Hyland Community
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Can't get SSO working on 3.4d

georgej
Champ in-the-making
Champ in-the-making

‎08-04-2011 09:51 AM

Hi All

I'm sure this has been mentioned before but I simply can't find anything that seems to be simple or detailed enough to help.  It's now day 4 of google and Alfresco forums and I' about to abandon the product unless I can get this working.  I have Alfresco Share community 3.4d installed on a Windows 7 workstation on the company domain network.  However, I simply can't seem to get the authentication to work at all.  It's either the default settings requiring you to type a username and password, or nothing.  With the settings listed below, no username and password combination works at all.  Not even admin.  How can I get this software to work with SSO?  Do any of you have the slightest incling if there are any threads out there that I can find help with as the searching for hours and reading for days has brought me nothing but swearing and hair loss.

Config:
# MySQL is already the default
# Thus, no properties are needed
authentication.chain=passthru1Smiley Tongueassthru
ntlm.authentication.sso.enabled=true
ntlm.authentication.mapUnknownUserToGuest=false
passthru.authentication.domain=OPTIPHARM
# passthru.authentication.servers=MYDOMAIN\\dc.mydomain.local
passthru.authentication.authenticateCIFS=true
passthru.authentication.authenticateFTP=true
passthru.authentication.guestAccess=true
passthru.authentication.defaultAdministratorUserNames=administrator
passthru.authentication.servers=optisrv01\\dc.optipharm.local,dc.mydomain.local
Labels:
0 Kudos
6 REPLIES 6

michaeldam
Champ in-the-making
Champ in-the-making

‎08-04-2011 05:50 PM

I'm also just starting. Just found out that despite the Admin password one enters during setup, the uid/pw for Admin after install defaults to admin/admin.
So I got in using pw "admin" for uid "admin" but now I'm clueless how to make MS Office to find the Sharepoint server (running on localhost, Win 7 64bit). 🙂 More to setup it appears.
Of for a weeks vacation now. Hope this helps for you. Good luck.
Michael.
0 Kudos

georgej
Champ in-the-making
Champ in-the-making

‎08-05-2011 02:56 AM

Sadly, admin / admin too doesn't work at all. 

Please, to whomever can add their knowledge, not that where i work, the average IQ is lower than that of a brick.  People here forget the passwords they have been using for months just to log into Windows so it would be best to have it in such a way that when they open their browsers, their home / dashboard should automatically open.  This username and password will simply not fly with these people. 

Can someone please offer some help or point me in the right direction?  I swear we have actively goggled our fingers to the bone and I myself have spend days scouring the forum for answers to no avail.
0 Kudos

georgej
Champ in-the-making
Champ in-the-making

‎08-08-2011 04:00 AM

Can somebody please assist me?  I'm not asking you to waste your time, just point me to a thread that may help as my searches are coming up with no threads that can help.
0 Kudos

sriram_g77
Champ in-the-making
Champ in-the-making

‎08-21-2011 01:23 AM

By default Windows 7 disables NTLM. So try enabling it  on the user's desktop.
Do this Start > Run > secpol.msc Local Policies > Security Options > Network Security LAN Manager authenticating level Select Send LM & NTLM - use NTLMv2 session security if negotiated

If this doesn't work check if you see any error on the log. I have deployed 3.4EE and using NTLM is a pain. I am thinking of switching over to Kerberos.
0 Kudos

michaeldam
Champ in-the-making
Champ in-the-making

‎08-22-2011 02:46 AM

[…]
Do this Start > Run > secpol.msc Local Policies > Security Options > Network Security LAN Manager authenticating level Select Send LM & NTLM - use NTLMv2 session security if negotiated
[…]

secpol.msc is not available on Windows 7 Home Premium which I'm running. I found the following on the net and verified in change of the regkey using a laptop running Windows 7 professional. the secpol.msc instruction correspond with the following regkey/value pair:

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa
1. If it doesn't already exist, create a DWORD value named
LmCompatibilityLevel
3. Set the value to 1

Value 1 corresponds with "Send LM & NTLM - use NTLMv2 session security if negotiated "

Probably won't have time to check this against Alfresco this week so I thought to share it in case someone needs it now.

I suggest who ever gets this running changing any LSA setting posts all the HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa values in this thread.

edit: typo tread -> thread
0 Kudos

michaeldam
Champ in-the-making
Champ in-the-making

‎08-22-2011 04:52 PM

Could not wait 🙂 I can logon now!

Setting the LmCompatibilityLevel to 1 does the trick for Windows 7 Home Premium.

Using services.msc I did had to start the "alfresco Tomcat" services manually first! (eventhough it was on automatic.


Now I'm having the next challenge.

I'm a sharepoint/alfresco newby. Word and Excel don't seen to see the Sharepoint server.

Using sysinternals' Tcpview I do see Tomcat is listening on port 7070 (Sharepoint default right?).

I thought I would see the Sharepoint….but simply wouldn't be able to save anything.

If anyone could share how to expose the locahost sharepoint it would be appreciated.
0 Kudos
Getting started

Tags

Find what you came for

We want to make your experience in Hyland Connect as valuable as possible, so we put together some helpful links.

Copyright © 2025 Khoros, LLC