Re: [Ecm] Configure directory LDAP

Tue, 22 Sep 2009 06:14:11 -0700

The code [LDAP: error code 49 - 80090308: LdapErr: DSID-0C090334, comment: AcceptSecurityContext error, data 525, vece] is an "user not found" error. Use a LDAP browser (i.e. Apache Directory Studio) to validate your configuration: with the searchBaseDn, you must be able to browse your AD, find a user and check its attributes. You can also increase org.nuxeo.ecm.directory.ldap.LDAPDirectory log level (http://doc.nuxeo.org/5.2/books/nuxeo-book/html-single/index-admin.html#admin-log-configuration) to DEBUG in order to see the requests sent by Nuxeo to your AD.
Finally, use http://hg.nuxeo.org/nuxeo/nuxeo-services/raw-file/5.2/nuxeo-platform-directory-ldap/examples/default-virtual-groups-bundle.xml to define which user will be the main administrator (you will then be able give administration rights to other people). As soon as your configuration is correct, Nuxeo will be able to browse the AD and authenticate the users against it. 


Federica Boffa a écrit :

I have my server with active directory with the ip address and I have 
config the default-ldap-users-directory-bundle.xml with "ldap://myip:3268";
then I insert in binDN my information about the user created for binDN 
"cn=username ou=myunitorganization dc=mydomain dc=com"
then I made the same configuration for searchBaseDn and creationBaseDn 
and in searchClass I insert "user"

another configuration is username=sAMAccountName which exlpain the guide.

It's all. The users that exists in my active directory are find 
automaticaly? what I do?
When I logging with a username and password in active directory this 
is the error:



2009-09-22 13:29:31,698 ERROR 
[org.nuxeo.ecm.directory.ldap.LDAPDirectory] 
javax.naming.AuthenticationException: [LDAP: error code 49 - 80090308: 
LdapErr: DSID-0C090334, comment: AcceptSecurityContext error, data 
525, vece ]
2009-09-22 13:29:31,698 ERROR 
[org.nuxeo.ecm.platform.login.NuxeoLoginModule] 
org.nuxeo.ecm.directory.DirectoryException: could not initialise LDAP 
directory context: [LDAP: error code 49 - 80090308: LdapErr: 
DSID-0C090334, comment: AcceptSecurityContext error, data 525, vece ]
org.nuxeo.ecm.directory.DirectoryException: could not initialise LDAP 
directory context: [LDAP: error code 49 - 80090308: LdapErr: 
DSID-0C090334, comment: AcceptSecurityContext error, data 525, vece ]
    at 
org.nuxeo.ecm.directory.ldap.LDAPDirectory.createContext(LDAPDirectory.java:219)
    at 
org.nuxeo.ecm.directory.ldap.LDAPDirectory.getSession(LDAPDirectory.java:255)
    at 
org.nuxeo.ecm.directory.ldap.LDAPDirectoryProxy.getSession(LDAPDirectoryProxy.java:84)
    at 
org.nuxeo.ecm.directory.DirectoryServiceImpl.open(DirectoryServiceImpl.java:168)
    at 
org.nuxeo.ecm.platform.usermanager.UserManagerImpl.checkUsernamePassword(UserManagerImpl.java:282)
    at 
org.nuxeo.ecm.platform.usermanager.ejb.UserManagerBean.checkUsernamePassword(UserManagerBean.java:73)

    at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)

    at 
sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
    at 
sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)

    at java.lang.reflect.Method.invoke(Method.java:592)

    at 
org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:112)
    at 
org.jboss.ejb3.interceptor.InvocationContextImpl.proceed(InvocationContextImpl.java:166)
    at 
org.jboss.ejb3.interceptor.EJB3InterceptorsInterceptor.invoke(EJB3InterceptorsInterceptor.java:63)
    at 
org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:101)
    at 
org.jboss.ejb3.entity.TransactionScopedEntityManagerInterceptor.invoke(TransactionScopedEntityManagerInterceptor.java:54)
    at 
org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:101)
    at 
org.jboss.ejb3.AllowedOperationsInterceptor.invoke(AllowedOperationsInterceptor.java:47)
    at 
org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:101)

    at org.jboss.aspects.tx.TxPolicy.invokeInOurTx(TxPolicy.java:79)

    at 
org.jboss.aspects.tx.TxInterceptor$Required.invoke(TxInterceptor.java:191)
    at 
org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:101)
    at 
org.jboss.aspects.tx.TxPropagationInterceptor.invoke(TxPropagationInterceptor.java:95)
    at 
org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:101)
    at 
org.jboss.ejb3.stateless.StatelessInstanceInterceptor.invoke(StatelessInstanceInterceptor.java:62)
    at 
org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:101)
    at 
org.jboss.aspects.security.AuthenticationInterceptor.invoke(AuthenticationInterceptor.java:77)
    at 
org.jboss.ejb3.security.Ejb3AuthenticationInterceptor.invoke(Ejb3AuthenticationInterceptor.java:110)
    at 
org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:101)
    at 
org.jboss.ejb3.ENCPropagationInterceptor.invoke(ENCPropagationInterceptor.java:46)
    at 
org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:101)
    at 
org.jboss.ejb3.asynchronous.AsynchronousInterceptor.invoke(AsynchronousInterceptor.java:106)
    at 
org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:101)
    at 
org.jboss.ejb3.stateless.StatelessContainer.localInvoke(StatelessContainer.java:240)
    at 
org.jboss.ejb3.stateless.StatelessContainer.localInvoke(StatelessContainer.java:210)
    at 
org.jboss.ejb3.stateless.StatelessLocalProxy.invoke(StatelessLocalProxy.java:84)

    at $Proxy149.checkUsernamePassword(Unknown Source)

    at 
org.nuxeo.ecm.platform.login.NuxeoLoginModule.validateUserIdentity(NuxeoLoginModule.java:317)
    at 
org.nuxeo.ecm.platform.login.NuxeoLoginModule.getPrincipal(NuxeoLoginModule.java:210)
    at 
org.nuxeo.ecm.platform.login.NuxeoLoginModule.login(NuxeoLoginModule.java:263)

    at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)

    at 
sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
    at 
sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)

    at java.lang.reflect.Method.invoke(Method.java:592)

    at 
javax.security.auth.login.LoginContext.invoke(LoginContext.java:769)
    at 
javax.security.auth.login.LoginContext.access$000(LoginContext.java:186)

    at javax.security.auth.login.LoginContext$4.run(LoginContext.java:683)
    at java.security.AccessController.doPrivileged(Native Method)

    at 
javax.security.auth.login.LoginContext.invokePriv(LoginContext.java:680)

    at javax.security.auth.login.LoginContext.login(LoginContext.java:579)

    at 
org.nuxeo.ecm.platform.ui.web.auth.NuxeoAuthenticationFilter.doAuthenticate(NuxeoAuthenticationFilter.java:209)
    at 
org.nuxeo.ecm.platform.ui.web.auth.NuxeoAuthenticationFilter.doFilter(NuxeoAuthenticationFilter.java:394)
    at 
org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
    at 
org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
    at 
org.nuxeo.ecm.platform.web.common.requestcontroller.filter.NuxeoRequestControllerFilter.doFilter(NuxeoRequestControllerFilter.java:133)
    at 
org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
    at 
org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
    at 
org.nuxeo.ecm.platform.web.common.exceptionhandling.NuxeoExceptionFilter.doFilter(NuxeoExceptionFilter.java:77)
    at 
org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
    at 
org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
    at 
org.jboss.web.tomcat.filters.ReplyHeaderFilter.doFilter(ReplyHeaderFilter.java:96)
    at 
org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
    at 
org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
    at 
org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:230)
    at 
org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:175)
    at 
org.jboss.web.tomcat.security.SecurityAssociationValve.invoke(SecurityAssociationValve.java:182)
    at 
org.jboss.web.tomcat.security.JaccContextValve.invoke(JaccContextValve.java:84)
    at 
org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127)
    at 
org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:102)
    at 
org.jboss.web.tomcat.service.jca.CachedConnectionValve.invoke(CachedConnectionValve.java:157)
    at 
org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:109)
    at 
org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:262)
    at 
org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:844)
    at 
org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandler.process(Http11Protocol.java:583)
    at 
org.apache.tomcat.util.net.JIoEndpoint$Worker.run(JIoEndpoint.java:446)

    at java.lang.Thread.run(Thread.java:595)

Caused by: org.nuxeo.ecm.core.api.WrappedException: Exception: 
javax.naming.AuthenticationException. message: [LDAP: error code 49 - 
80090308: LdapErr: DSID-0C090334, comment: AcceptSecurityContext 
error, data 525, vece ]

    at com.sun.jndi.ldap.LdapCtx.mapErrorCode(LdapCtx.java:3017)
    at com.sun.jndi.ldap.LdapCtx.processReturnCode(LdapCtx.java:2963)
    at com.sun.jndi.ldap.LdapCtx.processReturnCode(LdapCtx.java:2764)
    at com.sun.jndi.ldap.LdapCtx.connect(LdapCtx.java:2678)
    at com.sun.jndi.ldap.LdapCtx.<init>(LdapCtx.java:289)

    at 
com.sun.jndi.ldap.LdapCtxFactory.getUsingURL(LdapCtxFactory.java:175)
    at 
com.sun.jndi.ldap.LdapCtxFactory.getUsingURLs(LdapCtxFactory.java:193)
    at 
com.sun.jndi.ldap.LdapCtxFactory.getLdapCtxInstance(LdapCtxFactory.java:136)
    at 
com.sun.jndi.ldap.LdapCtxFactory.getInitialContext(LdapCtxFactory.java:66)
    at 
javax.naming.spi.NamingManager.getInitialContext(NamingManager.java:667)
    at 
javax.naming.InitialContext.getDefaultInitCtx(InitialContext.java:247)

    at javax.naming.InitialContext.init(InitialContext.java:223)
    at javax.naming.InitialContext.<init>(InitialContext.java:197)

    at 
javax.naming.directory.InitialDirContext.<init>(InitialDirContext.java:82)
    at 
org.nuxeo.ecm.directory.ldap.LDAPDirectory.createContext(LDAPDirectory.java:216)

    ... 74 more

2009-09-22 13:30:00,026 INFO  
[org.nuxeo.ecm.platform.scheduler.core.EventJob] Sending scheduled 
event id=MailReceivedEvent, category=default
2009-09-22 13:31:08,353 ERROR 
[org.nuxeo.ecm.directory.ldap.LDAPDirectory] 
javax.naming.AuthenticationException: [LDAP: error code 49 - 80090308: 
LdapErr: DSID-0C090334, comment: AcceptSecurityContext error, data 
525, vece ]
2009-09-22 13:31:08,353 ERROR 
[org.nuxeo.ecm.platform.login.NuxeoLoginModule] 
org.nuxeo.ecm.directory.DirectoryException: could not initialise LDAP 
directory context: [LDAP: error code 49 - 80090308: LdapErr: 
DSID-0C090334, comment: AcceptSecurityContext error, data 525, vece ]
org.nuxeo.ecm.directory.DirectoryException: could not initialise LDAP 
directory context: [LDAP: error code 49 - 80090308: LdapErr: 
DSID-0C090334, comment: AcceptSecurityContext error, data 525, vece ]
    at 
org.nuxeo.ecm.directory.ldap.LDAPDirectory.createContext(LDAPDirectory.java:219)
    at 
org.nuxeo.ecm.directory.ldap.LDAPDirectory.getSession(LDAPDirectory.java:255)
    at 
org.nuxeo.ecm.directory.ldap.LDAPDirectoryProxy.getSession(LDAPDirectoryProxy.java:84)
    at 
org.nuxeo.ecm.directory.DirectoryServiceImpl.open(DirectoryServiceImpl.java:168)
    at 
org.nuxeo.ecm.platform.usermanager.UserManagerImpl.checkUsernamePassword(UserManagerImpl.java:282)
    at 
org.nuxeo.ecm.platform.usermanager.ejb.UserManagerBean.checkUsernamePassword(UserManagerBean.java:73)

    at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)

    at 
sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
    at 
sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)

    at java.lang.reflect.Method.invoke(Method.java:592)

    at 
org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:112)
    at 
org.jboss.ejb3.interceptor.InvocationContextImpl.proceed(InvocationContextImpl.java:166)
    at 
org.jboss.ejb3.interceptor.EJB3InterceptorsInterceptor.invoke(EJB3InterceptorsInterceptor.java:63)
    at 
org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:101)
    at 
org.jboss.ejb3.entity.TransactionScopedEntityManagerInterceptor.invoke(TransactionScopedEntityManagerInterceptor.java:54)
    at 
org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:101)
    at 
org.jboss.ejb3.AllowedOperationsInterceptor.invoke(AllowedOperationsInterceptor.java:47)
    at 
org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:101)

    at org.jboss.aspects.tx.TxPolicy.invokeInOurTx(TxPolicy.java:79)

    at 
org.jboss.aspects.tx.TxInterceptor$Required.invoke(TxInterceptor.java:191)
    at 
org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:101)
    at 
org.jboss.aspects.tx.TxPropagationInterceptor.invoke(TxPropagationInterceptor.java:95)
    at 
org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:101)
    at 
org.jboss.ejb3.stateless.StatelessInstanceInterceptor.invoke(StatelessInstanceInterceptor.java:62)
    at 
org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:101)
    at 
org.jboss.aspects.security.AuthenticationInterceptor.invoke(AuthenticationInterceptor.java:77)
    at 
org.jboss.ejb3.security.Ejb3AuthenticationInterceptor.invoke(Ejb3AuthenticationInterceptor.java:110)
    at 
org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:101)
    at 
org.jboss.ejb3.ENCPropagationInterceptor.invoke(ENCPropagationInterceptor.java:46)
    at 
org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:101)
    at 
org.jboss.ejb3.asynchronous.AsynchronousInterceptor.invoke(AsynchronousInterceptor.java:106)
    at 
org.jboss.aop.joinpoint.MethodInvocation.invokeNext(MethodInvocation.java:101)
    at 
org.jboss.ejb3.stateless.StatelessContainer.localInvoke(StatelessContainer.java:240)
    at 
org.jboss.ejb3.stateless.StatelessContainer.localInvoke(StatelessContainer.java:210)
    at 
org.jboss.ejb3.stateless.StatelessLocalProxy.invoke(StatelessLocalProxy.java:84)

    at $Proxy149.checkUsernamePassword(Unknown Source)

    at 
org.nuxeo.ecm.platform.login.NuxeoLoginModule.validateUserIdentity(NuxeoLoginModule.java:317)
    at 
org.nuxeo.ecm.platform.login.NuxeoLoginModule.getPrincipal(NuxeoLoginModule.java:210)
    at 
org.nuxeo.ecm.platform.login.NuxeoLoginModule.login(NuxeoLoginModule.java:263)

    at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)

    at 
sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
    at 
sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)

    at java.lang.reflect.Method.invoke(Method.java:592)

    at 
javax.security.auth.login.LoginContext.invoke(LoginContext.java:769)
    at 
javax.security.auth.login.LoginContext.access$000(LoginContext.java:186)

    at javax.security.auth.login.LoginContext$4.run(LoginContext.java:683)
    at java.security.AccessController.doPrivileged(Native Method)

    at 
javax.security.auth.login.LoginContext.invokePriv(LoginContext.java:680)

    at javax.security.auth.login.LoginContext.login(LoginContext.java:579)

    at 
org.nuxeo.ecm.platform.ui.web.auth.NuxeoAuthenticationFilter.doAuthenticate(NuxeoAuthenticationFilter.java:209)
    at 
org.nuxeo.ecm.platform.ui.web.auth.NuxeoAuthenticationFilter.doFilter(NuxeoAuthenticationFilter.java:394)
    at 
org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
    at 
org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
    at 
org.nuxeo.ecm.platform.web.common.requestcontroller.filter.NuxeoRequestControllerFilter.doFilter(NuxeoRequestControllerFilter.java:133)
    at 
org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
    at 
org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
    at 
org.nuxeo.ecm.platform.web.common.exceptionhandling.NuxeoExceptionFilter.doFilter(NuxeoExceptionFilter.java:77)
    at 
org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
    at 
org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
    at 
org.jboss.web.tomcat.filters.ReplyHeaderFilter.doFilter(ReplyHeaderFilter.java:96)
    at 
org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
    at 
org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
    at 
org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:230)
    at 
org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:175)
    at 
org.jboss.web.tomcat.security.SecurityAssociationValve.invoke(SecurityAssociationValve.java:182)
    at 
org.jboss.web.tomcat.security.JaccContextValve.invoke(JaccContextValve.java:84)
    at 
org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127)
    at 
org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:102)
    at 
org.jboss.web.tomcat.service.jca.CachedConnectionValve.invoke(CachedConnectionValve.java:157)
    at 
org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:109)
    at 
org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:262)
    at 
org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:844)
    at 
org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandler.process(Http11Protocol.java:583)
    at 
org.apache.tomcat.util.net.JIoEndpoint$Worker.run(JIoEndpoint.java:446)

    at java.lang.Thread.run(Thread.java:595)

Caused by: org.nuxeo.ecm.core.api.WrappedException: Exception: 
javax.naming.AuthenticationException. message: [LDAP: error code 49 - 
80090308: LdapErr: DSID-0C090334, comment: AcceptSecurityContext 
error, data 525, vece ]

    at com.sun.jndi.ldap.LdapCtx.mapErrorCode(LdapCtx.java:3017)
    at com.sun.jndi.ldap.LdapCtx.processReturnCode(LdapCtx.java:2963)
    at com.sun.jndi.ldap.LdapCtx.processReturnCode(LdapCtx.java:2764)
    at com.sun.jndi.ldap.LdapCtx.connect(LdapCtx.java:2678)
    at com.sun.jndi.ldap.LdapCtx.<init>(LdapCtx.java:289)

    at 
com.sun.jndi.ldap.LdapCtxFactory.getUsingURL(LdapCtxFactory.java:175)
    at 
com.sun.jndi.ldap.LdapCtxFactory.getUsingURLs(LdapCtxFactory.java:193)
    at 
com.sun.jndi.ldap.LdapCtxFactory.getLdapCtxInstance(LdapCtxFactory.java:136)
    at 
com.sun.jndi.ldap.LdapCtxFactory.getInitialContext(LdapCtxFactory.java:66)
    at 
javax.naming.spi.NamingManager.getInitialContext(NamingManager.java:667)
    at 
javax.naming.InitialContext.getDefaultInitCtx(InitialContext.java:247)

    at javax.naming.InitialContext.init(InitialContext.java:223)
    at javax.naming.InitialContext.<init>(InitialContext.java:197)

    at 
javax.naming.directory.InitialDirContext.<init>(InitialDirContext.java:82)
    at 
org.nuxeo.ecm.directory.ldap.LDAPDirectory.createContext(LDAPDirectory.java:216)

    ... 74 more


> Date: Tue, 22 Sep 2009 12:15:58 +0200
> From: [email protected]
> To: [email protected]
> CC: [email protected]
> Subject: Re: [Ecm] Configure directory LDAP
>
> Hello,
>
> Please have a look at http://doc.nuxeo.org/xwiki/bin/view/FAQ/LDAPSetup
>

> You should go step by step : firstly configure the users, then the 
groups.

> Look at the server log file when you try to connect with an AD user and
> tell us the errors you see.
>
> Regards,
> Julien
>
>
> Federica Boffa a écrit :
> > Hi everybody, how are you?
> > I'm fine but I have a problem with nuxeo..
> > I want to config nuxeo with ldap in active directory.
> > I have created the user bindDn and now I configure the file
> > default-ldap-users-directory-bundle.xml and
> > default-ldap-groups-directory-bundle.xml
> > but I have an error on directory ldap, I can't configure this part:
> > what I do to inser in Directory name and in the other field? Thank you
> >
> > <extension target="org.nuxeo.ecm.directory.ldap.LDAPDirectoryFactory"
> > point="directories">
> >
> > * <directory name="userDirectory">
> > <server>default</server>
> > <schema>user</schema>
> > <idField>username</idField>
> > <passwordField>password</passwordField>*
> >
> > <searchBaseDn>ou=****,dc=****,dc=****</searchBaseDn>
> > * <searchClass>users</searchClass>
> > *
> > <!-- To additionally restricte entries you can add an
> > arbitrary search filter such as the following:
> >

> > 
<searchFilter>(&amp;(sn=toto*)(myCustomAttribute=somevalue))</searchFilter>

> > Beware that "&" writes "&amp;" in XML.
> > -->
> >
> > <!-- use subtree if the people branch is nested -->
> > *<searchScope>onelevel</searchScope>*
> >
> > <!-- using 'subany', search will match *toto*. use 'subfinal' to
> > match *toto and 'subinitial' to match toto*. subinitial is the
> > default behaviour-->
> > * <substringMatchType>subany</substringMatchType>
> >
> > <readOnly>false</readOnly>*
> >
> > <!-- comment <cache* /> tags to disable the cache -->
> > <!-- cache timeout in seconds -->
> > * <cacheTimeout>3600</cacheTimeout>*
> >
> > <!-- maximum number of cached entries before global invalidation -->
> > *<cacheMaxSize>1000</cacheMaxSize>
> >
> > <creationBaseDn>ou=*****,dc=*****,dc=*****</creationBaseDn>
> > <creationClass>top</creationClass>
> > <creationClass>users</creationClass>
> > <creationClass>organizationalPerson</creationClass>
> > <creationClass>inetOrgPerson</creationClass>
> >
> > <rdnAttribute>uid</rdnAttribute>
> > <fieldMapping name="username">uid</fieldMapping>
> > <fieldMapping name="password">userPassword</fieldMapping>
> > <fieldMapping name="firstName">givenName</fieldMapping>
> > <fieldMapping name="lastName">sn</fieldMapping>
> > <fieldMapping name="company">o</fieldMapping>
> > <fieldMapping name="email">mail</fieldMapping>
> >
> > <references>
> >
> > <inverseReference field="groups" directory="groupDirectory"
> > dualReferenceField="members" />
> >
> > </references>*
> >
> > </directory>
> >
> > </extension>
> >
> > </component>
> >
> >

> > 
------------------------------------------------------------------------

> > Doretta Doretta ti "cerca"! Vieni a trovarla sul suo Spaces!
> > <http://doretta82live.spaces.live.com/>

> > 
------------------------------------------------------------------------

> >
> > _______________________________________________
> > ECM mailing list
> > [email protected]
> > http://lists.nuxeo.com/mailman/listinfo/ecm
> > To unsubscribe, go to http://lists.nuxeo.com/mailman/options/ecm
> >
>
> --
> Julien Carsique, Nuxeo (Paris, France)
> www.nuxeo.com - The Open Source ECM Platform - www.nuxeo.org
> Nuxeo ECM Stack - The Java EE, scalable, standard-based ECM Platform
> [email protected] | Tel: +33 1 40 33 79 87
>
>

------------------------------------------------------------------------

Doretta Doretta ti "cerca"! Vieni a trovarla sul suo Spaces! 
<http://doretta82live.spaces.live.com/>


--
Julien Carsique, Nuxeo (Paris, France)
www.nuxeo.com - The Open Source ECM Platform - www.nuxeo.org
Nuxeo ECM Stack - The Java EE, scalable, standard-based ECM Platform
[email protected] | Tel: +33 1 40 33 79 87


_______________________________________________
ECM mailing list
[email protected]
http://lists.nuxeo.com/mailman/listinfo/ecm
To unsubscribe, go to http://lists.nuxeo.com/mailman/options/ecm






















					Reply via email to