Hyland Community
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Configure Alfresco with LDAP for Authentication

sksahu
Champ in-the-making
Champ in-the-making

‎07-30-2009 03:22 AM

Hello,

I had configured Alfresco to authenticate with database , which works fine. Now I am trying to configure with OpenLDAP for authentication. we have closely followed the steps in wiki . I have updated the following xml
ldap-authentication-context.xml
ldap-synchronisation-context.xml
But still , alfresco is not looking into LDAP. Its authenticating with database.

Any suggestions on how to go about ?

Thanks
Labels:
0 Kudos
7 REPLIES 7

dward
Champ on-the-rise
Champ on-the-rise

‎07-30-2009 06:12 AM

What Wiki article were you reading? Please see

http://wiki.alfresco.com/wiki/Alfresco_Authentication_Subsystems

All other wiki articles on LDAP are out of date and point to this one. There should be no need to edit any context.xml files.
0 Kudos

sksahu
Champ in-the-making
Champ in-the-making

‎07-31-2009 01:47 AM

Hello,

Thanks for the Information.I did the configuration of LDAP as described in the link,which works fine.

http://wiki.alfresco.com/wiki/Enterprise_Security_and_Authentication_Configuration#Changes_after_2.1

After this configuration,all the existing users in openLDAP imported to Alfresco DB.But I do nt want to import the users to Alfresco DB,instead of directly authentication with openLDAP.

When I will try to creat session with ALfresco,It should connect to configued openLDAP and auntenticate the user.Is there any way to implement this?

Thanks
0 Kudos

dward
Champ on-the-rise
Champ on-the-rise

‎07-31-2009 04:52 AM

Yes. Just use the LDAPAuthenticationComponent as documented on the page you are reading. I assume you are using v3.1?
0 Kudos

sksahu
Champ in-the-making
Champ in-the-making

‎07-31-2009 07:17 AM

Hello,

Thanks for the information.

I am using alfresco v3.0 and openLDAP authentication server.

I went through LDAPAuthenticationComponent mentioned in that document ,but it describes how to import the user details in to Alfresco DB.

My requirementy is to aunthenticate user credentials directly with openLDAP rather then imported data in Alfresco DB.Please give some information(detailed) to impliment this.

Appreciate your help.

Thanks
0 Kudos

dward
Champ on-the-rise
Champ on-the-rise

‎07-31-2009 08:20 AM

LDAPAuthenticationComponent validates user names and passwords directly against an LDAP server. The passwords do not need to be stored in the Alfresco database. There is no need to set up synchronization if you don't want (but it would make sense, as then Alfresco would get email address information). Even with synchronization set up, the passwords are not exported from the LDAP directory and authentication is done live against the LDAP directory.

Just copy custom-ldap-authentication-context.xml.sample to $TOMCAT_HOME/shared/classes/alfresco/extension and configure it to your needs. (Readers note that in v3.2 it can all be set up with a few lines in alfresco-global.properties).
0 Kudos

sksahu
Champ in-the-making
Champ in-the-making

‎08-03-2009 01:45 AM

I have configued the ldap-authentication-context.xml file with required changed in \Alfresco\tomcat\shared\classes\alfresco\extension sub floder,but I am getting the below Error.
————————————————————————————————————————————-
11:12:48,010 ERROR [org.alfresco.smb.protocol.auth] No valid CIFS authentication combination available
11:12:48,010 ERROR [org.alfresco.smb.protocol.auth] Either enable Kerberos support or use an authentication component that supports MD4 hashed passwords
11:12:48,010 ERROR [org.alfresco.smb.protocol] CIFS server configuration error, Invalid CIFS authenticator configuration
org.alfresco.error.AlfrescoRuntimeException: Invalid CIFS authenticator configuration   at org.alfresco.filesys.auth.cifs.EnterpriseCifsAuthenticator.initialize(EnterpriseCifsAuthenticator.java:389)
   at org.alfresco.jlan.smb.server.CIFSConfigSection.setAuthenticator(CIFSConfigSection.java:607)
   at org.alfresco.filesys.ServerConfigurationBean.processCIFSServerConfig(ServerConfigurationBean.java:881)
   at org.alfresco.filesys.ServerConfigurationBean.init(ServerConfigurationBean.java:546)
   at org.alfresco.filesys.ServerConfigurationBean.onApplicationEvent(ServerConfigurationBean.java:3098)
   at org.springframework.context.event.SimpleApplicationEventMulticaster$1.run(SimpleApplicationEventMulticaster.java:77)
   at org.springframework.core.task.SyncTaskExecutor.execute(SyncTaskExecutor.java:49)
   at org.springframework.context.event.SimpleApplicationEventMulticaster.multicastEvent(SimpleApplicationEventMulticaster.java:75)
   at org.springframework.context.support.AbstractApplicationContext.publishEvent(AbstractApplicationContext.java:246)
   at org.springframework.context.support.AbstractApplicationContext.refresh(AbstractApplicationContext.java:355)
   at org.springframework.web.context.ContextLoader.createWebApplicationContext(ContextLoader.java:244)
   at org.springframework.web.context.ContextLoader.initWebApplicationContext(ContextLoader.java:187)
   at org.springframework.web.context.ContextLoaderListener.contextInitialized(ContextLoaderListener.java:49)
   at org.apache.catalina.core.StandardContext.listenerStart(StandardContext.java:3843)
   at org.apache.catalina.core.StandardContext.start(StandardContext.java:4342)
   at org.apache.catalina.core.ContainerBase.addChildInternal(ContainerBase.java:791)
   at org.apache.catalina.core.ContainerBase.addChild(ContainerBase.java:771)
   at org.apache.catalina.core.StandardHost.addChild(StandardHost.java:525)
   at org.apache.catalina.startup.HostConfig.deployWAR(HostConfig.java:830)
   at org.apache.catalina.startup.HostConfig.deployWARs(HostConfig.java:719)
   at org.apache.catalina.startup.HostConfig.deployApps(HostConfig.java:490)
   at org.apache.catalina.startup.HostConfig.start(HostConfig.java:1149)
   at org.apache.catalina.startup.HostConfig.lifecycleEvent(HostConfig.java:311)
————————————————————————————————-

Please let me know how to over come this Error?  Thanks
0 Kudos

dward
Champ on-the-rise
Champ on-the-rise

‎08-03-2009 05:29 AM

Yes, you're falling into all the pitfalls that were involved in configuring LDAP pre-v3.2.

Next you have to either disable CIFS (because the LDAP authentication component cannot support CIFS authentication) or chain the built-in AuthenticationComponentImpl so that the built in Alfresco users can still authenticate with CIFS (complex in v3.1 - see chaining-authentication-context.xml.sample).

Please see my post

http://forums.alfresco.com/en/viewtopic.php?f=10&t=20661&p=67398#p67398
0 Kudos
Getting started

Tags

Find what you came for

We want to make your experience in Hyland Connect as valuable as possible, so we put together some helpful links.

Copyright © 2025 Khoros, LLC