Hey gang, so this is the original file I was using to get us hooked in via
LDAPS for the webpage.
Note - it has OU's instead of CN's,

Anyway, I'm still at a loss.

What do you folks think?


  <jaas:config name="karaf" rank="1">
    <jaas:module
className="org.apache.karaf.jaas.modules.ldap.LDAPLoginModule"
                 flags="required">
      initialContextFactory=com.sun.jndi.ldap.LdapCtxFactory
      connection.username=cn=Directory Manager
      connection.password=password
      connection.url=ldaps://aba-ldap.aba.house.com:636
      user.base.dn=ou=ApplicationUsers,ou=People,dc=aba,dc=house,dc=com
      user.filter=(uid=%u)
      user.search.subtree=true
      role.base.dn=ou=JBoss,ou=Roles,dc=aba,dc=house,dc=com
      role.name.attribute=cn
      role.filter=
(member=uid=%u,ou=ApplicationUsers,ou=People,dc=aba,dc=house,dc=com)
      role.search.subtree=true
      role.mapping=admin=group,admin,manager,viewer,webconsole
      authentication=simple
      ssl.protocol=SSL
      ssl.truststore=truststore
      ssl.algorithm=PKIX
    </jaas:module>
  </jaas:config>

  <jaas:keystore name="truststore"
        path="file:${javax.net.ssl.trustStore}"
        keystorePassword="${javax.net.ssl.trustStorePassword}" />

</blueprint>



Michael Sean Conley
-- 
Manage your subscription for the Freeipa-users mailing list:
https://www.redhat.com/mailman/listinfo/freeipa-users
Go to http://freeipa.org for more info on the project

Reply via email to