Need Help with LDAP connection. I need to authenticate users using my ldap server for CMDBuild. I configured my auth.conf file accordingly..but i seem to be missing something..can anybody help ?
Previously Swapnil wrote:
Need Help with LDAP connection. I need to authenticate users using my ldap server for CMDBuild. I configured my auth.conf file accordingly..but i seem to be missing something..can anybody help ?
I had some frustrating times getting this going as well but found that what I needed in /var/lib/tomcat7/cmdbuild/WEB-INF/conf/auth.conf was VERY case sensitive. The following is how I have it configured and it now works.
auth.methods=LdapAuthenticator,DBAuthenticator
ldap.server.address=xxx.xxx.xxx.xxx
ldap.server.port=389
ldap.use.ssl=false
ldap.basedn=DC=mydomain,DC=com,DC=au
ldap.bind.attribute=sAMAccountName
##This section is only for simple bind
ldap.search.auth.method=simple
ldap.search.auth.principal=CN=username,CN=OrgUnit,DC=mydomain,DC=com,DC=au
ldap.search.auth.password=xxxxxxxxx
I actually used adsiedit.exe to query AD for the domain and user information and did a copy and paste into auth.conf to ensure everything was case matched. This was the only way I could get it to work.
For example in the entry for ldap.search.auth.principal, CN=administrator didn't work but CN=Administrator did! Simply making sure Administrator had a capital "A" (as it is in AD) made all the difference.
So, make sure the entries for ldap.basedn & ldap.search.auth.principal are case matched with AD and contain the correct information for your domain and user. My example above has obviously been changed to remove our information.
Hope this helps!