continuum-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Lichtsteiner Patric lip" <Patric.Lichtstei...@apg.ch>
Subject Re: Active Directory LDAP authentication
Date Tue, 22 Jul 2008 08:01:03 GMT
Hi Emmanuel

Thanks for your answer. I could solve my problem...!
As BaseDN I had to specify
cn=Administrator,cn=users,dc=<domain>,dc=<country>. Please note the "cn"
for the "users" container (I expected "ou")...

If other tormented Active Directory users exist out there, here my
configuration of application.xml, maybe it helps anybody:

   <component>
 
<role>org.codehaus.plexus.redback.common.ldap.connection.LdapConnectionF
actory</role>
      <role-hint>configurable</role-hint>
 
<implementation>org.codehaus.plexus.redback.common.ldap.connection.Confi
gurableLdapConnectionFactory</implementation>
      <description></description>
      <configuration>
        <hostname>xxx.xxx.xxx.xxx</hostname>
        <port>389</port>
        <baseDn>ou=users,ou=(some ou),dc=(domain),dc=(country)</baseDn>
 
<contextFactory>com.sun.jndi.ldap.LdapCtxFactory</contextFactory>
        <password>(Admin password)</password>
 
<bindDn>cn=Administrator,cn=users,dc=(company),dc=(country)</bindDn>
      </configuration>
    </component>

    <component>
      <role>org.codehaus.plexus.redback.common.ldap.UserMapper</role>
      <role-hint>ldap</role-hint>
 
<implementation>org.codehaus.plexus.redback.common.ldap.LdapUserMapper</
implementation>
      <description></description>
      <configuration>
        <email-attribute>mail</email-attribute>
        <full-name-attribute>name</full-name-attribute>
        <password-attribute>userPassword</password-attribute>
        <user-id-attribute>mailNickname</user-id-attribute>
        <user-base-dn>ou=users,ou=(some
ou),dc=(company),dc=(country)</user-base-dn>
        <user-object-class>user</user-object-class>
      </configuration>
    </component>

Patric

On Mon, Jul 21, 2008 at 6:09 PM, Emmanuel Venisse
<mailto:emmanuel.venisse@gmail.com> wrote:

> I don't have an AD to test but an other LDAP and Continuum works
correctly.
> 
> It isn't Redback that doean't like it but javax.naming API. For the
moment, I can't see a reason of this error.
> 
> Emmanuel
> 
> On Mon, Jul 21, 2008 at 2:05 PM, Lichtsteiner Patric lip
<Patric.Lichtsteiner@apg.ch> wrote:
> 
> > Hi all
> >
> > I'm trying to configure LDAP authentication against an Active 
> > Directory using LDAP. I followed the doc at 
> >
http://continuum.apache.org/docs/1.1/administrator_guides/security/ldap.
> >
html<http://continuum.apache.org/docs/1.1/administrator_guides/security/
ldap.html>.
> > As "bindDn" I used a login name like "user@domain" (or domain\user).

> > Unfortunately Plexus does not like my bindDn and says:
> > <snip>
> > Caused by: javax.naming.InvalidNameException: Invalid name:
> > Administrator@domain
> >        at
> > javax.naming.ldap.Rfc2253Parser.doParse(Rfc2253Parser.java:86)
> >        at
> > javax.naming.ldap.Rfc2253Parser.parseDn(Rfc2253Parser.java:45)
> >        at javax.naming.ldap.LdapName.parse(LdapName.java:772)
> >        at javax.naming.ldap.LdapName.<init>(LdapName.java:108)
> >        at
> >
org.codehaus.plexus.redback.common.ldap.connection.LdapConnectionConfi
> > gu
> > ration.setBindDn(LdapConnectionConfiguration.java:219)
> >        at
> >
org.codehaus.plexus.redback.common.ldap.connection.ConfigurableLdapCon
> > ne
> > ctionFactory.initialize(ConfigurableLdapConnectionFactory.java:105)
> >        ... 140 more
> > </snip>
> >
> > Has anybody experiences configuring Continuum to authenticate
against 
> > an AD?
> >
> > Thanks
> > Patric

Mime
View raw message