Hyland Community
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Unable to configure LDAD-AD in Comunity4.2

cos
Champ in-the-making
Champ in-the-making

‎03-21-2014 05:05 AM

Hi everybody

I'm trying to connecto to a W2008 Server ActiveDirectory but after reading the documentation, the blog, the wiki… I'm still confuse and doesn't work. And nothing appears in the log files. What exactly I need to do?

I modified the file "/alfresco/tomcat/shared/classes/alfresco-global.properties" adding the following

*/****************************************
#authentication chain
authentication.chain=ldap1:ldap-ad,alfrescoNtlm1:alfrescoNtlm

#configuracion LDAP
ldap.authentication.active=true

ldap.authentication.allowGuestLogin=false

ldap.authentication.userNameFormat=%s@MYDOMAIN.ES

ldap.authentication.java.naming.factory.initial=com.sun.jndi.ldap.LdapCtxFactory

ldap.authentication.java.naming.provider.url=ldap://172.16.29.130:389

ldap.authentication.java.naming.security.authentication=simple

ldap.authentication.escapeCommasInBind=false

ldap.authentication.escapeCommasInUid=false

ldap.authentication.defaultAdministratorUserNames=Administrator

ldap.synchronization.active=true

ldap.synchronization.java.naming.security.authentication=simple

ldap.synchronization.java.naming.security.principal=me@MYDOMAIN.es

ldap.synchronization.java.naming.security.credentials=password

ldap.synchronization.queryBatchSize=1000

ldap.synchronization.attributeBatchSize=1000

ldap.synchronization.groupQuery=(objectclass\=MYGROUP)

ldap.synchronization.groupDifferentialQuery=(&(objectclass\=MYGROUP)(!(whenChanged<\={0})))

ldap.synchronization.personQuery=(&(objectclass\=Users)(userAccountControl\:1.2.840.113556.1.4.803\:\=512))

ldap.synchronization.personDifferentialQuery=(&(objectclass\=Users)(userAccountControl\:1.2.840.113556.1.4.803\:\=512)(!(whenChanged<\={0})))

ldap.synchronization.groupSearchBase=dc=CSG,dc=ES

ldap.synchronization.userSearchBase=ou\=User Accounts,dc=XX,dc=XX

ldap.synchronization.modifyTimestampAttributeName=whenChanged

ldap.synchronization.timestampFormat=yyyyMMddHHmmss'.0Z'

ldap.synchronization.userIdAttributeName=userPrincipalName

ldap.synchronization.userFirstNameAttributeName=givenName

ldap.synchronization.userLastNameAttributeName=sn

ldap.synchronization.userEmailAttributeName=mail

ldap.synchronization.userOrganizationalIdAttributeName=company

ldap.synchronization.defaultHomeFolderProvider=largeHomeFolderProvider

ldap.synchronization.groupIdAttributeName=cn

ldap.synchronization.groupDisplayNameAttributeName=displayName

ldap.synchronization.groupType=group

ldap.synchronization.personType=user

ldap.synchronization.groupMemberAttributeName=member

ldap.synchronization.enableProgressEstimation=true

ldap.authentication.java.naming.read.timeout=0
***********************************


Also use the file "/alfresco/tomcat/shared/classes/alfresco/extension/subsystems/Authentication/ldad-ad/ldap1/ldap-ad-authentication.properties" with the same lines and nothing.

Best regards
Gonzalo Arroyo
Labels:
0 Kudos
22 REPLIES 22

cos
Champ in-the-making
Champ in-the-making
In response to alfsender

‎04-04-2014 08:52 AM

Hi

My skype is gooon26@hotmail.com

we can do it next week, from 09:00 to 18:00 (GMT+1)

best regards
0 Kudos

cos
Champ in-the-making
Champ in-the-making
In response to cos

‎04-07-2014 04:42 AM

Hi

Could we do it this Wednesday?, What do you need from me?

best regards

Gonzalo
0 Kudos

cos
Champ in-the-making
Champ in-the-making
In response to cos

‎04-07-2014 10:53 AM

Hi

It won't be necessary…i did it.

2014-04-07 16:39:08,671  INFO  [security.sync.ChainingUserRegistrySynchronizer] [localhost-startStop-1] Retrieving all users from user registry 'ldap1'
2014-04-07 16:39:08,742  INFO  [security.sync.ChainingUserRegistrySynchronizer] [localhost-startStop-1] Synchronization,Category=directory,id1=ldap1,id2=6 User Creation and Association: Commencing batch of 104 entries
2014-04-07 16:39:11,126  WARN  [security.sync.ChainingUserRegistrySynchronizer] [localhost-startStop-1] Updating user 'goar'. This user will in future be assumed to originate from user registry 'ldap1'.
2014-04-07 16:39:14,373  WARN  [security.sync.ChainingUserRegistrySynchronizer] [localhost-startStop-1] Updating user 'jues'. This user will in future be assumed to originate from user registry 'ldap1'.
2014-04-07 16:39:15,258  WARN  [security.sync.ChainingUserRegistrySynchronizer] [localhost-startStop-1] Updating user 'jeca'. This user will in future be assumed to originate from user registry 'ldap1'.
2014-04-07 16:39:20,359  WARN  [security.sync.ChainingUserRegistrySynchronizer] [localhost-startStop-1] Updating user 'dicu'. This user will in future be assumed to originate from user registry 'ldap1'.
2014-04-07 16:39:37,824  INFO  [security.sync.ChainingUserRegistrySynchronizer] [localhost-startStop-1] Synchronization,Category=directory,id1=ldap1,id2=6 User Creation and Association: Processed 100 entries out of 104. 96% complete. Rate: 3 per second. 0 failures detected.
2014-04-07 16:39:38,633  INFO  [security.sync.ChainingUserRegistrySynchronizer] [localhost-startStop-1] Synchronization,Category=directory,id1=ldap1,id2=6 User Creation and Association: Processed 104 entries out of 104. 100% complete. Rate: 3 per second. 0 failures detected.
2014-04-07 16:39:38,634  INFO  [security.sync.ChainingUserRegistrySynchronizer] [localhost-startStop-1] Synchronization,Category=directory,id1=ldap1,id2=6 User Creation and Association: Completed batch of 104 entries
2014-04-07 16:39:38,647  INFO  [security.sync.ChainingUserRegistrySynchronizer] [localhost-startStop-1] Synchronization,Category=directory,id1=ldap1,id2=4 Group Association Creation: Commencing batch of 26 entries
2014-04-07 16:39:39,706  INFO  [security.sync.ChainingUserRegistrySynchronizer] [localhost-startStop-1] Synchronization,Category=directory,id1=ldap1,id2=4 Group Association Creation: Processed 26 entries out of 26. 100% complete. Rate: 24 per second. 0 failures detected.
2014-04-07 16:39:39,706  INFO  [security.sync.ChainingUserRegistrySynchronizer] [localhost-startStop-1] Synchronization,Category=directory,id1=ldap1,id2=4 Group Association Creation: Completed batch of 26 entries
2014-04-07 16:39:39,777  INFO  [security.sync.ChainingUserRegistrySynchronizer] [localhost-startStop-1] Finished synchronizing users and groups with user registry 'ldap1'
2014-04-07 16:39:39,777  INFO  [security.sync.ChainingUserRegistrySynchronizer] [localhost-startStop-1] 104 user(s) and 60 group(s) processed



I have all groups and users, i don't know why it wasn't working.

Thanks a lot for your help.

Gonzalo Arroyo

0 Kudos
Getting started

Tags

Find what you came for

We want to make your experience in Hyland Connect as valuable as possible, so we put together some helpful links.

Copyright © 2025 Khoros, LLC