AnsweredAssumed Answered

Alfresco-4.2.e with Openldap not work

Question asked by tstianzy on Jan 22, 2014
Latest reply on Apr 25, 2018 by raghunandangowda
Hi

I want to integrate my alfresco-4.2.e and openldap, use the users of openldap to login alfresco. I according to alfresco wiki to configure it, but it not work. The following is my configuration:

Add the three lines to /opt/alfresco/apache-tomcat/shared/classes/alfresco-global.properties file.
  ntlm.authentication.sso.enabled=false
  passthru.authentication.authenticateCIFS=false
  authentication.chain=alfrescoNtlm1:alfrescoNtlm,ldap1:ldap

The following is /opt/alfresco/apache-tomcat/webapps/alfresco/WEB-INF/classes/alfresco/subsystems/Authentication/ldap/ldap1/ldap-authentication.properties file content:
   ldap.authentication.active=true
   ldap.authentication.allowGuestLogin=false
   ldap.authentication.userNameFormat=uid=%s,dc=mydomain,dc=com
   ldap.authentication.java.naming.factory.initial=com.sun.jndi.ldap.LdapCtxFactory
   ldap.authentication.java.naming.provider.url=ldap://192.168.8.111:389
   ldap.authentication.java.naming.security.authentication=simple
   ldap.authentication.escapeCommasInBind=false
   ldap.authentication.escapeCommasInUid=false
   ldap.authentication.defaultAdministratorUserNames=
   ldap.synchronization.active=true
   ldap.synchronization.java.naming.security.authentication=simple
   ldap.synchronization.java.naming.security.principal=cn=root,dc=mydomain,dc=com
   ldap.synchronization.java.naming.security.credentials=password
   ldap.synchronization.queryBatchSize=1000
   ldap.synchronization.attributeBatchSize=1000
   ldap.synchronization.groupQuery=(objectclass\=posixGroup)
   ldap.synchronization.groupDifferentialQuery=(&(objectclass\=posixGroup)(!(modifyTimestamp<\={0})))
   ldap.synchronization.personQuery=(objectclass\=inetOrgPerson)
   ldap.synchronization.personDifferentialQuery=(&(objectclass\=inetOrgPerson)(!(modifyTimestamp<\={0})))
   ldap.synchronization.groupSearchBase=dc=mydomain,dc=com
   ldap.synchronization.userSearchBase=dc=mydomain,dc=com
   ldap.synchronization.modifyTimestampAttributeName=modifyTimestamp
   ldap.synchronization.timestampFormat=yyyyMMddHHmmss'Z'
   ldap.synchronization.userIdAttributeName=uid
   ldap.synchronization.userFirstNameAttributeName=givenName
   ldap.synchronization.userLastNameAttributeName=sn
   ldap.synchronization.userEmailAttributeName=mail
   ldap.synchronization.userOrganizationalIdAttributeName=o
   ldap.synchronization.defaultHomeFolderProvider=largeHomeFolderProvider
   ldap.synchronization.groupIdAttributeName=cn
   ldap.synchronization.groupDisplayNameAttributeName=description
   ldap.synchronization.groupType=groupOfNames
   ldap.synchronization.personType=inetOrgPerson
   ldap.synchronization.groupMemberAttributeName=member
   ldap.synchronization.enableProgressEstimation=true
   ldap.authentication.java.naming.read.timeout=0

Then, I trying to login to alfresco use ldap users, the ldap.log file of ldap server have no any output.
Does anyone can help me?
Thanks.

Outcomes