AnsweredAssumed Answered

LDAP Authentication & Active Directory

Question asked by boneill on Jul 17, 2008
Latest reply on Oct 27, 2008 by janeerdekens
Hi guys,

I have been through the wikis and forum posts a number of times and get more confused all the time.  I simply want to authenticate users against our Active Directory using LDAP.  The users exist in Alfresco so only want authentication for now not synchronisation.  Firstly, is MSActiveDirectory & LDAP authentication supported in Enterprise version 2.2.  (Active Directory does not support MD5 passwords but lots of blogs on 2.1 say they have this working.)  

From reading the wiki it appears all I have to do is set values in the ldap-authentication.properties.   (values set as below, these work using an ldap browser app for testing).  Is there something else I need to do as well, other config settings I have missed etc.  Authentication is failing and there is nothing in the log files.  Any help much appreciated:

ldap.authentication.userNameFormat="cn=%s,ou=marketing,dc= etc"

# The LDAP context factory to use
ldap.authentication.java.naming.factory.initial=com.sun.jndi.ldap.LdapCtxFactory

# The URL to connect to the LDAP server
ldap.authentication.java.naming.provider.url=ldap://myserver:389

# The authentication mechanism to use
ldap.authentication.java.naming.security.authentication=simple

# The default principal to use (only used for LDAP sync)
ldap.authentication.java.naming.security.principal=myreader

# The password for the default principal (only used for LDAP sync)
ldap.authentication.java.naming.security.credentials=password

Regards

Outcomes