Hyland Connect

vijith · ‎11-14-2011

Hi ,

I installed alfresco 4.0.b community Edition , after that i tried to integrate with LDAP server ,for that i changed 2 files
1)alfrescoinstallationfolder/tomcat/shared/classes/alfresco-global.properties

Added

authentication.chain=alfrescoNtlm1:alfrescoNtlm,ldap1:ldap

2)alfrescoinstallationfolder/tomcat/webapps/alfresco/WEB-INF/classes/alfresco/subsystems/Authentication/ldap/ldap1/ldap-authentication.properties

ldap.authentication.active=true
ldap.authentication.userNameFormat=uid=%s,ou=people,dc=example,dc=com
ldap.authentication.java.naming.provider.url=ldap://ip-address:389
ldap.authentication.java.naming.security.authentication=simple
ldap.synchronization.active=true
ldap.synchronization.java.naming.security.principal=cn\=admin,dc\=example,dc\=com
ldap.synchronization.java.naming.security.credentials=password
ldap.synchronization.groupQuery=(objectclass\=groupOfNames)
ldap.synchronization.groupDifferentialQuery=(&(objectclass\=groupOfNames)(!(modifyTimestamp<\={0})))
ldap.synchronization.personQuery=(objectclass\=inetOrgPerson)
ldap.synchronization.personDifferentialQuery=(&(objectclass\=inetOrgPerson)(!(modifyTimestamp<\={0})))
ldap.synchronization.groupSearchBase=ou\=Groups,dc\=example,dc\=com
ldap.synchronization.userSearchBase=ou\=Users,dc\=example,dc\=com
ldap.synchronization.modifyTimestampAttributeName=modifyTimestamp
ldap.synchronization.timestampFormat=yyyyMMddHHmmss'Z'
ldap.synchronization.userIdAttributeName=uid
ldap.synchronization.userFirstNameAttributeName=givenName
ldap.synchronization.userLastNameAttributeName=sn
ldap.synchronization.userOrganizationalIdAttributeName=o
ldap.synchronization.defaultHomeFolderProvider=userHomesHomeFolderProvider
ldap.synchronization.groupIdAttributeName=cn
ldap.synchronization.groupType=groupOfNames
ldap.synchronization.personType=inetOrgPerson
ldap.synchronization.groupMemberAttributeName=member

Finally restart the alfresco service ; while viewing log file it's showing

17:37:31,206 INFO [org.alfresco.repo.management.subsystems.ChildApplicationContextFactory] Starting 'Synchronization' subsystem, ID: [Synchronization, default]
17:37:31,242 INFO [org.alfresco.repo.security.sync.ChainingUserRegistrySynchronizer] Synchronizing users and groups with user registry 'ldap1'
17:37:31,252 INFO [org.alfresco.repo.security.sync.ChainingUserRegistrySynchronizer] Retrieving all groups from user registry 'ldap1'
17:37:31,303 INFO [org.alfresco.repo.security.sync.ChainingUserRegistrySynchronizer] ldap1 Group Analysis: Commencing batch of 0 entries
17:37:31,304 INFO [org.alfresco.repo.security.sync.ChainingUserRegistrySynchronizer] ldap1 Group Analysis: Completed batch of 0 entries
17:37:31,308 INFO [org.alfresco.repo.security.sync.ChainingUserRegistrySynchronizer] Retrieving all users from user registry 'ldap1'
17:37:31,319 INFO [org.alfresco.repo.security.sync.ChainingUserRegistrySynchronizer] ldap1 User Creation and Association: Commencing batch of 13 entries
17:37:34,015 INFO [org.alfresco.repo.security.sync.ChainingUserRegistrySynchronizer] ldap1 User Creation and Association: Processed 13 entries out of 13. 100% complete. Rate: 4 per second. 0 failures detected.
17:37:34,015 INFO [org.alfresco.repo.security.sync.ChainingUserRegistrySynchronizer] ldap1 User Creation and Association: Completed batch of 13 entries
17:37:34,033 INFO [org.alfresco.repo.security.sync.ChainingUserRegistrySynchronizer] Finished synchronizing users and groups with user registry 'ldap1'
17:37:34,033 INFO [org.alfresco.repo.security.sync.ChainingUserRegistrySynchronizer] 13 user(s) and 0 group(s) processed
17:37:35,038 INFO [org.alfresco.repo.management.subsystems.ChildApplicationContextFactory] Startup of 'Synchronization' subsystem, ID: [Synchronization, default] complete
17:37:35,306 INFO [org.alfresco.service.descriptor.DescriptorService] Alfresco JVM - v1.6.0_18-b07; maximum heap size 742.438MB
17:37:35,306 INFO [org.alfresco.service.descriptor.DescriptorService] Alfresco started (Community). Current version: 4.0.0 (b 3835) schema 5,019. Originally installed version: 4.0.0 (b 3835) schema 5,019.
17:37:35,307 INFO [org.alfresco.repo.management.subsystems.ChildApplicationContextFactory] Starting 'ActivitiesFeed' subsystem, ID: [ActivitiesFeed, default]
17:37:35,690 INFO [org.alfresco.repo.management.subsystems.ChildApplicationContextFactory] Startup of 'ActivitiesFeed' subsystem, ID: [ActivitiesFeed, default] complete
17:37:35,691 INFO [org.alfresco.repo.management.subsystems.ChildApplicationContextFactory] Starting 'Replication' subsystem, ID: [Replication, default]

But am not able to login throughldap users (Error message:The remote server may be unavailable or your authentication details have not been recognized.
); login through admin able to see all the ldap users created on alfresco..

please help me for this issue…

borizuka · ‎01-15-2012

Hi there.
I have struck the same issue. Would you be able to share how you fixed it?

jevon · ‎01-15-2012

Were you able to login to Alfresco normally before enabling LDAP? Can you login with admin/admin? (The Alfresco admin account is stored within Alfresco, not LDAP.)

aaronshaw · ‎01-16-2012

Have you made sure the login is mapped to the LDAP login correctly? Eg Loging to alfresco with firstname.surname and in the properties file =%s@domain.com means ldap will recieve firstname.surname@domain.com

prabuprasath · ‎04-01-2014

I also struked in same issue. I can able to see the ldap users. but i cannot able to login through that users.

mrogers · ‎04-01-2014

For a start - don't hack anything below WEB-INF, if you have then roll back your changes.

For a single LDAP just put your settings in alfresco-global.properties.

Next - you need to post more details. You may have the same issue. But probably not. And post examples of the users in LDAP that you are trying to use.

For example is the O.P. really using example.com and what is the name of the user in alfresco and LDAP.

Hyland Connect

LDAP Authentication On Alfresco 4.0.b