AnsweredAssumed Answered

Alfresco Community 5.0 with AD

Question asked by karthikjaps on Aug 5, 2015
Latest reply on Aug 8, 2015 by tybion
Hi , i am new to Alfersco , right now i install Alfresco Community 5.0 in my machine and testing to integerate my AD user with it , but i try some link which available in site, now its confused , can any one pls share some documentation for this current version AD Integration .

i have an doute on following this ,

1- while adding  "  authentication.chain=ldap-ad1:ldap-ad,alfrescoNtlm1:alfrescoNtlm " in  repository.properties , This  repository.properties ws not exits in current version so i have to add in following location right ?

/opt/alfresco-5.0.d/tomcat/shared/classes# nano alfresco-global.properties


2-then i have to create folder in  tomcat/webapps\alfresco\WEB-INF\classes\alfresco\subsystems\Authentication

ldap-ad-authentication.properties file in ldap-ad folder right  ?


3-then i ldap-ad-authentication.properties , i add the following details for my AD integration this is correct ?




ldap.authentication.active=true
ldap.authentication.userNameFormat=uid=%s,dc=example,dc=demo,dc=com
ldap.authentication.java.naming.factory.initial=com.sun.jndi.ldap.LdapCtxFactory
ldap.authentication.java.naming.security.authentication=simple
ldap.authentication.java.naming.provider.url=ldap://192.168.1.1:389

ldap.authentication.escapeCommasInBind=false
ldap.authentication.escapeCommasInUid=false
ldap.authentication.defaultAdministratorUserNames=administrator


ldap.synchronization.active=true
ldap.synchronization.java.naming.security.principal=cn=reader,cn=users,dc=example,dc=demo,dc=com
ldap.synchronization.java.naming.security.credentials=13061111

dap.synchronization.queryBatchSize=1000
ldap.synchronization.attributeBatchSize=1000

ldap.synchronization.groupQuery=(objectclass\=group)
ldap.synchronization.personQuery=(objectclass\=user)


ldap.synchronization.groupDifferentialQuery=(&(objectclass\=group)(!(modifyTimestamp<\={0}))

ldap.synchronization.groupSearchBase=dc=example,dc=demo,dc=com
ldap.synchronization.userSearchBase=dc=example,dc=demo,dc=com

ldap.synchronization.modifyTimestampAttributeName=modifyTimestamp
ldap.synchronization.timestampFormat=yyyyMMddHHmmss'.0Z'
ldap.synchronization.userIdAttributeName=sAMAccountName



This is correct or anything i missed ? 

Outcomes