Hyland Community
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Multiple OU Ldap Authentication

samudaya
Champ on-the-rise
Champ on-the-rise

‎05-30-2011 01:59 AM

Hi friends,

I'm currently using Alfresco Community 3.4.d on Ubuntu 10.04 server. And run Open-LDAP (v3) on separate server. I only want to do LDAP authentication (no synchronizations).

(/opt/alfresco/tomcat/shared/classes/alfresco/extension/subsystems/Authentication/ldap/ldap1/ldap-authentication.properties)
ldap.authentication.userNameFormat=uid=%s,ou=abc,dc=xyz,dc=com
When I configured as above only abc users can login to the system.

ldap.authentication.userNameFormat=uid=%s,dc=xyz,dc=com
When I configured as above nobody can login to the system.

There are Multiple OUs. So how should I configure to login all the ous?

My LDAP Structure as follows;

com(DC)
|
|—xyz(DC)
|—-|—–abc(OU)
|—-||—-|
|—-||—-|—–uid="user1"
|—-||—-|—–uid="user2"
|—-|       
|—-|—–def(OU)
|—-||—-|
|—-||—-|—–uid="user3"
|—-||—-|—–uid="user4"
|—-|       
|—-|—–ghi(OU)
|—-|—–|
|—-|—–|—–ghi-1(OU)
|—-|—–||—-|
|—-|—–||—-|—–uid="user5"
|—-|—–||—-|—–uid="user6"                   
|—-|—–|
|—-|—–|—–ghi-2(OU)
|—-|—–||—-|
|—-|—–||—-|—–uid="user7"
                       
               

Thank you very much…….
Labels:
0 Kudos
5 REPLIES 5

loftux
Star Contributor
Star Contributor

‎05-30-2011 02:37 AM

Try leaving the userNameFormat blank, it will do a search using the personQuery. Read more http://wiki.alfresco.com/wiki/Alfresco_Authentication_Subsystems#Configuration_2
0 Kudos

sydwellz
Champ in-the-making
Champ in-the-making

‎05-30-2011 09:34 AM

The way I got my multiple context working was to duplicate
this directory structure

ldap1/ldap-authentication.properties
as 
ldap2/ldap-authentication.properties

And configure the second context in this file

The alfresco-global.properties setting should also be updated to include both files 

authentication.chain=ldap1:ldap,ldap2:ldap
0 Kudos

samudaya
Champ on-the-rise
Champ on-the-rise

‎05-31-2011 03:22 AM

Thanks friends.

Hi Loftux,

Can you please explain more about your solution

Thanks
Sam
0 Kudos

loftux
Star Contributor
Star Contributor

‎05-31-2011 03:40 AM

Not more than the docs I linked to. If you read it(!), under the entry for ldap.authentication.userNameFormat it is all explained. Have you tried it and it didn't work?
0 Kudos

samudaya
Champ on-the-rise
Champ on-the-rise

‎06-04-2011 02:38 AM

Thanks all for your contribution to solve the issue. Finally I solve the problem with chaining mechanism.

Thanks
Samudaya
0 Kudos
Getting started

Tags

Find what you came for

We want to make your experience in Hyland Connect as valuable as possible, so we put together some helpful links.

Copyright © 2024 Khoros, LLC