AnsweredAssumed Answered

LDAP sync creates all users in Base dir

Question asked by unknown-user on Sep 21, 2009
Latest reply on Sep 21, 2009 by unknown-user
When the LDAP sync took place as I just got the ldap config working (settings are all show below), suddenly all users had spaces created in the company home.

Users that have loggeed in receive a space in /UserHome/username as well! What is all this madness???  :cry:

I'm guessing I'm doing soemthing wrong in my config, I was allready very happy to get it logging people in and having the emails+names passed through but this is the next blocking step ;-)

Thanks

Incidentally I'm running openldap if anyone is interested as this config does nearly work apart from the annoying bug above. So might help some people!

authentication.chain=alfrescoNtlm1:alfrescoNtlm,ldap1:ldap
ldap.authentication.active=true
ldap.synchronization.active=true
ldap.authentication.userNameFormat=uid=%s,ou=People,dc=somedomain,dc=somedomain
ldap.authentication.java.naming.factory.initial=com.sun.jndi.ldap.LdapCtxFactory
ldap.authentication.java.naming.provider.url=ldap://someldapserver:389
ldap.authentication.java.naming.security.authentication=simple
ldap.authentication.java.naming.security.principal=cn=someuser,dc=somedomain,dc=somedomain
ldap.authentication.java.naming.security.credentials=somepassinclear
ldap.authentication.escapeCommasInBind=false
ldap.authentication.escapeCommasInUid=false

ldap.synchronization.userSearchBase=ou=people,dc=somedomain,dc=somedomain
ldap.synchronization.groupSearchBase=cn=alfresco,ou=groups,dc=somedomain,dc=somedomain
ldap.synchronization.personType=inetOrgPerson
ldap.synchronization.java.naming.security.principal=cn=someuser,dc=somedomain,dc=somedomain
ldap.synchronization.java.naming.security.credentials=somepassinclear
ldap.synchronization.userFirstNameAttributeName=givenName
ldap.synchronization.userLastNameAttributeName=sn
ldap.synchronization.userEmailAttributeName=mail
ldap.synchronization.syncOnStartup=true

Outcomes