cancel
Showing results for 
Search instead for 
Did you mean: 

LDAP/AD not working

unknown-user
Champ on-the-rise
Champ on-the-rise
New to Alfresco.  Have latest alfresco community installed on redhat enterprise 5.

not sure what I am doing wrong but cant get ldap/AD to work.
ldap-authentication.properties

ldap.authentication.userNameFormat=%s@ts.work.com

# The LDAP context factory to use
ldap.authentication.java.naming.factory.initial=com.sun.jndi.ldap.LdapCtxFactory

# The URL to connect to the LDAP server
ldap.authentication.java.naming.provider.url=ldap://IP:389

# The authentication mechanism to use
ldap.authentication.java.naming.security.authentication=SIMPLE

# The default principal to use (only used for LDAP sync)
ldap.authentication.java.naming.security.principal=reader

# The password for the default principal (only used for LDAP sync)
ldap.authentication.java.naming.security.credentials=secret

# Escape commas entered by the user at bind time
# Useful when using simple authentication and the CN is part of the DN and contains commas
ldap.authentication.escapeCommasInBind=false

# Escape commas entered by the user when setting the authenticated user
# Useful when using simple authentication and the CN is part of the DN and contains commas, and the escaped \, is
# pulled in as part of an LDAP sync
# If this option is set to true it will break the default home folder provider as space names can not contain \
ldap.authentication.escapeCommasInUid=false

IN THE catalina.out I see

11:26:50,241  INFO  [management.subsystems.ChildApplicationContextFactory] Starting 'Authentication' subsystem, ID: [Authentication, managed, ldap1]

so i figure it is seeing the ldap server

Like I said, to to sure what i am doing so any help would be appreciated.
1 REPLY 1

star3132
Champ in-the-making
Champ in-the-making
Hello Sir,

I had lots of trouble getting mine working as well, however followed the tutorial listed at the website below and got it working:

http://www.anotherstrangerme.com/alfresco-integration-with-active-directory/

Might be a good tool.

Thanks.