Last modified by Thomas Mortagne on 2023/09/04 09:29

<
From version < 26.1 >
edited by bougie
on 2010/04/20 19:17
To version < 27.1 >
edited by bougie
on 2010/04/20 19:38
>
Change comment: Add explication to bind_dn and bind_pass for OpenDS

Summary

Details

Page properties
Content
... ... @@ -42,36 +42,27 @@
42 42  
43 43  Note that if you set it up like this the users logging will need to right to list groups members in LDAP server.
44 44  
45 -1.1 Open DIrectory Serveur (OpenDS)
45 +1.1 Open DIrectory Server (OpenDS)
46 46  
47 -Here are values of the properties you need to set if your would authorise
48 - only member of a group to login in.
47 +Here are values of the properties you need to set if your would *authorise only member of a group to login in*.
49 49  In this case, the group is cn=xwiki,ou=roles,dc=domain,dc=tld
50 50  
51 51  {code}
52 -xwiki.authentication.authclass=com.xpn.xwiki.user.impl.LDAP.XWikiLDAPAuthServiceImpl
53 -xwiki.authentication.ldap=1
54 54  xwiki.authentication.ldap.server=ldap.domain.tld
55 55  xwiki.authentication.ldap.port=389
53 +
56 56  xwiki.authentication.ldap.bind_DN=
57 57  xwiki.authentication.ldap.bind_pass=
58 -xwiki.authentication.ldap.validate_password=0
59 -xwiki.authentication.ldap.user_group=cn=xwiki,ou=roles,dc=domain,dc=tld
56 +
60 60  xwiki.authentication.ldap.base_DN=ou=people,dc=domain,dc=tld
61 61  xwiki.authentication.ldap.UID_attr=cn
62 -xwiki.authentication.ldap.password_field=userPassword
59 +
63 63  xwiki.authentication.ldap.group_classes=groupOfNames
64 64  xwiki.authentication.ldap.group_memberfields=memberUid
65 -xwiki.authentication.ldap.fields_mapping=last_name=sn,first_name=givenName,email=mail
66 -xwiki.authentication.ldap.update_user=1
67 -xwiki.authentication.ldap.groupcache_expiration=3600
68 -xwiki.authentication.ldap.mode_group_sync=always
69 -xwiki.authentication.ldap.trylocal=1
70 -
71 -
72 -
62 +xwiki.authentication.ldap.user_group=cn=xwiki,ou=roles,dc=domain,dc=tld
73 73  {code}
74 74  
65 +*bind_DN* and *bind_pass* are both empty. The connection to the LDAP server will be anonymous. With OpenDS, an anonymous connection can read some needed attributs like userPassword, home, ...
75 75  1.1 Generic
76 76  
77 77  1.1.1 I want to be able to reuse LDAP users membership in XWiki

Get Connected