AnsweredAssumed Answered

User can not login after synchronization successfully

Question asked by togum on Oct 7, 2011
Latest reply on Oct 20, 2011 by cjimenez2581
Hi all,

Sorry if repost and my english :)

I used OpenLDAP as authentication for Alfresco. So when Alfresco was successfull synchronization with openLDAP, I logged in but always FAILED
"Unable to login - unknown username/password"

I used Windows Server 2008 for Alfresco and Centos for OpenLDAP.

This is my configuration:

alfresco-global.properties

### Active Directory ###
authentication.chain=alfinst:alfrescoNtlm,passthru1:passthru,ldap1:ldap

passthru-authentication-context.properties

passthru.authentication.useLocalServer=false
passthru.authentication.domain=mainserver
passthru.authentication.servers=192.168.1.100
passthru.authentication.guestAccess=false
passthru.authentication.defaultAdministratorUserNames=admin
#Timeout value when opening a session to an authentication server, in milliseconds
passthru.authentication.connectTimeout=5000
#Offline server check interval in seconds
passthru.authentication.offlineCheckInterval=300
passthru.authentication.protocolOrder=NetBIOS,TCPIP
passthru.authentication.authenticateCIFS=true
passthru.authentication.authenticateFTP=true

ldap-authentication.properties

ldap.authentication.active=false
ldap.synchronization.active=true

ldap.authentication.java.naming.security.authentication=DIGEST-MD5
ldap.authentication.java.naming.provider.url=ldap://192.168.1.100:389
ldap.synchronization.java.naming.security.principal=cn=admin,dc=mainserver,dc=local
ldap.synchronization.java.naming.security.credentials=********
ldap.authentication.defaultAdministratorUserNames=admin
ldap.synchronization.queryBatchSize=1000
ldap.synchronization.groupQuery=(&(objectclass\=posixGroup))
ldap.synchronization.groupDifferentialQuery=(&(objectclass\=posixGroup)(!(modifyTimestamp<\={0})))
ldap.synchronization.personQuery=(&(objectclass\=posixAccount))
ldap.synchronization.personDifferentialQuery=(&(objectclass\=posixAccount)(!(modifyTimestamp<\={0})))
ldap.synchronization.groupSearchBase=dc\=mainserver,dc\=local
ldap.synchronization.userSearchBase=dc\=mainserver,dc\=local
ldap.synchronization.modifyTimestampAttributeName=modifyTimestamp
ldap.synchronization.timestampFormat=yyyyMMddHHmmss'Z'
ldap.synchronization.userIdAttributeName=uid
ldap.synchronization.userFirstNameAttributeName=givenName
ldap.synchronization.userLastNameAttributeName=sn
ldap.synchronization.userEmailAttributeName=mail
ldap.synchronization.userOrganizationalIdAttributeName=company
ldap.synchronization.defaultHomeFolderProvider=userHomesHomeFolderProvider
ldap.synchronization.groupIdAttributeName=cn
ldap.synchronization.groupType=posixGroup
ldap.synchronization.personType=posixAccount
ldap.synchronization.groupMemberAttributeName=member
ldap.synchronization.enableProgressEstimation=true
synchronization.synchronizeChangesOnly=true

Anybody help me….
Thanks in advanced.

Outcomes