Return-Path: X-Original-To: apmail-activemq-users-archive@www.apache.org Delivered-To: apmail-activemq-users-archive@www.apache.org Received: from mail.apache.org (hermes.apache.org [140.211.11.3]) by minotaur.apache.org (Postfix) with SMTP id 0C61ADE55 for ; Thu, 1 Nov 2012 20:28:54 +0000 (UTC) Received: (qmail 14608 invoked by uid 500); 1 Nov 2012 20:28:54 -0000 Delivered-To: apmail-activemq-users-archive@activemq.apache.org Received: (qmail 14579 invoked by uid 500); 1 Nov 2012 20:28:54 -0000 Mailing-List: contact users-help@activemq.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Reply-To: users@activemq.apache.org Delivered-To: mailing list users@activemq.apache.org Received: (qmail 14570 invoked by uid 99); 1 Nov 2012 20:28:54 -0000 Received: from nike.apache.org (HELO nike.apache.org) (192.87.106.230) by apache.org (qpsmtpd/0.29) with ESMTP; Thu, 01 Nov 2012 20:28:54 +0000 X-ASF-Spam-Status: No, hits=-0.0 required=5.0 tests=SPF_PASS X-Spam-Check-By: apache.org Received-SPF: pass (nike.apache.org: local policy) Received: from [67.217.170.145] (HELO deneb.eldergods.com) (67.217.170.145) by apache.org (qpsmtpd/0.29) with ESMTP; Thu, 01 Nov 2012 20:28:46 +0000 Received: by deneb.eldergods.com (Postfix, from userid 1000) id 8ADBC54288; Thu, 1 Nov 2012 16:28:24 -0400 (EDT) Date: Thu, 1 Nov 2012 16:28:24 -0400 From: rektide To: users@activemq.apache.org Subject: Re: Using Apollo with LDAP/Active Directory Message-ID: <20121101202824.GD18490@eldergods.com> References: <1351787598502-4658601.post@n4.nabble.com> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <1351787598502-4658601.post@n4.nabble.com> User-Agent: Mutt/1.5.21 (2010-09-15) X-Virus-Checked: Checked by ClamAV on apache.org Hey Luis; I don't have any experience with this topic, but I'd be interested in trying to replicate your progress & see for myself if I can surmount this. Is there anything particular you had to do for LdapLoginModule? If you can push a sanitized configuration that you're using to the list, that would be a great starting place for me, and I'd love see how far I can get. Cheers, M On Thu, Nov 01, 2012 at 09:33:18AM -0700, Luis Gonzalez wrote: > Hi, > > I have been trying to configure Apollo to use Active Directory through LDAP > for authentication and group membership, much like the default file-based > configuration works. > > I managed to configure authentication using > com.sun.security.auth.module.LdapLoginModule, but I'm missing group > membership and I don't see how to configure that module so it knows what to > do. > > org.apache.activemq.jaas.LDAPLoginModule has options for querying the groups > but I haven't been able to get it to talk to Active Directory. > > So the questions are: > > - Is org.apache.activemq.jaas.LDAPLoginModule the right LoginModule to use > for LDAP in Apollo? > > - Are there other LoginModules better suited for this?