cancel
Showing results for 
Search instead for 
Did you mean: 

LDAP-AD configuration

anuradha1
Star Contributor
Star Contributor

I have successfully configured LDAP-AD into alfresco. But it not synchronizing email addresses in AD. Is there anything i did wrong? 

my LDAP configuration is given below.

authentication.chain=alfrescoNtlm1:alfrescoNtlm,ldap-ad1:ldap-ad
ldap.authentication.active=true
ldap.authentication.allowGuestLogin=true
ldap.authentication.userNameFormat=%s@xxx.xx
ldap.authentication.java.naming.factory.initial=com.sun.jndi.ldap.LdapCtxFactory
ldap.authentication.java.naming.provider.url=ldap://xxx.xx:389
ldap.authentication.java.naming.security.authentication=simple
ldap.authentication.escapeCommasInBind=false
ldap.authentication.escapeCommasInUid=false
ldap.authentication.defaultAdministratorUserNames=Administrator

 

ldap.synchronization.active=true
ldap.synchronization.java.naming.security.principal=administrator@xxx.xx
ldap.synchronization.java.naming.security.credentials=secret
ldap.synchronization.queryBatchSize=1000
ldap.synchronization.attributeBatchSize=1000
synchronization.synchronizeChangesOnly=false
synchronization.allowDeletions=true
synchronization.syncWhenMissingPeopleLogIn=true

 

ldap.synchronization.groupQuery=objectclass\=group
ldap.synchronization.groupDifferentialQuery=(&(objectclass\=group)(!(modifyTimestamp<\={0})))

 

ldap.synchronization.personQuery=(&(objectclass\=user)(userAccountControl\:1.2.840.113556.1.4.803\:\=512)(|(ou=xxx,dc=xxx,dc=xx)(ou=xxx,dc=xxx,dc=xx)))

 

ldap.synchronization.personDifferentialQuery=(&(objectclass\=user)(userAccountControl\:1.2.840.113556.1.4.803\:\=512)(|(ou=xxx,dc=xxx,dc=xxx)(ou=xxx,dc=xxx,dc=xxx))(!(modifyTimestamp<\={0})))

 

ldap.synchronization.groupSearchBase=ou\=xxx,dc\=xxx,dc\=xxx

 

ldap.synchronization.userSearchBase=dc\=xxx,dc\=xxx

 

ldap.synchronization.modifyTimestampAttributeName=modifyTimestamp
ldap.synchronization.timestampFormat=yyyyMMddHHmmss'.0Z'
ldap.synchronization.userIdAttributeName=sAMAccountName
ldap.synchronization.userFirstNameAttributeName=givenName


ldap.synchronization.userEmailAttributeName=mail


ldap.synchronization.defaultHomeFolderProvider=largeHomeFolderProvider
ldap.synchronization.groupDisplayNameAttributeName=displayName
ldap.synchronization.groupType=group
ldap.synchronization.personType=user
ldap.synchronization.groupMemberAttributeName=member
ldap.synchronization.enableProgressEstimation=true

1 REPLY 1

hardik1512
Star Contributor
Star Contributor

You can try

ldap.synchronization.userEmailAttributeName=email