Hi Finner sorry again if my question wasn't clear:
I did the following:
First I test local Domain as u suggestedNote passuthr authinticator can only work with LDPA or NTLM )
1. I add the ldap-authentication-context.xml
<beans>
<bean name="authenticationDao" class="org.alfresco.repo.security.authentication.DefaultMutableAuthenticationDao" >
<property name="allowDeleteUser">
<value>true</value>
</property>
</bean>
<bean id="authenticationComponent" class="org.alfresco.repo.security.authentication.ldap.LDAPAuthenticationComponentImpl">
<property name="LDAPInitialDirContextFactory">
<ref bean="ldapInitialDirContextFactory"/>
</property>
<property name="userNameFormat">
<value>%s</value>
</property>
</bean>
<!– <bean id="passwordEncoder" class="net.sf.acegisecurity.providers.encoding.Md5PasswordEncoder"></bean>–>
<bean id="ldapInitialDirContextFactory" class="org.alfresco.repo.security.authentication.ldap.LDAPInitialDirContextFactoryImpl">
<property name="initialDirContextEnvironment">
<map>
<entry key="java.naming.factory.initial">
<value>com.sun.jndi.ldap.LdapCtxFactory</value>
</entry>
<entry key="java.naming.provider.url">
<value>ldap://x.x.x.x:389</value>
</entry>
<entry key="java.naming.security.authentication">
<value>simple</value>
</entry>
</map>
</property>
</bean>
</beans>
2. Modify the file-servers-custom.xml to add the following part:
<config evaluator="string-compare" condition="Filesystem Security" replace="true">
<authenticator type="passthru">
<LocalDomain/> or <Domain>domainName</Doamin>
</authenticator>
</config>
In this case i can login from the pc that alfersco installed on it only, and failed to logon from any another pc even it is on te same Domain.
for the web no problem in the authentication.
Secondly i apply ur solution:
1. Modify the authenticationComponent bean to refer to ur wrapper calss
2. Modify the file-servers-custom.xml to use enterprise authenticator
<config evaluator="string-compare" condition="Filesystem Security" replace="true">
<authenticator type="enterprise">
</authenticator>
</config>
In this case no pc in my domain can connect to the CIFS server, even the authintacation work suceffuly on the web
so when trace in the code i find it stop at this line (//HERE) in the EnterpriseCifsAuthenticator Class
int i = 0;
while ( i < clientHash.length && clientHash[i] == localHash[i])
i++;
if ( i != clientHash.length)
{
// Return a logon failure
//HERE
throw new SMBSrvException( SMBStatus.NTLogonFailure, SMBStatus.DOSAccessDenied, SMBStatus.ErrDos);
}
so now can u give any advice to me, plz, i need ur help it is really works with u.
thx a lot
Hi Finner
About ur notice that i used the default alfresco calss to authenticationComponent bean this was is the first case.But in the Second case i wrote that I
'Modify the authenticationComponent bean to refer to ur wrapper calss'
As i told u at the runtime the code enter this block
and this happen becuase clientHash array its elements not equal the localhash array
so i ask u again shouldn't the getMD4HashedPassword(String userName)method return the hashed password fot this user not the hashed username.
so pls can u give me anyway to communitcate with u online if it works with u.
Finally thx a lot of time as i know that i am taking a lot of it.
About ur notice that i used the default alfresco calss to authenticationComponent bean this was is the first case.But in the Second case i wrote that I
'Modify the authenticationComponent bean to refer to ur wrapper calss'
As i told u at the runtime the code enter this block
if ( i != clientHash.length)
{
// Return a logon failure
throw new SMBSrvException(SMBStatus.NTLogonFailure,SMBStatus.DOSAccessDenied, SMBStatus.ErrDos);}and this happen becuase clientHash array its elements not equal the localhash array
so i ask u again shouldn't the getMD4HashedPassword(String userName)method return the hashed password fot this user not the hashed username.
so pls can u give me anyway to communitcate with u online if it works with u.
Finally thx a lot of time as i know that i am taking a lot of it.
