AnsweredAssumed Answered

AuthenticationCredentialsNotFoundException in cifs

Question asked by roli8200 on Feb 10, 2010
Latest reply on Mar 1, 2010 by dward
Hello

I'm on installing the live alfresco for our pilot environment based on zimbra/sugar/alfresco. I configured the ldap sync and ldap auth and auth chaining configuration and almost everything works so far, except of the cifs authentication. I always getting the following exception when I try to access the alfresco cifs share from a smb client (windows or dolphin). Maybe someone has an idea about the error.


Thanks a lot in advance.

Regards

Roland


—–
[org.alfresco.fileserver] net.sf.acegisecurity.AuthenticationCredentialsNotFoundException: A valid SecureContext was not provided in the RequestContext
[org.alfresco.fileserver]   at net.sf.acegisecurity.intercept.AbstractSecurityInterceptor.credentialsNotFound(AbstractSecurityInterceptor.java:477)
[org.alfresco.fileserver]   at net.sf.acegisecurity.intercept.AbstractSecurityInterceptor.beforeInvocation(AbstractSecurityInterceptor.java:355)
[org.alfresco.fileserver]   at net.sf.acegisecurity.intercept.method.aopalliance.MethodSecurityInterceptor.invoke(MethodSecurityInterceptor.java:77)
[org.alfresco.fileserver]   at org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:171)
[org.alfresco.fileserver]   at org.alfresco.repo.security.permissions.impl.ExceptionTranslatorMethodInterceptor.invoke(ExceptionTranslatorMethodInterceptor.java:49)
[org.alfresco.fileserver]   at org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:171)
[org.alfresco.fileserver]   at org.alfresco.repo.audit.AuditMethodInterceptor.invoke(AuditMethodInterceptor.java:147)
[org.alfresco.fileserver]   at org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:171)
[org.alfresco.fileserver]   at org.springframework.transaction.interceptor.TransactionInterceptor.invoke(TransactionInterceptor.java:106)
[org.alfresco.fileserver]   at org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:171)
[org.alfresco.fileserver]   at org.springframework.aop.framework.JdkDynamicAopProxy.invoke(JdkDynamicAopProxy.java:204)
[org.alfresco.fileserver]   at $Proxy65.search(Unknown Source)
——-




My alfresco-global.properties is [Changed some security relevant infos to <placeholder>]:
#Auth
authentication.chain=passthru1:passthu,ldap1:ldap,alfrescoNtlm1:alfrescoNtlm

#NTLM
ntlm.authentication.sso.enabled=false
alfreso.authentication.authenticateCIFS=false

#Passthrough
passthru.authentication.servers=<DOMAIN>\\<SMB-PDC>,192.168.10.120
passthru.authentication.domain=<DOMAIN>
passthru.authentication.sso.enabled=false                           
passthru.authentication.allowGuestLogin=false                       
passthru.authentication.useLocalServer=false                        
passthru.authentication.guestAccess=false                           
passthru.authentication.defaultAdministratorUserNames=<admin-users>
passthru.authentication.connectTimeout=5000
passthru.authentication.offlineCheckInterval=300
passthru.authentication.protocolOrder=TCPIP,NETBIOS
passthru.authentication.authenticateCIFS=true
passthru.authentication.authenticateFTP=true

#LDAP AUTH
ldap.authentication.active=true
# ldap.authentication.userNameFormat=uid\=%s,ou\=people,<basedn>
ldap.authentication.userNameFormat=uid=%s,ou=people,<basedn>
ldap.authentication.java.naming.factory.initial=com.sun.jndi.ldap.LdapCtxFactory
ldap.authentication.java.naming.provider.url=ldap://192.168.10.120:389
ldap.authentication.java.naming.security.authentication=simple
ldap.authentication.allowGuestLogin=false
ldap.authentication.escapeCommasInBind=false
ldap.authentication.escapeCommasInUid=false
ldap.authentication.defaultAdministratorUserNames=<admin-users>

# LDAP SYNC
ldap.synchronization.active=true
ldap.synchronization.queryBatchSize=1000
ldap.synchronization.java.naming.security.principal=cn\=config
ldap.synchronization.java.naming.security.credentials=<rootpw>
ldap.synchronization.groupSearchBase=ou\=groups,<basedn>
ldap.synchronization.userSearchBase=ou\=people,<basedn>
ldap.synchronization.userIdAttributeName=uid
ldap.synchronization.userFirstNameAttributeName=givenName
ldap.synchronization.userLastNameAttributeName=sn
ldap.synchronization.userEmailAttributeName=mail
ldap.synchronization.userOrganizationalIdAttributeName=o
ldap.synchronization.personType=posixAccount
ldap.synchronization.personDifferentialQuery=(objectClass\=posixAccount)
ldap.synchronization.personQuery=(objectClass\=posixAccount)
ldap.synchronization.groupType=posixGroup
ldap.synchronization.groupQuery=(objectClass\=posixGroup)
ldap.synchronization.groupDifferentialQuery=(objectClass\=posixGroup)
ldap.synchronization.groupMemberAttributeName=memberUid
# ldap.synchronization.defaultHomeFolderProvider=homeDirectory
ldap.synchronization.defaultHomeFolderProvider=userHomesHomeFolderProvider
ldap.synchronization.groupIdAttributeName=gidNumber
ldap.synchronization.enableProgressEstimation=true

#Domain Mappings
filesystem.domainMappings=<DOMAIN>
filesystem.domainMappings.value.<DOMAIN>.subnet=192.168.0.0
filesystem.domainMappings.value.<DOMAIN>.mask=255.255.0.0

#File Servers
cifs.enabled=true
cifs.domain=<DOMAIN>
cifs.serverName=TOLEDO
cifs.broadcast=255.255.255.0
cifs.bindto=192.168.10.140
cifs.tcpipSMB.port=445
cifs.netBIOSSMB.namePort=137
cifs.netBIOSSMB.datagramPort=138
cifs.netBIOSSMB.sessionPort=139
cifs.WINS.primary=192.168.10.120
cifs.WINS.secondary=192.168.10.120
cifs.urlfile.prefix=<url-prefix>/alfresco
——-

Outcomes