That's the deal The users in my ldap server are as the folowing
| CN=Lucas Alves Machado - Company | objectclass=dominioPerson | uid=lucasa | And the roles are | CN=RoleName | objectclass=dominioGroup | member=Lucas Alves Machado - Company | member=Foo of Bar - Company | I am authenticating using username = lucasa, password=**** The autentication goes fine but i need to search for roles using the CN atribute of the user object. I found at the documentation a way to change the "context" of the roles but not the "atribute name" the LDAP query to match my group would be as | (&(objectclass=dominioGroup)(member=Lucas Alves Machado - Company)) | The problem is that i authenticate using lucasa and not "Lucas Alves Machado - Company" Actualy my login-config.xml has the folowing | <application-policy name="jndiTest"> | <authentication> | <login-module code="org.jboss.security.auth.spi.LdapLoginModule" flag="required"> | <module-option name="java.naming.factory.initial">com.sun.jndi.ldap.LdapCtxFactory</module-option> | <module-option name="java.naming.provider.url">ldap://10.XX.XX.XX:389/</module-option> | <module-option name="java.naming.security.authentication">simple</module-option> | <module-option name="principalDNPrefix"></module-option> | <module-option name="principalDNSuffix"></module-option> | | <module-option name="rolesCtxDN">objectclass=dominoGroup</module-option> | <module-option name="roleAttributeID">CN</module-option> | <module-option name="uidAttributeID">member</module-option> | <module-option name="matchOnUserDN">false</module-option> | </login-module> | </authentication> | </application-policy> | and the log is as folowing 2004-07-09 10:22:34,263 DEBUG [org.jboss.security.plugins.JaasSecurityManagerService] Created [EMAIL PROTECTED] | 2004-07-09 10:22:34,264 DEBUG [org.jboss.security.plugins.JaasSecurityManager.jndiTest] CachePolicy set to: [EMAIL PROTECTED] | 2004-07-09 10:22:34,264 DEBUG [org.jboss.security.plugins.JaasSecurityManagerService] setCachePolicy, [EMAIL PROTECTED] | 2004-07-09 10:22:34,264 DEBUG [org.jboss.security.plugins.JaasSecurityManagerService] Added jndiTest, [EMAIL PROTECTED] to map | Regards, Lucas Machado View the original post : http://www.jboss.org/index.html?module=bb&op=viewtopic&p=3844550#3844550 Reply to the post : http://www.jboss.org/index.html?module=bb&op=posting&mode=reply&p=3844550 ------------------------------------------------------- This SF.Net email is sponsored by OSTG. Have you noticed the changes on Linux.com, ITManagersJournal and NewsForge in the past few weeks? Now, one more big change to announce. We are now OSTG- Open Source Technology Group. Come see the changes on the new OSTG site. www.ostg.com _______________________________________________ JBoss-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/jboss-user
