From users-return-32416-apmail-activemq-users-archive=activemq.apache.org@activemq.apache.org Sat Nov 3 00:16:42 2012 Return-Path: X-Original-To: apmail-activemq-users-archive@www.apache.org Delivered-To: apmail-activemq-users-archive@www.apache.org Received: from mail.apache.org (hermes.apache.org [140.211.11.3]) by minotaur.apache.org (Postfix) with SMTP id 11D04D0B3 for ; Sat, 3 Nov 2012 00:16:42 +0000 (UTC) Received: (qmail 99828 invoked by uid 500); 3 Nov 2012 00:16:41 -0000 Delivered-To: apmail-activemq-users-archive@activemq.apache.org Received: (qmail 99796 invoked by uid 500); 3 Nov 2012 00:16:41 -0000 Mailing-List: contact users-help@activemq.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Reply-To: users@activemq.apache.org Delivered-To: mailing list users@activemq.apache.org Received: (qmail 99721 invoked by uid 99); 3 Nov 2012 00:16:41 -0000 Received: from nike.apache.org (HELO nike.apache.org) (192.87.106.230) by apache.org (qpsmtpd/0.29) with ESMTP; Sat, 03 Nov 2012 00:16:41 +0000 X-ASF-Spam-Status: No, hits=2.3 required=5.0 tests=SPF_SOFTFAIL,URI_HEX X-Spam-Check-By: apache.org Received-SPF: softfail (nike.apache.org: transitioning domain of luis.gonzalez@mzero.com does not designate 216.139.250.139 as permitted sender) Received: from [216.139.250.139] (HELO joe.nabble.com) (216.139.250.139) by apache.org (qpsmtpd/0.29) with ESMTP; Sat, 03 Nov 2012 00:16:35 +0000 Received: from [192.168.236.139] (helo=joe.nabble.com) by joe.nabble.com with esmtp (Exim 4.72) (envelope-from ) id 1TURPK-0005wk-0C for users@activemq.apache.org; Fri, 02 Nov 2012 17:16:14 -0700 Date: Fri, 2 Nov 2012 17:16:14 -0700 (PDT) From: Luis Gonzalez To: users@activemq.apache.org Message-ID: <1351901773987-4658720.post@n4.nabble.com> In-Reply-To: <20121101202824.GD18490@eldergods.com> References: <1351787598502-4658601.post@n4.nabble.com> <20121101202824.GD18490@eldergods.com> Subject: Re: Using Apollo with LDAP/Active Directory MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Virus-Checked: Checked by ClamAV on apache.org Thanks rektide, I don't have further experience with ldap either But I certainly learnt that the LDAP queries below depend on your server configuration and will very likely need tweaking beyond the domain name ("somecompany.com"). My only test so far consisted of having a new admin user, apolloadmin (name "Apollo Admin") in Active Directory logging in to Apollo's local web_admin site. It worked but since I didn't see group information coming back (the Sun login module writes to stdout in debug mode), no option to tell it to retrieve it (like org.apache.activemq.jaas.LDAPLoginModule has), and having failed in my attempts to get org.apache.activemq.jaas.LDAPLoginModule off the ground, I thought of asking if this is the right approach. Here is the relevant part inside apollo.xml: And here is login.config: So far, my impression is that I need to use (or create) another LoginModule. Any help is welcome. Thanks again! -- View this message in context: http://activemq.2283324.n4.nabble.com/Using-Apollo-with-LDAP-Active-Directory-tp4658601p4658720.html Sent from the ActiveMQ - User mailing list archive at Nabble.com.