AnsweredAssumed Answered

LDAP Authentication On Alfresco 4.0.b

Question asked by vijith on Nov 14, 2011
Latest reply on Apr 1, 2014 by mrogers
Hi ,

I installed alfresco 4.0.b community Edition , after that i tried to integrate with LDAP server ,for that i changed 2 files
1)alfrescoinstallationfolder/tomcat/shared/classes/alfresco-global.properties

Added
authentication.chain=alfrescoNtlm1:alfrescoNtlm,ldap1:ldap

2)alfrescoinstallationfolder/tomcat/webapps/alfresco/WEB-INF/classes/alfresco/subsystems/Authentication/ldap/ldap1/ldap-authentication.properties
ldap.authentication.active=true
ldap.authentication.userNameFormat=uid=%s,ou=people,dc=example,dc=com
ldap.authentication.java.naming.provider.url=ldap://ip-address:389
ldap.authentication.java.naming.security.authentication=simple
ldap.synchronization.active=true
ldap.synchronization.java.naming.security.principal=cn\=admin,dc\=example,dc\=com
ldap.synchronization.java.naming.security.credentials=password
ldap.synchronization.groupQuery=(objectclass\=groupOfNames)
ldap.synchronization.groupDifferentialQuery=(&(objectclass\=groupOfNames)(!(modifyTimestamp<\={0})))
ldap.synchronization.personQuery=(objectclass\=inetOrgPerson)
ldap.synchronization.personDifferentialQuery=(&(objectclass\=inetOrgPerson)(!(modifyTimestamp<\={0})))
ldap.synchronization.groupSearchBase=ou\=Groups,dc\=example,dc\=com
ldap.synchronization.userSearchBase=ou\=Users,dc\=example,dc\=com
ldap.synchronization.modifyTimestampAttributeName=modifyTimestamp
ldap.synchronization.timestampFormat=yyyyMMddHHmmss'Z'
ldap.synchronization.userIdAttributeName=uid
ldap.synchronization.userFirstNameAttributeName=givenName
ldap.synchronization.userLastNameAttributeName=sn
ldap.synchronization.userOrganizationalIdAttributeName=o
ldap.synchronization.defaultHomeFolderProvider=userHomesHomeFolderProvider
ldap.synchronization.groupIdAttributeName=cn
ldap.synchronization.groupType=groupOfNames
ldap.synchronization.personType=inetOrgPerson
ldap.synchronization.groupMemberAttributeName=member

Finally restart the alfresco service ; while viewing log file it's showing
17:37:31,206 INFO  [org.alfresco.repo.management.subsystems.ChildApplicationContextFactory] Starting 'Synchronization' subsystem, ID: [Synchronization, default]
17:37:31,242 INFO  [org.alfresco.repo.security.sync.ChainingUserRegistrySynchronizer] Synchronizing users and groups with user registry 'ldap1'
17:37:31,252 INFO  [org.alfresco.repo.security.sync.ChainingUserRegistrySynchronizer] Retrieving all groups from user registry 'ldap1'
17:37:31,303 INFO  [org.alfresco.repo.security.sync.ChainingUserRegistrySynchronizer] ldap1 Group Analysis: Commencing batch of 0 entries
17:37:31,304 INFO  [org.alfresco.repo.security.sync.ChainingUserRegistrySynchronizer] ldap1 Group Analysis: Completed batch of 0 entries
17:37:31,308 INFO  [org.alfresco.repo.security.sync.ChainingUserRegistrySynchronizer] Retrieving all users from user registry 'ldap1'
17:37:31,319 INFO  [org.alfresco.repo.security.sync.ChainingUserRegistrySynchronizer] ldap1 User Creation and Association: Commencing batch of 13 entries
17:37:34,015 INFO  [org.alfresco.repo.security.sync.ChainingUserRegistrySynchronizer] ldap1 User Creation and Association: Processed 13 entries out of 13. 100% complete. Rate: 4 per second. 0 failures detected.
17:37:34,015 INFO  [org.alfresco.repo.security.sync.ChainingUserRegistrySynchronizer] ldap1 User Creation and Association: Completed batch of 13 entries
17:37:34,033 INFO  [org.alfresco.repo.security.sync.ChainingUserRegistrySynchronizer] Finished synchronizing users and groups with user registry 'ldap1'
17:37:34,033 INFO  [org.alfresco.repo.security.sync.ChainingUserRegistrySynchronizer] 13 user(s) and 0 group(s) processed
17:37:35,038 INFO  [org.alfresco.repo.management.subsystems.ChildApplicationContextFactory] Startup of 'Synchronization' subsystem, ID: [Synchronization, default] complete
17:37:35,306 INFO  [org.alfresco.service.descriptor.DescriptorService] Alfresco JVM - v1.6.0_18-b07; maximum heap size 742.438MB
17:37:35,306 INFO  [org.alfresco.service.descriptor.DescriptorService] Alfresco started (Community). Current version: 4.0.0 (b 3835) schema 5,019. Originally installed version: 4.0.0 (b 3835) schema 5,019.
17:37:35,307 INFO  [org.alfresco.repo.management.subsystems.ChildApplicationContextFactory] Starting 'ActivitiesFeed' subsystem, ID: [ActivitiesFeed, default]
17:37:35,690 INFO  [org.alfresco.repo.management.subsystems.ChildApplicationContextFactory] Startup of 'ActivitiesFeed' subsystem, ID: [ActivitiesFeed, default] complete
17:37:35,691 INFO  [org.alfresco.repo.management.subsystems.ChildApplicationContextFactory] Starting 'Replication' subsystem, ID: [Replication, default]

But am not able to login throughldap users (Error message:The remote server may be unavailable or your authentication details have not been recognized.
); login through admin able to see all the ldap users created on alfresco..

please help me for this issue…

Outcomes