Hello,
today I got the LDAP connection to work. So I can loggin with members coming
from the LDAP.
But those members are "groupless", I can loggin but I can't do anything with
them...they don't have read permission.
In my opinion there is 2 solutions :
-First solution :
We can use this bit of xml configuration that allows to give admin rights to one
member of the LDAP :
<!--
<component name="org.nuxeo.ecm.platform.usermanager.ldapVirtualGroups">
<require>org.nuxeo.ecm.platform.usermanager.UserManagerImpl</require>
<extension target="org.nuxeo.ecm.platform.usermanager.UserService"
point="userManager">
<userManager class="org.nuxeo.ecm.platform.usermanager.UserManagerImpl">
<defaultAdministratorId>johndoe</defaultAdministratorId>
<defaultGroup>members</defaultGroup>
</userManager>
</extension>
</component>
-->
...but when I uncomment this xml code the Jboss startup fails (I' m working on
Nuxeo 5.1M1)
-Second solution : implement groups directly in the LDAP and load them from the
LDAP with the default-ldap-groups-directory-bundle.xml file.
Do you have any clues on how to add groups in LDAP and how to configure well
this file?
If there is any other methods, please let me know.
I think that totally overlap SQL members by LDAP members is to strong. Is there
a mean to make them "live" together?
Thank you very much.
Damien
Selon [EMAIL PROTECTED]:
> Hello,
>
> thanks for the setup guide you gave me.
> But I have no good results.
>
> I know the LDAP is working because he is in use with another application.
>
> I have all parameters to connect to the LDAP and I think I filled the
> default-ldap-users-directory-bundle.xml well.
>
> But some tags remain unknown, for example :
> <schema> Have I to modify this one?
> <searchClass> And this one?
>
> When I reach the Nuxeo starting page the connection page only says
> "Invalid username or password"
>
> Is there a mean to know if Nuxeo 5 is well connected with the LDAP ?
>
> Thank you very much.
>
> Damien
>
>
> Selon Olivier Grisel <[EMAIL PROTECTED]>:
>
> > [EMAIL PROTECTED] a écrit :
> > >
> > > Hello,
> > >
> > > I have to say that I'm a bit lost...
> > > I would like to configure Nuxeo 5 to be connected to an existing LDAP.
> > >
> > > I think I have all needed data:
> > >
> > > -LDAP server adress & port
> > > -base & creation base
> > > -bind dn & password
> > >
> > > I configured the file
> > > default-ldap-users-directory-bundle.xml found in the resource directory
> in
> > the
> > > module org.nuxeo.ecm.directory.ldap
> > > I add this file in the OSGI-INF directory and finally I add the following
> > line
> > > OSGI-INF/default-ldap-users-directory-bundle.xml in the MANIFEST.MF file
> > found
> > > in META-INF.
> > >
> > > After this I use maven and ant to compile an redeploy Nuxeo and at the
> user
> > > connection page I cannot use Administrator connection neither LDAP users
> > > connections...I cannot connect anymore to Nuxeo 5.
> > >
> > > My deduction is :
> > > -the LDAP connection is overlapping (and destroying!?) the standard
> > connection
> > > AND I have a wrong LDAP connection configuration...
> >
> > Have you had a look at the following:
> > http://svn.nuxeo.org/trac/nuxeo/wiki/LDAPSetup ?
> >
> > --
> > Olivier
> >
> > _______________________________________________
> > ECM mailing list
> > [email protected]
> > http://lists.nuxeo.com/mailman/listinfo/ecm
> >
>
>
> _______________________________________________
> ECM mailing list
> [email protected]
> http://lists.nuxeo.com/mailman/listinfo/ecm
>
_______________________________________________
ECM mailing list
[email protected]
http://lists.nuxeo.com/mailman/listinfo/ecm
