Hi cnguyen8 / Jerome, Thank you so much for the information about how to use LDAP security integration! This feature has been asked a lot, but we haven't provided a good documentation yet. So, would you please share your experiences in the following wiki page if you find some time? - http://wiki.apache.org/portals/Jetspeed2/LDAP-howto I've just created that empty page, and you will be able to edit the page if you create an Apache wiki account there. Any information from your side will be very helpful to the community.
Cheers, Woonsan >________________________________ > From: "jerome.dup...@bnf.fr" <jerome.dup...@bnf.fr> >To: jetspeed-user@portals.apache.org >Sent: Monday, March 5, 2012 3:06 AM >Subject: RE Jetspeed-2.2.2 work with LDAP Apache DS 1.5 up to 2.0 Successful > >Congratulations!! > >Just a memo to say that you can configure in jetspeed.properties, the role >you want to assign to your users when you create them. > >(If the role doesn't exists, the creation will failed, I think) > >This is an example. >#------------------------------------------------------------------------- ># R E G I S T R A T I O N >#------------------------------------------------------------------------- ># Registration default roles assigned during registration or new user >creation ># comma separated list >registration.roles.default = user, admin > ># Registration default groups assigned during registration or new user >creation ># comma separated list >registration.groups.default = ># Registration default profiling rules assigned during registration or new >user creation ># comma separated list >registration.rules.default = j2 > > >|-----------> >| | >| | >| | >| | >| | >|-----------> > >>--------------------------------------------------------------------------------------------------------------------------------------------| > | > | > | > | > | Message de : cnguyen8 <cnguy...@hotmail.com> > | > | 05/03/2012 08:06 > | > | > | > | > | > | > | > | > | > | > | > | Veuillez répondre à "Jetspeed Users List" ><jetspeed-user@portals.apache.org> | > | > | > | > | > | > | > | > | > | > | > | > | > | > | > | > Pour| > | jetspeed-user@portals.apache.org > | > | > Copie| > | > | > | > Objet| > | Jetspeed-2.2.2 work with LDAP Apache DS 1.5 up to 2.0 >Successful | > | > | > >>--------------------------------------------------------------------------------------------------------------------------------------------| > > > > > >Hi All, > >So after couples day playing around with Jetspeed 2.2.2 and LDAP Apaches DS >1.5.5. >I was able to get it working with LDAP ApacheDS 1.5.5 - 2.0 >Just want to share with everyone in case someone trying to do the same >thing. > >Setup: > >Jetspeed-2.2.2 (Demo or Minimal) either one. >Apache Directory Studio 2.0 (this allow you to have apacheDS 1.5.3 up to >2.0) which is good for different test setup. > >To configure Jetspeed-2.2.2 to work with LDAP - >open spring-filter-key.properties (webapps/jetspeed/WEB-INF/conf) and >change: >spring.filter.key=portal to spring.filter.key=portal.ldap. (this will make >jetspeed connect to LDAP). > >To verify the connection between jetspeed and LDAP: >open jetspeed.properties in (webapps/jetspeed/WEB-INF/conf) - >Default connection for jetspeed to LDAP is should be the same as already >configured in this section. >Make sure you understand what is here. >LDAP require: (1 organism, 3 organization unit) >o=sevenSeas (change this if you want to name something else, make sure it >is >same when configured in LDAP). >ou=Users >ou=Roles >ou=Group > >Good. You are now done with setup jetspeed-2.2.2 to connect to LDAP >ApacheDS. > >Install Apache Directory Studio. (Play around with this to get to know the >user interface) >Once you know. > >Create any LDAP server - prefer 1.5.5+. >right click & open configuration on the newly create LDAP server. >click on partition tab -> click add. >ID: (must be same as you saw in jetspeed.properties) sevenSeas >Suffix: o=sevenSeas. (CTRL-S to save) Start up the server. > >Make connection with LDAP server using (connection Tab in Apache Directory >Studio) >hostname: localhost >port:10389 >click on next: Bind DN: uid=admin,ou=system >bindpassword: secret. (finish) >open connection. >once connection is made. >Go to LDAP Browser - > >This must be done in order to load any sevenSeas.ldif file you have >successful or create your own without loading ldif file. > >Manually - > >Right click on Root DSE - select new Entry. >create from scratch - add object class: organization - RDN = o=sevenSeas > >right click on o=sevenSeas - add object class: OrganizationUnit - RDN = >ou=Groups >Repeat and create for RDN=ou=Roles, RDN=ou=Users. > >To get you started to login into Jetspeed. >right click on ou=Users in the LDAP Browser and create new entry - >objectclass is inetOrgPerson, sn=admin, >cn=admin,uid=admin,userPassword=password; >Note: Right click on the editor page to create "new attribute" for >userPassword and uid. > >Good you are now ready to do a test run. > >Start up Jetspeed. >Login with user: admin/password > >If you login successful, you good to go. >If you have problem, make sure LDAP setup is matching with what configured >in jetspeed.properties LDAP section. > >Other thought on adding a new user. simply just create new user in jetspeed >and you will able see it display on LDAP Server when you refresh. > >This new user won't be admin. >To make this user become admin, > >Go to LDAP Browser - right click on Roles - new entry - select object >class: >extensibleObject & groupofNames. >cn=admin >member - cn=admin,ou=Roles,o=sevenSeas >member- uid=(newlycreateusername),ou=Users,o=sevenSeas > >voila, the newlycreateusername is now admin. > >Good luck. > > > > > > > > > > > > > > > >-- >View this message in context: >http://old.nabble.com/Jetspeed-2.2.2-work-with-LDAP-Apache-DS-1.5-up-to-2.0-Successful-tp33441594p33441594.html > >Sent from the Jetspeed - User mailing list archive at Nabble.com. > > >--------------------------------------------------------------------- >To unsubscribe, e-mail: jetspeed-user-unsubscr...@portals.apache.org >For additional commands, e-mail: jetspeed-user-h...@portals.apache.org > > > > >Exposition Le Théâtre de la Huchette - jusqu'au 8 avril 2012 - BnF - >François-Mitterrand Avant d'imprimer, pensez à l'environnement. >--------------------------------------------------------------------- >To unsubscribe, e-mail: jetspeed-user-unsubscr...@portals.apache.org >For additional commands, e-mail: jetspeed-user-h...@portals.apache.org > > > >
