Hello,
I have the following config running, but I can't authenticate with AlfrescoCIFS.
Here the part for LDAP/authentication from my alfresco-global.properties:
### Authentication ###
authentication.chain=alfrescoNtlm1:alfrescoNtlm,passthru1
assthru,ldap1:ldap-ad
ntlm.authentication.authenticateCIFS=false
ntlm.authentication.mapUnknownUserToGuest=false
alfresco.authentication.authenticateCIFS=false
alfresco.authentication.allowGuestLogin=false
# set the domain or not - no effect -> same error in log
passthru.authentication.domain=
passthru.authentication.servers=TEST\\192.168.104.5
passthru.authentication.defaultAdministratorUserNames=Administrator,admin,alfadmin
## additional changes
passthru.authentication.useLocalServer=false
passthru.authentication.guestAccess=false
#Timeout value when opening a session to an authentication server, in milliseconds
passthru.authentication.connectTimeout=5000
#Offline server check interval in seconds
passthru.authentication.offlineCheckInterval=300
passthru.authentication.protocolOrder=TCPIP,NETBIOS
passthru.authentication.authenticateCIFS=true
passthru.authentication.authenticateFTP=false
passthru.authentication.sso.enabled=false
#LDAP configuration
#————-
ldap.authentication.active=false
ldap.authentication.allowGuestLogin=false
ldap.authentication.userNameFormat=%s@test.local
ldap.authentication.java.naming.provider.url=ldap://192.168.104.5:389
ldap.authenticiation.java.naming.security.authentication=simple
ldap.synchronization.active=true
ldap.synchronization.java.naming.security.principal=alfadmin@test.local
ldap.synchronization.java.naming.security.credentials=Alfresco_2014
ldap.synchronization.queryBatchSize=1000
ldap.synchronization.userQuery=(objectclass\=user)
ldap.synchronization.userSearchBase=ou\=DFW - User,dc\=Test,dc\=local
ldap.synchronization.groupQuery=(objectclass\=group)
ldap.synchronization.groupSearchBase=ou\=DFW - Gruppen,dc\=Test,dc\=local
synchronization.synchronizeChangesOnly=true
ldap.synchronization.personQuery=(objectclass\=user)
ldap.synchronization.personDifferentialQuery=(objectclass\=user)
ldap.synchronization.groupQuery=(objectclass\=group)
ldap.synchronization.groupDifferentialQuery=(objectclass\=group)
ldap.synchronization.userIdAttributeName=sAMAccountName
ldap.synchronization.userFirstNameAttributeName=givenName
ldap.synchronization.userLastNameAttributeName=sn
ldap.synchronization.userEmailAttributeName=mail
#ldap.synchronization.userOrganizationalIdAttributeName=company
ldap.synchronization.groupType=group
ldap.synchronization.personType=user
### CIFS ###
cifs.disableNativeCode=false
cifs.enabled=true
cifs.serverName=ALFRESCOA
cifs.domain=TEST
cifs.sessionTimeout=500
cifs.ipv6.enabled=false
cifs.WINS.autoDetectEnabled=true
cifs.hostannounce=true
# cifs.bindto=192.168.104.53
# cifs.sessionDebug=NetBIOS,State,Info
LDAP is running correct, I see users and groups and the users can login with ad-username and ad-password. Thats ok.
WebDAV works too, Sharepoint at 7070 also, all things no problem.
CIFS don't work, no login possible. I will say, I tested so many things but the problem is already the same (from log):
09:58:14,265 DEBUG [org.alfresco.fileserver] [AlfJLANWorker1] Open authenticate session to [TEST\ex2010.test.local:192.168.104.5
nline:0,0]
09:58:14,275 ERROR [org.alfresco.filesys.auth.cifs.PassthruCifsAuthenticator] [AlfJLANWorker2] org.alfresco.jlan.smb.SMBException: Invalid parameter
The ad-server is a win2008r2, alfresco running Suse Linux Enterprise V11SP3.
Any ideas where could be the problem…? I have no ideas more
Thanks, Heiko.
I have the following config running, but I can't authenticate with AlfrescoCIFS.
Here the part for LDAP/authentication from my alfresco-global.properties:
### Authentication ###
authentication.chain=alfrescoNtlm1:alfrescoNtlm,passthru1
assthru,ldap1:ldap-adntlm.authentication.authenticateCIFS=false
ntlm.authentication.mapUnknownUserToGuest=false
alfresco.authentication.authenticateCIFS=false
alfresco.authentication.allowGuestLogin=false
# set the domain or not - no effect -> same error in log
passthru.authentication.domain=
passthru.authentication.servers=TEST\\192.168.104.5
passthru.authentication.defaultAdministratorUserNames=Administrator,admin,alfadmin
## additional changes
passthru.authentication.useLocalServer=false
passthru.authentication.guestAccess=false
#Timeout value when opening a session to an authentication server, in milliseconds
passthru.authentication.connectTimeout=5000
#Offline server check interval in seconds
passthru.authentication.offlineCheckInterval=300
passthru.authentication.protocolOrder=TCPIP,NETBIOS
passthru.authentication.authenticateCIFS=true
passthru.authentication.authenticateFTP=false
passthru.authentication.sso.enabled=false
#LDAP configuration
#————-
ldap.authentication.active=false
ldap.authentication.allowGuestLogin=false
ldap.authentication.userNameFormat=%s@test.local
ldap.authentication.java.naming.provider.url=ldap://192.168.104.5:389
ldap.authenticiation.java.naming.security.authentication=simple
ldap.synchronization.active=true
ldap.synchronization.java.naming.security.principal=alfadmin@test.local
ldap.synchronization.java.naming.security.credentials=Alfresco_2014
ldap.synchronization.queryBatchSize=1000
ldap.synchronization.userQuery=(objectclass\=user)
ldap.synchronization.userSearchBase=ou\=DFW - User,dc\=Test,dc\=local
ldap.synchronization.groupQuery=(objectclass\=group)
ldap.synchronization.groupSearchBase=ou\=DFW - Gruppen,dc\=Test,dc\=local
synchronization.synchronizeChangesOnly=true
ldap.synchronization.personQuery=(objectclass\=user)
ldap.synchronization.personDifferentialQuery=(objectclass\=user)
ldap.synchronization.groupQuery=(objectclass\=group)
ldap.synchronization.groupDifferentialQuery=(objectclass\=group)
ldap.synchronization.userIdAttributeName=sAMAccountName
ldap.synchronization.userFirstNameAttributeName=givenName
ldap.synchronization.userLastNameAttributeName=sn
ldap.synchronization.userEmailAttributeName=mail
#ldap.synchronization.userOrganizationalIdAttributeName=company
ldap.synchronization.groupType=group
ldap.synchronization.personType=user
### CIFS ###
cifs.disableNativeCode=false
cifs.enabled=true
cifs.serverName=ALFRESCOA
cifs.domain=TEST
cifs.sessionTimeout=500
cifs.ipv6.enabled=false
cifs.WINS.autoDetectEnabled=true
cifs.hostannounce=true
# cifs.bindto=192.168.104.53
# cifs.sessionDebug=NetBIOS,State,Info
LDAP is running correct, I see users and groups and the users can login with ad-username and ad-password. Thats ok.
WebDAV works too, Sharepoint at 7070 also, all things no problem.
CIFS don't work, no login possible. I will say, I tested so many things but the problem is already the same (from log):
09:58:14,265 DEBUG [org.alfresco.fileserver] [AlfJLANWorker1] Open authenticate session to [TEST\ex2010.test.local:192.168.104.5
nline:0,0]09:58:14,275 ERROR [org.alfresco.filesys.auth.cifs.PassthruCifsAuthenticator] [AlfJLANWorker2] org.alfresco.jlan.smb.SMBException: Invalid parameter
The ad-server is a win2008r2, alfresco running Suse Linux Enterprise V11SP3.
Any ideas where could be the problem…? I have no ideas more
Thanks, Heiko.
