Hyland Connect

fatma19 · ‎03-29-2017

I am currently configuring alfresco to use ldap server for authentication. I followed the offecial documentation and i updated alfresco-global.properties file but it dosen't work. i am using alfresco 5.2 and this is my alfresco-global.properties file and the ldap hiarchy.

###############################
## Common Alfresco Properties #
###############################

dir.root=C:/ALFRES~1/alf_data

alfresco.context=alfresco
alfresco.host=127.0.0.1
alfresco.port=8080
alfresco.protocol=http

share.context=share
share.host=127.0.0.1
share.port=8080
share.protocol=http

### database connection properties ###
db.driver=org.postgresql.Driver
db.username=alfresco
db.password=admin
db.name=alfresco
db.url=jdbcostgresql://localhost:5432/${db.name}
# Note: your database must also be able to accept at least this many connections. Please see your database documentation for instructions on how to configure this.
db.pool.max=275
db.pool.validate.query=SELECT 1

# The server mode. Set value here
# UNKNOWN | TEST | BACKUP | PRODUCTION
system.serverMode=UNKNOWN

### FTP Server Configuration ###
ftp.port=21

### RMI registry port for JMX ###
alfresco.rmi.services.port=50500

### External executable locations ###
ooo.exe=C:/ALFRES~1/LIBREO~1/App/libreoffice/program/soffice.exe
ooo.enabled=true
ooo.port=8100
img.root=C:\\alfresco-community\\imagemagick
img.coders=${img.root}\\modules\\coders
img.config=${img.root}
img.gslib=${img.root}\\lib
img.exe=${img.root}\\convert.exe

jodconverter.enabled=false
jodconverter.officeHome=C:/ALFRES~1/LIBREO~1/App/libreoffice
jodconverter.portNumbers=8100

### Initial admin password ###
alfresco_user_store.adminpassword=209c6174da490caeb422f3fa5a7ae634

### E-mail site invitation setting ###
notification.email.siteinvite=false

### License location ###
dir.license.external=C:/ALFRES~1

### Solr indexing ###
index.subsystem.name=solr4
dir.keystore=${dir.root}/keystore
solr.host=localhost
solr.port.ssl=8443

### Allow extended ResultSet processing
security.anyDenyDenies=false

### Smart Folders Config Properties ###
smart.folders.enabled=false

### Remote JMX (Default: disabled) ###
alfresco.jmx.connector.enabled=false

authentication.chain=alfinst:alfrescoNtlm,ldap1:ldap

ntlm.authentication.sso.enabled=false

ldap.authentication.allowGuestLogin=false
ldap.authentication.userNameFormat=%s
ldap.authentication.java.naming.provider.url=ldap://localhost:10389
ldap.authentication.defaultAdministratorUserNames=Administrator,alfresco
ldap.synchronization.java.naming.security.principal=admin
ldap.synchronization.java.naming.security.credentials=secret
ldap.synchronization.groupSearchBase=ou=groups,o=mojo
ldap.synchronization.userSearchBase=ou=users,o=mojo

michaelr93 · ‎03-30-2017

In that post there is a section where it points you to github and I had to download the files from there and then move them to the correct location and edit them. I hope that helps.

jpotts · ‎03-30-2017

Cross-posted here:

alfresco and ldap configuration - Stack Overflow

Jeff Potts
https://www.metaversant.com | https://ecmarchitect.com

cesarista · ‎03-30-2017

As Jeff Potts‌ mentioned in Stack Overflow it seems that it is the ldap.authentication.userNameFormat.

If you still have problems with authentication put the next line in:

$ALF_HOME/tomcat/shared/classes/alfresco/extension/custom-log4j.properties (and reboot alfresco service)

log4j.logger.org.alfresco.repo.security.authentication.ldap=debug

for getting more information. If you have the OOTB Support Tools installed you can do it even restarting the service.

By the way, as you are in Windows, be sure that Alfresco is able to reach 10389 port in localhost for the ldap server (no firewalls).

Regards.

--C.

fatma19 · ‎03-31-2017

hi mr Cesar i did what you asked me to do but no errors in the log file