Hyland Community
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Alfresco-4.2.e with Openldap not work

tstianzy
Champ in-the-making
Champ in-the-making

‎01-21-2014 08:40 PM

Hi

I want to integrate my alfresco-4.2.e and openldap, use the users of openldap to login alfresco. I according to alfresco wiki to configure it, but it not work. The following is my configuration:

Add the three lines to /opt/alfresco/apache-tomcat/shared/classes/alfresco-global.properties file.
  ntlm.authentication.sso.enabled=false
  passthru.authentication.authenticateCIFS=false
  authentication.chain=alfrescoNtlm1:alfrescoNtlm,ldap1:ldap

The following is /opt/alfresco/apache-tomcat/webapps/alfresco/WEB-INF/classes/alfresco/subsystems/Authentication/ldap/ldap1/ldap-authentication.properties file content:
   ldap.authentication.active=true
   ldap.authentication.allowGuestLogin=false
   ldap.authentication.userNameFormat=uid=%s,dc=mydomain,dc=com
   ldap.authentication.java.naming.factory.initial=com.sun.jndi.ldap.LdapCtxFactory
   ldap.authentication.java.naming.provider.url=ldap://192.168.8.111:389
   ldap.authentication.java.naming.security.authentication=simple
   ldap.authentication.escapeCommasInBind=false
   ldap.authentication.escapeCommasInUid=false
   ldap.authentication.defaultAdministratorUserNames=
   ldap.synchronization.active=true
   ldap.synchronization.java.naming.security.authentication=simple
   ldap.synchronization.java.naming.security.principal=cn=root,dc=mydomain,dc=com
   ldap.synchronization.java.naming.security.credentials=password
   ldap.synchronization.queryBatchSize=1000
   ldap.synchronization.attributeBatchSize=1000
   ldap.synchronization.groupQuery=(objectclass\=posixGroup)
   ldap.synchronization.groupDifferentialQuery=(&(objectclass\=posixGroup)(!(modifyTimestamp<\={0})))
   ldap.synchronization.personQuery=(objectclass\=inetOrgPerson)
   ldap.synchronization.personDifferentialQuery=(&(objectclass\=inetOrgPerson)(!(modifyTimestamp<\={0})))
   ldap.synchronization.groupSearchBase=dc=mydomain,dc=com
   ldap.synchronization.userSearchBase=dc=mydomain,dc=com
   ldap.synchronization.modifyTimestampAttributeName=modifyTimestamp
   ldap.synchronization.timestampFormat=yyyyMMddHHmmss'Z'
   ldap.synchronization.userIdAttributeName=uid
   ldap.synchronization.userFirstNameAttributeName=givenName
   ldap.synchronization.userLastNameAttributeName=sn
   ldap.synchronization.userEmailAttributeName=mail
   ldap.synchronization.userOrganizationalIdAttributeName=o
   ldap.synchronization.defaultHomeFolderProvider=largeHomeFolderProvider
   ldap.synchronization.groupIdAttributeName=cn
   ldap.synchronization.groupDisplayNameAttributeName=description
   ldap.synchronization.groupType=groupOfNames
   ldap.synchronization.personType=inetOrgPerson
   ldap.synchronization.groupMemberAttributeName=member
   ldap.synchronization.enableProgressEstimation=true
   ldap.authentication.java.naming.read.timeout=0

Then, I trying to login to alfresco use ldap users, the ldap.log file of ldap server have no any output.
Does anyone can help me?
Thanks.
Labels:
0 Kudos
4 REPLIES 4

tstianzy
Champ in-the-making
Champ in-the-making

‎01-26-2014 07:25 AM

Anyone can help me?
0 Kudos

anshu_kumar
Star Contributor
Star Contributor

‎01-27-2014 03:37 AM

Do you get any error in alfresco log?
0 Kudos

nancyaggarwal
Champ in-the-making
Champ in-the-making
In response to anshu_kumar

‎02-10-2014 10:42 PM

Hii

Also put below properties in alfresco-global.properties file.



######AUTHENTIFICATION CHAIN####
authentication.chain=

######SUBSYSTEM AUTHENTIFICATION####

### SIMPLE AUTHENTIFICATION ###
ldap.authentication.java.naming.security.authentication=
ldap.authentication.userNameFormat=

ldap.authentication.active=
ldap.authentication.java.naming.factory.initial=
ldap.authentication.java.naming.provider.url=
ldap.authentication.allowGuestLogin=

#####################################
###### SUBSYSTEM SYNCHRONISATION ####
#####################################

ldap.synchronization.active=true

ldap.synchronization.java.naming.security.principal=

ldap.synchronization.java.naming.security.credentials=
ldap.synchronization.queryBatchSize=

ldap.synchronization.groupQuery=
ldap.synchronization.groupDifferentialQuery=


ldap.synchronization.personQuery=
ldap.synchronization.personDifferentialQuery=

ldap.synchronization.groupSearchBase=
ldap.synchronization.userSearchBase=
ldap.synchronization.modifyTimestampAttributeName=

ldap.synchronization.timestampFormat=


..

################# ATTRIBUTE MAPPING #############
#### mapping to unique username in username attribute###
ldap.synchronization.userIdAttributeName=
#ldap.synchronization.userLastNameAttributeName=
#ldap.synchronization.userEmailAttributeName=
#ldap.synchronization.userFirstNameAttributeName=
ldap.synchronization.groupIdAttributeName=
#ldap.synchronization.groupType=
#ldap.synchronization.personType=
ldap.synchronization.groupMemberAttributeName=
#ldap.synchronization.userOrganizationalIdAttributeName=

ldap.synchronization.enableProgressEstimation=
###### SYNCHRONISATION SETTINGS ####
####################################

synchronization.autoCreatePeopleOnLogin=
#synchronization.import.group.clearAllChildren=
# full sync or only changes?
synchronization.synchronizeChangesOnly=
# to sync on each alfresco startup
synchronization.syncOnStartup=
synchronization.syncWhenMissingPeopleLogIn=




then try again. Hope it works.


Nancy
0 Kudos

raghunandangowd
Confirmed Champ
Confirmed Champ
In response to nancyaggarwal

‎04-25-2018 03:18 AM

Hey Nancy,

It didn't work.

0 Kudos
Getting started

Tags

Find what you came for

We want to make your experience in Hyland Connect as valuable as possible, so we put together some helpful links.

Copyright © 2024 Khoros, LLC