jackrabbit-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Angela Schreiber <anch...@adobe.com>
Subject Re: How to configure Jackrabbit with LDAP server?
Date Thu, 27 Feb 2014 08:32:55 GMT

i never tried the com.sun.security.auth.module.LdapLoginModule
and therefore cannot tell you what kind of configuration is required
in order to get it running.

in general i would rather suggest to disable the LoginModule section
in the repository.xml and use a regular jaas.config instead. but
the configuration details i can't help you with.

once you have the authentication piece running it depends on the
rest of the security configuration whether you get the system running.
if you want to profit from the authorization shipped with jackrabbit
by default, you would also need to configure a PrincipalProvider
that can deal with the principals as they are set to the Subject
by the LDAPLoginModule.

if you don't want to rely on the authorization shipped with jackrabbit
you would need to change the overall security configuration accordingly.

hope that helps

On 25/02/14 13:40, "AshokBS" <asiddaiah@altimetrik.com> wrote:

>Hi Michael, thanks for the quick response. I have gone through those links
>and couldn't find much wrt integration.
>I have tried the below steps in repository.xml since they said it was
>working in 1.4.5 version.
>The link is: 
> <LoginModule class="com.sun.security.auth.module.LdapLoginModule">
> </LoginModule> 
>I have specified my ldap configuration details above. Is the above param
>settings sufficient?
>Also when i try to login to http://localhost:8080/repository/default/ with
>the above settings, it prompts me for username and password. But when i
>my username and pwd details, the below message is logged in the
>jackrabbit.log file.
>LdapLoginModule] searching for entry belonging to user: xyz
>LdapLoginModule] authentication failed
>LdapLoginModule] aborted authentication
>My question is, whether the above repository.xml file settings are enough
>for LDAP configuration? Am i missing somethings in addition to the above?
>Pls suggest
>View this message in context:
>Sent from the Jackrabbit - Dev mailing list archive at Nabble.com.

View raw message