Hyland Community
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Integrating existing Alfresco with LDAP

ashwini
Champ in-the-making
Champ in-the-making

‎05-05-2011 04:43 PM

Currently we are using Alfresco 3.4 with inbuilt Authentication functionality(users and groups created using alfresco's admin account) but now we want to integrate existing alfresco environment with LDAP(Microsoft Active Directory).

1.Can I integrated existing Alfresco environment with LDAP.
2.Is there any impact on existing user's and groups in Alfresco.


Thank You in advance!!
Labels:
0 Kudos
5 REPLIES 5

mrogers
Star Contributor
Star Contributor

‎05-06-2011 03:57 AM

1. yes
2. no

I suggest you read some documentation starting with the installation guide.
0 Kudos

bensewell
Champ in-the-making
Champ in-the-making

‎05-06-2011 05:26 AM

I got this working quickly using these settings

add these to your global config file and then restart your alfresco services and then it should work with ad.  Your Alfresco admin account can set the correct permissions to the AD accounts once the users have logged in.

### Authentication chain settings###
authentication.chain=ldap1:ldap,alfrescoNtlm1:alfrescoNtlm
ldap.authentication.active=true
ldap.authentication.java.naming.security.authentication=simple
ldap.authentication.userNameFormat=%s@YOUR DOMAIN NAME e.g. %s@adomain.net
ldap.authentication.allowGuestLogin=false
ldap.authentication.java.naming.provider.url=YOUR LDAP SERVER e.g. ldap://ad1.a.net:389
###ldap.authentication.defaultAdministratorUserNames=YOUR AD USER ACCOUNT TO LOOKUP AD e.g.  alfresco
ldap.synchronization.active=false
0 Kudos

ashwini
Champ in-the-making
Champ in-the-making

‎05-11-2011 06:14 AM

1. yes
2. no

I suggest you read some documentation starting with the installation guide.

Thank You mrogers !!
If there is any specific documentation then can you please suggest it by providing link .. ?
0 Kudos

ashwini
Champ in-the-making
Champ in-the-making

‎05-11-2011 06:16 AM

Thank you bensewell!!
It will definitely help me while configuring LDAP .. Smiley Happy
0 Kudos

bensewell
Champ in-the-making
Champ in-the-making

‎05-11-2011 06:28 AM

### Authentication chain settings###
authentication.chain=ldap1:ldap,alfrescoNtlm1:alfrescoNtlm
ldap.authentication.active=true
ldap.authentication.java.naming.security.authentication=simple
ldap.authentication.userNameFormat=%s@YOUR DOMAIN NAME e.g. %s@adomain.net
ldap.authentication.allowGuestLogin=false
ldap.authentication.java.naming.provider.url=YOUR LDAP SERVER e.g. ldap://ad1.a.net:389
###ldap.authentication.defaultAdministratorUserNames=YOUR AD USER ACCOUNT TO LOOKUP AD e.g. alfresco
ldap.synchronization.active=false

Just make sure it is exactly as above.

the tricky thing I learnt here was the ldap.authentication.userNameFormat=%s@YOUR DOMAIN NAME e.g. %s@adomain.net

You need to leave the %s@ in or it doesnt like it so for example if your domain name was alfresco.net it would be ldap.authentication.userNameFormat=%s@alfresco.net
0 Kudos
Getting started

Tags

Find what you came for

We want to make your experience in Hyland Connect as valuable as possible, so we put together some helpful links.

Copyright © 2024 Khoros, LLC