cancel
Showing results for 
Search instead for 
Did you mean: 

(SOLUCIONADO)Problema alfresco v3 contra ldap

brouco
Champ in-the-making
Champ in-the-making
Hola tengo el siquiente problema intentento que alfresco loguee contra el ldap:

Mi fichero ldap-authentication.properties esta de la siguiente manera:
#
# This properties file brings together the common options for LDAP authentication rather than editing the bean definitions
#

# How to map the user id entered by the user to taht passed through to LDAP
# - simple
#    - this must be a DN and would be something like
#      CN=%s,DC=company,DC=com
# - digest
#    - usually pass through what is entered
#      %s

ldap.authentication.userNameFormat=uid=%s,OU=People,DC=dominio,DC=loc

# The LDAP context factory to use
ldap.authentication.java.naming.factory.initial=com.sun.jndi.ldap.LdapCtxFactory

# The URL to connect to the LDAP server
ldap.authentication.java.naming.provider.url=ldap://x.x.x.x:389

# The authentication mechanism to use
ldap.authentication.java.naming.security.authentication=SIMPLE

# The default principal to use (only used for LDAP sync)
ldap.authentication.java.naming.security.principal=cn=admin,dc=dominio,dc=loc


# The password for the default principal (only used for LDAP sync)
ldap.authentication.java.naming.security.credentials=secreto

# Escape commas entered by the user at bind time
# Useful when using simple authentication and the CN is part of the DN and contains commas
ldap.authentication.escapeCommasInBind=false

# Escape commas entered by the user when setting the authenticated user
# Useful when using simple authentication and the CN is part of the DN and contains commas, and the escaped \, is
# pulled in as part of an LDAP sync
# If this option is set to true it will break the default home folder provider as space names can not contain \
ldap.authentication.escapeCommasInUid=false

He modificado tambien los ficheros chaining-authentication-context.xml ldap-authentication-context.xml ldap-synchronisation-context.xml tal cual se indinca en la documentación oficial, pero al desplegarlo el log me devuelve lso siguientes errores:
17:24:07,722 INFO  [STDOUT] 17:24:07,716  WARN  [authentication.ldap.LDAPInitialDirContextFactoryImpl] LDAP server supports anonymous bind ldap://172.20.36.8:389
17:24:07,760 INFO  [STDOUT] 17:24:07,760  INFO  [authentication.ldap.LDAPInitialDirContextFactoryImpl] LDAP server does not support simple string user ids and invalid credentia ls at ldap://172.20.36.8:389
17:24:07,771 INFO  [STDOUT] 17:24:07,771  INFO  [authentication.ldap.LDAPInitialDirContextFactoryImpl] LDAP server does not fall back to anonymous bind for a simple dn and pass word at ldap://172.20.36.8:389
17:24:07,796 INFO  [STDOUT] 17:24:07,796  INFO  [authentication.ldap.LDAPInitialDirContextFactoryImpl] LDAP server does not fall back to anonymous bind for known principal and  invalid credentials at ldap://172.20.36.8:389

Un saludo y gracias de antemano
18 REPLIES 18

pjcaracuel_2349
Confirmed Champ
Confirmed Champ
Buenas,

Te pongo post relacionados con tu error:
http://forums.alfresco.com/en/viewtopic.php?f=9&t=17255
http://forums.alfresco.com/en/viewtopic.php?f=9&t=18124
http://forums.alfresco.com/en/viewtopic.php?f=9&t=4851

Si no encuentras en ellos la solucion ya seguimos mirando mas.

SAludos

brouco
Champ in-the-making
Champ in-the-making
Hola bueno lo primero darte las gracias por contestar.

Sigo teniendo el mismo problema he echo las configuraciones tal cual aparecen en los post que me enviaste no se donde puede estar el problema.
Puede ser que por tener mal esos fichero no me cargue alfresco??
Por que si elimino los fichero referente a la autenticación contra ldap si que me carga pero con ellos me peta en el despliegue.

Un saludo y gracias

pjcaracuel_2349
Confirmed Champ
Confirmed Champ
oki,
puedes poner completo el contenido de alfresco.log?

Gracias

brouco
Champ in-the-making
Champ in-the-making
Tenia un fichero xml mal configurado ahora ya me carga la aplicacion solo que cuando me intento loguear con usuario del ldap me devuelve lo siguiente


javax.faces.FacesException: Error calling action method of component with id loginForm:submit
caused by:
javax.faces.el.EvaluationException: Exception while invoking expression #{LoginBean.login}
caused by:
java.lang.NullPointerException

y no puedo loguearme el contenido del alfresco.log es el siguiente

08:56:21,742 INFO  [org.alfresco.web.site.FrameworkHelper] Successfully Initialized Web Framework
09:04:56,286 ERROR [org.alfresco.repo.content.transform.magick.AbstractImageMagickContentTransformer] ImageMagickContentTransformer not available: Failed to perform ImageMagick transformation:
Execution result:
   os:         Linux
   command:    [./ImageMagick/bin/convert, /tmp/Alfresco/ImageMagickContentTransformer_init_source_1163725250571530281.gif, /tmp/Alfresco/ImageMagickContentTransformer_init_target_1079669312844360231.png]
   succeeded:  false
   exit code:  1
   out:
   err:        Cannot run program "./ImageMagick/bin/convert": java.io.IOException: error=2, No such file or directory
09:04:59,768 INFO  [org.alfresco.config.xml.XMLConfigService$PropertyConfigurer] Loading properties file from class path resource [alfresco/file-servers.properties]
09:05:03,799 DEBUG [org.alfresco.repo.security.authentication.ldap] preRegister called. Server=org.jboss.mx.server.MBeanServerImpl@e45076[ defaultDomain='jboss' ], name=log4j:logger=org.alfresco.repo.security.authentication.ldap
09:05:11,943 ERROR [org.alfresco.repo.content.transform.RuntimeExecutableContentTransformer] Failed to start a runtime executable content transformer:
Execution result:
   os:         Linux
   command:    [./bin/pdf2swf, -V]
   succeeded:  false
   exit code:  1
   out:
   err:        Cannot run program "./bin/pdf2swf": java.io.IOException: error=2, No such file or directory
09:05:13,412 INFO  [org.alfresco.repo.security.authentication.ldap.LDAPInitialDirContextFactoryImpl] LDAP server does not fall back to anonymous bind for a string uid and password at ldap://172.20.36.8:389
09:05:13,432 INFO  [org.alfresco.repo.security.authentication.ldap.LDAPInitialDirContextFactoryImpl] LDAP server does not fall back to anonymous bind for a simple dn and password at ldap://172.20.36.8:389
09:05:13,449 INFO  [org.alfresco.repo.security.authentication.ldap.LDAPInitialDirContextFactoryImpl] LDAP server does not fall back to anonymous bind for known principal and invalid credentials at ldap://172.20.36.8:389
09:05:35,672 INFO  [org.alfresco.repo.domain.schema.SchemaBootstrap] Schema managed by database dialect org.hibernate.dialect.MySQLInnoDBDialect.
09:05:36,752 INFO  [org.alfresco.repo.domain.schema.SchemaBootstrap] No changes were made to the schema.
09:05:40,401 WARN  [org.alfresco.repo.admin.ConfigurationChecker] The Alfresco 'dir.root' property is set to a relative path './alf_data'.  'dir.root' should be overridden to point to a specific folder.
09:05:40,402 INFO  [org.alfresco.repo.admin.ConfigurationChecker] The Alfresco root data directory ('dir.root') is: ./alf_data
09:05:40,522 INFO  [org.alfresco.repo.admin.patch.PatchExecuter] Checking for patches to apply …
09:05:41,244 INFO  [org.alfresco.repo.admin.patch.PatchExecuter] No patches were required.
09:05:41,257 INFO  [org.alfresco.repo.module.ModuleServiceImpl] Found 0 module(s).
09:05:46,576 ERROR [org.alfresco.smb.protocol] Failed to get local domain/workgroup name, using default of WORKGROUP
09:05:46,577 ERROR [org.alfresco.smb.protocol] (This may be due to firewall settings or incorrect <broadcast> setting)
09:05:47,047 WARN  [org.alfresco.util.OpenOfficeConnectionTester] An initial OpenOffice connection could not be established.
09:05:47,115 INFO  [org.alfresco.service.descriptor.DescriptorService] Alfresco JVM - v1.6.0_13-b03; maximum heap size 506,313MB
09:05:47,117 INFO  [org.alfresco.service.descriptor.DescriptorService] Alfresco started (Labs): Current version 3.0.0 (Stable 1526) schema 1002 - Installed version 3.0.0 (Stable 1526) schema 1002
09:06:34,223 INFO  [org.alfresco.web.site.FrameworkHelper] Successfully Initialized Web Framework
09:07:23,546 ERROR [org.apache.myfaces.shared_impl.config.MyfacesConfig] Both MyFaces and the RI are on your classpath. Please make sure to use only one of the two JSF-implementations.


Lo de los dos programas es por que aun no los tengo instalados.

Muchas gracias por tu ayuda

brouco
Champ in-the-making
Champ in-the-making
Ahora parece que no me da errores al loguearme solo que cada vez que me intento loguear con un usario del ldap no hace nada tan solo te devuelve contraseña o nombre de usuario incorrecto. En log no aparece nada lo unico cuando despliegas alfresco aparece esto pero no se si es por culpa de eso??


10:00:56,722 INFO  [STDOUT] 10:00:56,722  INFO  [authentication.ldap.LDAPInitialDirContextFactoryImpl] LDAP server does not fall back to anonymous bind for a string uid and password at ldap://172.20.36.8:389
10:00:56,747 INFO  [STDOUT] 10:00:56,745  INFO  [authentication.ldap.LDAPInitialDirContextFactoryImpl] LDAP server does not fall back to anonymous bind for a simple dn and password at ldap://172.20.36.8:389
10:00:56,770 INFO  [STDOUT] 10:00:56,759  INFO  [authentication.ldap.LDAPInitialDirContextFactoryImpl] LDAP server does not fall back to anonymous bind for known principal and invalid credentials at ldap://172.20.36.8:389

pjcaracuel_2349
Confirmed Champ
Confirmed Champ
Uhmmm, a ver, intenta deshabilitar el usuario guest, para ello en el fichero authentication-services-context.xml

<property name="allowGuestLogin">
            <value>true</value>
</property>

Por el valor false, reinicias y nos dices que tal. Si persiste el error, postea el nuevo contenido de alfresco.log

Saludos

brouco
Champ in-the-making
Champ in-the-making
Nada seguimos con el mismo error y sin poder autenticar usuarios de ldap

pjcaracuel_2349
Confirmed Champ
Confirmed Champ
A ver si con este post lo consigues arreglar
http://forums.alfresco.com/en/viewtopic.php?f=9&t=15596

Por otro lado, con que nombre te autenticas contra el ldap? username o nombre largo?

Saludos

brouco
Champ in-the-making
Champ in-the-making
Autentico con username