Hyland Connect

delcar · ‎05-05-2016

Hello,

I'm Trying to integrate ALfresco 5.2 with FreeIPA (ldap)

Please can you help me with configuration?

With this conf file I can't auth against ldap

ldap.authentication.active=true
ldap.authentication.java.naming.security.authentication=simple
ldap.authentication.userNameFormat=uid=admin,cn=users,cn=accounts,dc=ces,dc=xxx,dc=xxx,dc=support,dc=xxx
ldap.authentication.java.naming.provider.url=ldap://10.12.16.88:636
ldap.synchronization.java.naming.security.principal cn\=Directory\ Manager
ldap.synchronization.java.naming.security.credentials
ldap.synchronization.userSearchBase cn\=users,cn\=accounts,dc\=ces,dc=\xxx,dc=\xxx,dc=\support,dc\=xxx
ldap.synchronization.groupSearchBase to cn\=groups,cn\=accounts,dc\=ces,dc=\xxx,dc=\xxx,dc=\support,dc\=xxx

Any help please?

Thanks.-

douglascrp · ‎05-09-2016

I recommend you to try to connect and get the right values for your ldap server using a client tool like Apache Directory Studio https://directory.apache.org/studio/

Once you are able to connect to it, replicate the strings into your alfresco-global.properties file.

And about your config, this seems to be wrong:
ldap.authentication.userNameFormat=uid=admin,cn=users,cn=accounts,dc=ces,dc=xxx,dc=xxx,dc=support,dc=xxx

That should be something like

ldap.authentication.userNameFormat=uid=%s,cn=users,cn=accounts,dc=ces,dc=xxx,dc=xxx,dc=support,dc=xxx

That is used to create the value for any user, and your config was fixing it as admin.
The %s character is replaced by the provided user name during the login.

Hyland Connect

integration with freeipa (ldap)