Hyland Community
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Can not delete a user when using ntlm +AD authetication

dhson
Champ in-the-making
Champ in-the-making

‎10-09-2007 12:15 AM

hi

I'm using Alfresco alfresco-community-tomcat-2.1.0 with NTLM + AD by modifying the files as below (pls. see at the end of the post).

After restarting alfresco, users can logon to alfresco via AD authentication.
However, If I login as FOO (new admin user), I can create/delete space and everything but can not delete a user.
The error mesg is: " Failed to delete User due to error: Not implemented"

I search around the forum and google but don't see any similar trouble.
What does it mean Not implemented?
What should I do to get rid of the trouble?

Thank you for your help!


\$ALF_HOME/tomcat/shared/classes/alfresco/extension/ntlm-authentication-context.xml  as following

<?xml version='1.0' encoding='UTF-8'?>
<!DOCTYPE beans PUBLIC '-//SPRING//DTD BEAN//EN' 'http://www.springframework.org
/dtd/spring-beans.dtd'>

<beans>

    <bean id="authenticationDao" class="org.alfresco.repo.security.authenticatio
n.ntlm.NullMutableAuthenticationDao" />
      
    <bean id="authenticationComponent" class="org.alfresco.repo.security.authent
ication.ntlm.NTLMAuthenticationComponentImpl">
        <property name="useLocalServer">
            <value>false</value>
        </property>
         <property name="servers">
            <value>192.168.101.2</value>
        </property>
        <property name="personService">
            <ref bean="personService" />
        </property>
        <property name="nodeService">
            <ref bean="nodeService" />
        </property>
        <property name="transactionService">
            <ref bean="transactionComponent" />
        </property>
        <property name="guestAccess">
            <value>false</value>
        </property>
    </bean>
   
</beans>

And the user FOO to be new admin in the file
$ALF_HOME/tomcat/shared/classes/alfresco/extension/custom-authority-services-context.xml

<property name="adminUsers">
   <set>
      <!– add an NTLM user as an Administrator –>
      <value>FOO</value>
      <value>admin</value>
      <value>administrator</value>
   </set>
</property>
Labels:
0 Kudos
4 REPLIES 4

andy
Champ on-the-rise
Champ on-the-rise

‎10-19-2007 05:48 AM

Hi

If you are using NTLM  and synching users from LDAP then deleting users does not have much point (or if you auto create users) - they will come back in the sync (or as people log in). We are never going to delete users from external authentication mechanisms like AD, LDAP. Delete is not supported by default. The DAO can be configured to support delete - and is in the latest config examples. This will do a delete of the person but not from AD. This is to support cleaning up users who have already been deleted from AD.

Andy
0 Kudos

dhson
Champ in-the-making
Champ in-the-making

‎10-24-2007 11:54 PM

Hi Andy,
Thank you very much for your answer.

Perhaps to clean up a user who was deleted from AD is what I want to do.
Could you tell me how to config DAO to do that?

Let me describe a bit more what I want to do:
I install Alfresco on Centos5 server and authenticate via AD+NTLM (without LDAP).
When a user (exist on AD) login the first time to Alfresco, a new home space and his name are created automatically (great!).

However, when I delete him from AD, his name is still listed in the user list of Alfresco.
What I want to do is to remove his name also in the user list of Alfresco

What should I do?
Thank you very much for your help
Son




Hi

If you are using NTLM  and synching users from LDAP then deleting users does not have much point (or if you auto create users) - they will come back in the sync (or as people log in). We are never going to delete users from external authentication mechanisms like AD, LDAP. Delete is not supported by default. The DAO can be configured to support delete - and is in the latest config examples. This will do a delete of the person but not from AD. This is to support cleaning up users who have already been deleted from AD.

Andy
0 Kudos

andy
Champ on-the-rise
Champ on-the-rise

‎10-29-2007 07:41 AM

Hi

See the current config examples for NTLM, they all have a DAO definition that supports what you want.

Andy
0 Kudos

archana_bonkanp
Champ in-the-making
Champ in-the-making

‎03-24-2008 01:55 AM

Hi,

We are also facing the same problem,can you please explain it clearly.
Where the chanegs should be done exactly and in which files.

Thanks in Advance.
0 Kudos
Getting started

Tags

Find what you came for

We want to make your experience in Hyland Connect as valuable as possible, so we put together some helpful links.

Copyright © 2025 Khoros, LLC