10-22-2014 03:14 AM
### Active Directory
authentication.chain=alfinst:alfrescoNtlm,ldap1:ldap-ad
ntlm.authentication.sso.enabled=false
ldap.authentication.allowGuestLogin=false
ldap.authentication.userNameFormat=%s
ldap.authentication.java.naming.provider.url=ldap://ad.mydomain.com:389
ldap.authentication.defaultAdministratorUserNames=jack.chuong
ldap.synchronization.java.naming.security.principal=CN=Jack Chuong,OU=Users,OU=ICT,OU=SGN,OU=Central Management,DC=mydomain,DC=com
ldap.synchronization.java.naming.security.credentials=*******
ldap.synchronization.userSearchBase=OU\=Central Management,DC\=mydomain,DC\=com
ldap.synchronization.userIdAttributeName=sAMAccountName
ldap.synchronization.userFirstNameAttributeName=givenName
ldap.synchronization.userLastNameAttributeName=sn
ldap.synchronization.userEmailAttributeName=mail
ldap.synchronization.personType=(&(sAMAccountName={0})(objectClass=User)(!(objectClass=Computer)))
ldap.synchronization.active=true
# Sync
synchronization.synchronizeChangesOnly=false
synchronization.allowDeletions=true
ldap.synchronization.groupSearchBase=OU\=Central Management,DC=\mydomain,DC\=com
ldap.synchronization.groupIdAttributeName=sAMAccountName
ldap.synchronization.groupDisplayNameAttributeName=cn
ldap.synchronization.groupMemberAttributeName=member
ldap.synchronization.groupType=group
ldap.synchronization.groupMemberSearch=(|(objectClass=user)(objectClass=group))
10-26-2014 10:40 PM
### Active Directory
authentication.chain=alfinst:alfrescoNtlm,ldap1:ldap-ad
ntlm.authentication.sso.enabled=false
ldap.authentication.allowGuestLogin=false
ldap.authentication.userNameFormat=%s
ldap.authentication.java.naming.provider.url=ldap://ad.mydomain.com:389
ldap.authentication.defaultAdministratorUserNames=Administrator
ldap.synchronization.java.naming.security.principal=jack.chuong@mydomain.com
ldap.synchronization.java.naming.security.credentials=*******
ldap.synchronization.active=true
#user
ldap.synchronization.userSearchBase=OU\=Central Management,DC\=mydomain,DC\=com
ldap.synchronization.userIdAttributeName=sAMAccountName
ldap.synchronization.userFirstNameAttributeName=givenName
ldap.synchronization.userLastNameAttributeName=sn
ldap.synchronization.userEmailAttributeName=mail
#group
ldap.synchronization.groupSearchBase=OU\=Groups,OU\=Central Management,DC\=mydomain,DC\=com
# Sync
synchronization.synchronizeChangesOnly=false
synchronization.allowDeletions=true
synchronization.syncWhenMissingPeopleLogIn=true
synchronization.syncOnStartup=true
synchronization.import.cron=0 */30 * * * ?
ldap.synchronization.enableProgressEstimation=true
11-03-2016 01:38 PM
Great setup. Simple and efficient. It helped me solve my own AD and site issues. I even added a variant of admin and guest user accounts to manage and keep in separate OUs.
THanks!
04-06-2017 01:07 PM
can you send me a screenshot with your ldap groups and users structure ?
08-01-2017 09:30 AM
salut fatma,
j'ai des problèmes pour synchroniser mes groupes ldap avec leurs utilisateurs, j'ai essayé plusieurs configurations mais malheureusement ça ne marche pas pour moi.
y'a t'il une structure spécifique sur laquelle je dois adapter mon AD pour la faire fonctionner? ou une configuration à faire?
je m'explique encore plus: j'arrive bien à connecter mon AD à mon alfresco mais c'est la relation entre utilisateurs et groupes AD que je ne trouve pas sur Alfresco après synchronisation!!
Merci bien
Tags
Find what you came for
We want to make your experience in Hyland Connect as valuable as possible, so we put together some helpful links.