. You will get NTLM SSO and CIFS authentication against the domain server by default.
Just set the following in alfresco-global.properties
authentication.chain=passthru1assthru,ldap1:ldap-ad
ldap.authentication.active=false
passthru.authentication.domain=# Intentionally left blank
passthru.authentication.servers=DOMAIN\\domaincontroller.com,domaincontroller.com
passthru.authentication.defaultAdministratorUserNames=Administrator
ldap.authentication.java.naming.provider.url=ldap://domaincontroller.com:389
ldap.synchronization.java.naming.security.principal=alfresco@domain
ldap.synchronization.java.naming.security.credentials=secret
ldap.synchronization.groupSearchBase=ou=Security Groups,ou=Alfresco,dc=domain
ldap.synchronization.userSearchBase=ou=User Accounts,ou=Alfresco,dc=domain
I would recommend taking a v3.3 nightly build or building from HEAD, as a number of improvements have been made since the v3.2 Community release.
See http://wiki.alfresco.com/wiki/Alfresco_Authentication_Subsystems for a guide to all these parameters and their meanings.
hi dward,
Thanks for all your posts on the LDAP issues.
I was able to get this working…for new users out there, make sure the accounts you use a ldap account for the following so that you can login as an admin.
ldap.synchronization.java.naming.security.principal=alfresco@domain
passthru.authentication.defaultAdministratorUserNames=AdministratorThank you.
I did,
I setup all the values , But i still face the problem.
Sometimes http://servername/alfresco not working .
I need ur help, If you need any more info I will provide u.
Adnan
ops:
I setup all the values , But i still face the problem.
Sometimes http://servername/alfresco not working .
I need ur help, If you need any more info I will provide u.
Adnan
ops:
