Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
- Hyland Connect
- Platform
- Alfresco
- Alfresco Archive
- Re: Autenticación con Active Directory
Options
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Mute
- Printer Friendly Page
Autenticación con Active Directory
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
11-18-2008 07:02 AM
Hola a todos,
he instalado Alfresco 2.1 Community sobre una distribución Debian, estoy teniendo problemas para conectarlo con mi Active Directory de Windows. Al principio pensaba que tal vez no se podía conectar pero al final lo he logrado a medias. He tocado el fichero de configuración:
ldap-authentication-context.xml
Y me queda así:
El problema que tengo es que mi Active Directory está organizado de la siguiente forma, en un primer nivel tengo:
- CN=Users,DC=MI_DOMINIO,DC=com
En un segundo nivel tengo (justo debajo del primer nivel)
- CN=Nombre1 Apellidos1
- CN=Nombre2 Apellidos2
- …..
Por lo tanto la búsqueda base DN:
Me permite autenticarme a Alfresco utilizando como login: Nombre y Apellidos del usuario, y como clave: la clave.
No consigo utilizar como login el atributo sAMAccountName que hay dentro de cada registro de cada usuario. En otras aplicaciones puedo utilizar algún tipo de filtro adicional como:
En Alfresco no cómo modificar la búsqueda para que use el atributo sAMAccountName. ¿Alguien puede ayudarme?
Muchas gracias!!!
:wink:
he instalado Alfresco 2.1 Community sobre una distribución Debian, estoy teniendo problemas para conectarlo con mi Active Directory de Windows. Al principio pensaba que tal vez no se podía conectar pero al final lo he logrado a medias. He tocado el fichero de configuración:
ldap-authentication-context.xml
Y me queda así:
<?xml version='1.0' encoding='UTF-8'?>
<!DOCTYPE beans PUBLIC '-//SPRING//DTD BEAN//EN' 'http://www.springframework.org/dtd/spring-beans.dtd'>
<beans>
<bean name="authenticationDao" class="org.alfresco.repo.security.authentication.DefaultMutableAuthenticationDao" >
<property name="allowDeleteUser">
<value>false</value>
</property>
</bean>
<bean id="authenticationComponent" class="org.alfresco.repo.security.authentication.ldap.LDAPAuthenticationComponentImpl">
<property name="LDAPInitialDirContextFactory">
<ref bean="ldapInitialDirContextFactory"/>
</property>
<property name="userNameFormat">
<value>CN=%s,CN=Users,DC=MI_DOMINIO,DC=com</value>
</property>
</bean>
<bean id="ldapInitialDirContextFactory" class="org.alfresco.repo.security.authentication.ldap.LDAPInitialDirContextFactoryImpl">
<property name="initialDirContextEnvironment">
<map>
<entry key="java.naming.factory.initial">
<value>com.sun.jndi.ldap.LdapCtxFactory</value>
</entry>
<entry key="java.naming.provider.url">
<value>ldap://MI_IP:389</value>
</entry>
<entry key="java.naming.security.authentication">
<value>simple</value>
</entry>
</map>
</property>
</bean>
</beans>El problema que tengo es que mi Active Directory está organizado de la siguiente forma, en un primer nivel tengo:
- CN=Users,DC=MI_DOMINIO,DC=com
En un segundo nivel tengo (justo debajo del primer nivel)
- CN=Nombre1 Apellidos1
- CN=Nombre2 Apellidos2
- …..
Por lo tanto la búsqueda base DN:
<property name="userNameFormat">
<value>CN=%s,CN=Users,DC=MI_DOMINIO,DC=com</value>
</property>Me permite autenticarme a Alfresco utilizando como login: Nombre y Apellidos del usuario, y como clave: la clave.
No consigo utilizar como login el atributo sAMAccountName que hay dentro de cada registro de cada usuario. En otras aplicaciones puedo utilizar algún tipo de filtro adicional como:
(&(objectclass=*)(sAMAccountName=MI_LOGIN))En Alfresco no cómo modificar la búsqueda para que use el atributo sAMAccountName. ¿Alguien puede ayudarme?
Muchas gracias!!!
:wink:
Labels:
- Labels:
-
Archive
20 REPLIES 20
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
12-19-2008 12:00 PM
Hola de nuevo,
Realicé todos los cambios que posteaste, pero aun no se consigue la sincronización, el unico campo que registra es el id del usuario. El siguiente es el Log:
Realicé todos los cambios que posteaste, pero aun no se consigue la sincronización, el unico campo que registra es el id del usuario. El siguiente es el Log:
10:01:02,470 WARN [org.springframework.remoting.rmi.RmiRegistryFactoryBean] Could not detect RMI registry - creating new one
10:01:06,783 INFO [org.alfresco.repo.domain.schema.SchemaBootstrap] Schema managed by database dialect org.hibernate.dialect.MySQLInnoDBDialect.
10:01:06,877 INFO [org.alfresco.repo.domain.schema.SchemaBootstrap] Executing database script D:\Alfresco\tomcat\temp\Alfresco\AlfrescoSchemaCreate-org.hibernate.dialect.MySQLInnoDBDialect-39937.sql (Generated).
10:01:09,736 INFO [org.alfresco.repo.domain.schema.SchemaBootstrap] Executing database script D:\Alfresco\tomcat\temp\Alfresco\AlfrescoSchemaUpdate-org.hibernate.dialect.MySQLInnoDBDialect-39938.sql (Copied from classpath:alfresco/dbscripts/create/2.1/org.hibernate.dialect.MySQLInnoDBDialect/AlfrescoPostCreate-2.1-FKIndexes.sql).
10:01:09,783 INFO [org.alfresco.repo.domain.schema.SchemaBootstrap] Executing database script D:\Alfresco\tomcat\temp\Alfresco\AlfrescoSchemaUpdate-org.hibernate.dialect.MySQLInnoDBDialect-39939.sql (Copied from classpath:alfresco/dbscripts/create/1.4/org.hibernate.dialect.MySQLInnoDBDialect/post-create-indexes-02.sql).
10:01:09,830 INFO [org.alfresco.repo.domain.schema.SchemaBootstrap] All executed statements written to file D:\Alfresco\tomcat\temp\Alfresco\AlfrescoSchemaUpdate-All_Statements-39940.sql.
10:03:11,364 INFO [org.alfresco.repo.admin.ConfigurationChecker] The Alfresco root data directory ('dir.root') is: D:\Alfresco\alf_data
10:03:11,427 INFO [org.alfresco.repo.admin.patch.PatchExecuter] Checking for patches to apply …
10:03:13,005 INFO [org.alfresco.repo.module.ModuleServiceImpl] Found 0 module(s).
10:03:13,614 ERROR [org.alfresco.smb.protocol.auth] No valid CIFS authentication combination available
10:03:13,614 ERROR [org.alfresco.smb.protocol.auth] Either enable Kerberos support or use an authentication component that supports MD4 hashed passwords
10:03:13,614 ERROR [org.alfresco.smb.protocol] CIFS server configuration error, Invalid CIFS authenticator configuration
org.alfresco.error.AlfrescoRuntimeException: Invalid CIFS authenticator configuration
at org.alfresco.filesys.server.auth.EnterpriseCifsAuthenticator.initialize(EnterpriseCifsAuthenticator.java:378)
at org.alfresco.filesys.server.config.ServerConfiguration.setAuthenticator(ServerConfiguration.java:3503)
at org.alfresco.filesys.server.config.ServerConfiguration.processSecurityConfig(ServerConfiguration.java:2453)
at org.alfresco.filesys.server.config.ServerConfiguration.init(ServerConfiguration.java:689)
at org.alfresco.filesys.server.config.ServerConfiguration.onBootstrap(ServerConfiguration.java:4200)
at org.alfresco.util.AbstractLifecycleBean.onApplicationEvent(AbstractLifecycleBean.java:62)
at org.springframework.context.event.SimpleApplicationEventMulticaster$1.run(SimpleApplicationEventMulticaster.java:77)
at org.springframework.core.task.SyncTaskExecutor.execute(SyncTaskExecutor.java:49)
at org.springframework.context.event.SimpleApplicationEventMulticaster.multicastEvent(SimpleApplicationEventMulticaster.java:75)
at org.springframework.context.support.AbstractApplicationContext.publishEvent(AbstractApplicationContext.java:241)
at org.springframework.context.support.AbstractApplicationContext.refresh(AbstractApplicationContext.java:349)
at org.springframework.web.context.support.AbstractRefreshableWebApplicationContext.refresh(AbstractRefreshableWebApplicationContext.java:156)
at org.springframework.web.context.ContextLoader.createWebApplicationContext(ContextLoader.java:246)
at org.springframework.web.context.ContextLoader.initWebApplicationContext(ContextLoader.java:184)
at org.springframework.web.context.ContextLoaderListener.contextInitialized(ContextLoaderListener.java:49)
at org.apache.catalina.core.StandardContext.listenerStart(StandardContext.java:3764)
at org.apache.catalina.core.StandardContext.start(StandardContext.java:4216)
at org.apache.catalina.core.ContainerBase.addChildInternal(ContainerBase.java:760)
at org.apache.catalina.core.ContainerBase.addChild(ContainerBase.java:740)
at org.apache.catalina.core.StandardHost.addChild(StandardHost.java:544)
at org.apache.catalina.startup.HostConfig.deployWAR(HostConfig.java:825)
at org.apache.catalina.startup.HostConfig.deployWARs(HostConfig.java:714)
at org.apache.catalina.startup.HostConfig.deployApps(HostConfig.java:490)
at org.apache.catalina.startup.HostConfig.start(HostConfig.java:1138)
at org.apache.catalina.startup.HostConfig.lifecycleEvent(HostConfig.java:311)
at org.apache.catalina.util.LifecycleSupport.fireLifecycleEvent(LifecycleSupport.java:120)
at org.apache.catalina.core.ContainerBase.start(ContainerBase.java:1022)
at org.apache.catalina.core.StandardHost.start(StandardHost.java:736)
at org.apache.catalina.core.ContainerBase.start(ContainerBase.java:1014)
at org.apache.catalina.core.StandardEngine.start(StandardEngine.java:443)
at org.apache.catalina.core.StandardService.start(StandardService.java:448)
at org.apache.catalina.core.StandardServer.start(StandardServer.java:700)
at org.apache.catalina.startup.Catalina.start(Catalina.java:552)
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
at java.lang.reflect.Method.invoke(Method.java:585)
at org.apache.catalina.startup.Bootstrap.start(Bootstrap.java:295)
at org.apache.catalina.startup.Bootstrap.main(Bootstrap.java:433)
10:03:14,817 WARN [org.alfresco.util.OpenOfficeConnectionTester] A connection to OpenOffice could not be established.
10:03:14,833 INFO [org.alfresco.service.descriptor.DescriptorService] Alfresco JVM - v1.5.0_15-b04; maximum heap size 493.063MB
10:03:14,833 WARN [org.alfresco.service.descriptor.DescriptorService] Alfresco JVM - WARNING - maximum heap size 493.063MB is less than recommended 512MB
10:03:14,833 INFO [org.alfresco.service.descriptor.DescriptorService] Alfresco started (Community Network): Current version 2.9.0 (B 683) schema 116 - Installed version 2.9.0 (B 683) schema 116
10:13:58,287 WARN [org.springframework.remoting.rmi.RmiRegistryFactoryBean] Could not detect RMI registry - creating new one
10:14:02,350 INFO [org.alfresco.repo.domain.schema.SchemaBootstrap] Schema managed by database dialect org.hibernate.dialect.MySQLInnoDBDialect.
10:14:05,506 INFO [org.alfresco.repo.domain.schema.SchemaBootstrap] No changes were made to the schema.
10:14:08,647 INFO [org.alfresco.repo.admin.ConfigurationChecker] The Alfresco root data directory ('dir.root') is: D:\Alfresco\alf_data
10:14:08,756 INFO [org.alfresco.repo.admin.patch.PatchExecuter] Checking for patches to apply …
10:14:10,037 INFO [org.alfresco.repo.module.ModuleServiceImpl] Found 0 module(s).
10:14:10,928 ERROR [org.alfresco.smb.protocol.auth] No valid CIFS authentication combination available
10:14:10,928 ERROR [org.alfresco.smb.protocol.auth] Either enable Kerberos support or use an authentication component that supports MD4 hashed passwords
10:14:10,928 ERROR [org.alfresco.smb.protocol] CIFS server configuration error, Invalid CIFS authenticator configuration
org.alfresco.error.AlfrescoRuntimeException: Invalid CIFS authenticator configuration
at org.alfresco.filesys.server.auth.EnterpriseCifsAuthenticator.initialize(EnterpriseCifsAuthenticator.java:378)
at org.alfresco.filesys.server.config.ServerConfiguration.setAuthenticator(ServerConfiguration.java:3503)
at org.alfresco.filesys.server.config.ServerConfiguration.processSecurityConfig(ServerConfiguration.java:2453)
at org.alfresco.filesys.server.config.ServerConfiguration.init(ServerConfiguration.java:689)
at org.alfresco.filesys.server.config.ServerConfiguration.onBootstrap(ServerConfiguration.java:4200)
at org.alfresco.util.AbstractLifecycleBean.onApplicationEvent(AbstractLifecycleBean.java:62)
at org.springframework.context.event.SimpleApplicationEventMulticaster$1.run(SimpleApplicationEventMulticaster.java:77)
at org.springframework.core.task.SyncTaskExecutor.execute(SyncTaskExecutor.java:49)
at org.springframework.context.event.SimpleApplicationEventMulticaster.multicastEvent(SimpleApplicationEventMulticaster.java:75)
at org.springframework.context.support.AbstractApplicationContext.publishEvent(AbstractApplicationContext.java:241)
at org.springframework.context.support.AbstractApplicationContext.refresh(AbstractApplicationContext.java:349)
at org.springframework.web.context.support.AbstractRefreshableWebApplicationContext.refresh(AbstractRefreshableWebApplicationContext.java:156)
at org.springframework.web.context.ContextLoader.createWebApplicationContext(ContextLoader.java:246)
at org.springframework.web.context.ContextLoader.initWebApplicationContext(ContextLoader.java:184)
at org.springframework.web.context.ContextLoaderListener.contextInitialized(ContextLoaderListener.java:49)
at org.apache.catalina.core.StandardContext.listenerStart(StandardContext.java:3764)
at org.apache.catalina.core.StandardContext.start(StandardContext.java:4216)
at org.apache.catalina.core.ContainerBase.addChildInternal(ContainerBase.java:760)
at org.apache.catalina.core.ContainerBase.addChild(ContainerBase.java:740)
at org.apache.catalina.core.StandardHost.addChild(StandardHost.java:544)
at org.apache.catalina.startup.HostConfig.deployWAR(HostConfig.java:825)
at org.apache.catalina.startup.HostConfig.deployWARs(HostConfig.java:714)
at org.apache.catalina.startup.HostConfig.deployApps(HostConfig.java:490)
at org.apache.catalina.startup.HostConfig.start(HostConfig.java:1138)
at org.apache.catalina.startup.HostConfig.lifecycleEvent(HostConfig.java:311)
at org.apache.catalina.util.LifecycleSupport.fireLifecycleEvent(LifecycleSupport.java:120)
at org.apache.catalina.core.ContainerBase.start(ContainerBase.java:1022)
at org.apache.catalina.core.StandardHost.start(StandardHost.java:736)
at org.apache.catalina.core.ContainerBase.start(ContainerBase.java:1014)
at org.apache.catalina.core.StandardEngine.start(StandardEngine.java:443)
at org.apache.catalina.core.StandardService.start(StandardService.java:448)
at org.apache.catalina.core.StandardServer.start(StandardServer.java:700)
at org.apache.catalina.startup.Catalina.start(Catalina.java:552)
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
at java.lang.reflect.Method.invoke(Method.java:585)
at org.apache.catalina.startup.Bootstrap.start(Bootstrap.java:295)
at org.apache.catalina.startup.Bootstrap.main(Bootstrap.java:433)
10:14:12,178 WARN [org.alfresco.util.OpenOfficeConnectionTester] A connection to OpenOffice could not be established.
10:14:12,178 INFO [org.alfresco.service.descriptor.DescriptorService] Alfresco JVM - v1.5.0_15-b04; maximum heap size 493.063MB
10:14:12,178 WARN [org.alfresco.service.descriptor.DescriptorService] Alfresco JVM - WARNING - maximum heap size 493.063MB is less than recommended 512MB
10:14:12,178 INFO [org.alfresco.service.descriptor.DescriptorService] Alfresco started (Community Network): Current version 2.9.0 (B 683) schema 116 - Installed version 2.9.0 (B 683) schema 116
Related Content
- The Open Source Cloud Content Repository: What's Next After CommunityLIVE US in Alfresco Blog
- Quantum-Resistant TLS for Alfresco: A Hands-On Reference You Can Run Today in Alfresco Blog
- Building Permission-Aware Semantic Search on Alfresco with hxpr and Content Lake in Alfresco Blog
- 15 Extra Transform Engines for Alfresco: OCR, AI, Whisper, PII Redaction and More in Alfresco Blog
- TTL #178 recordings - From ingress-nginx to Traefik in Alfresco Blog
Getting started
Tags
Find what you came for
We want to make your experience in Hyland Connect as valuable as possible, so we put together some helpful links.
