Hyland Community
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

LDAP Authentication For Sites

lchildress
Champ in-the-making
Champ in-the-making

‎06-23-2015 11:14 AM

I am a complete novice to Alfresco so bare with me! I have authentication working through Active Directory. I want to create individual sites for our various departments (I am with a government entity) and allow them access to the site based on their group membership in Active Directory. This question, I am sure, has been posted and answered already but I looked through the forum and was unable to find an answer.

Thank you in advance for either giving me some instruction, or pointing me to a link where this has already been answered.
Labels:
0 Kudos
13 REPLIES 13

borisstankov
Champ in-the-making
Champ in-the-making
In response to lchildress

‎07-06-2015 12:12 PM

Ok and good luck!
0 Kudos

borisstankov
Champ in-the-making
Champ in-the-making

‎06-25-2015 02:43 AM

Hello there,

OK, that looks good, but in order to load your ldap-ad authentication you need to put this line first just after the "synchronization.import.cron":

authentication.chain=alfinst:alfrescoNtlm,ldap1:ldap-ad


Second, you need to follow after that with:

ntlm.authentication.sso.enabled=false

NOTE: it needs to be equals to "false". You can check this if you go through those potics in here: http://docs.alfresco.com/community/concepts/auth-ldap-intro.html

Also you need to put after those two parameters the parameter where you tells your alfresco that the ldap-ad authenticate is enabled:
ldap.authentication.active=true

Along with it put all params that include the ldap.authentication.

After that enable the ldap.synchronization. Uncomment the "ldap.synchronization.active" param.

Check like that and let me know if it works.

Cheers!
0 Kudos

lchildress
Champ in-the-making
Champ in-the-making

‎06-25-2015 02:30 PM

I fixed a typo: synchronization.sinchronyzeChangesOnly=true => synchronization.synchronizeChangesOnly=true. After making that change, I no longer have to comment out ldap.synchronization.active=true. The site loads now with that line active. HOWEVER, nothing is imported from Active Directory. <sigh>
0 Kudos

borisstankov
Champ in-the-making
Champ in-the-making
In response to lchildress

‎06-26-2015 02:38 AM

Ok, that's good and sorry about the typo… Smiley Sad
What are the messages in the catalina log about the synchronization subsystem when you restart/start the alfresco service?

Do you have network connection between Alfresco and the ldap on port 389?
Do you see any entries on the LDAP server from the Alfresco?
0 Kudos
Getting started

Tags

Find what you came for

We want to make your experience in Hyland Connect as valuable as possible, so we put together some helpful links.

Copyright © 2025 Khoros, LLC