Hi Stefan,you are heading into the right direction but this XML stuff is no longer supported and just not migrated :(
Have a look at the files in the auth/ folder:
handler.yaml:
adlogin:
type: Connector
label: Windows Login for RA OP
description: Anmeldung mit Windows Login als Operator
role: RA Operator
source@: connector:auth.connector.raop
connector.yaml
raop:
class: Connector::Builtin::Authentication::LDAP
LOCATION: ldap://10.12.1.1
base: ou=xxx,dc=sxxxx,dc=loc
binddn: cn=admin
password: credential
filter: "(|(userPrincipalName=[% LOGIN %])(mail=[% LOGIN %]))"
Then add the "adlogin" handler to the authentication setup in "stack.yaml".
Oliver
Am 04.01.2017 um 21:03 schrieb [email protected]:
Hi all,
i have find this example for this File "50_auth/09.t and
50_auth/auth.xml" in the build tree.
<stack name="LDAP user">
<description>
This is the external LDAP based login with a static role.
</description>
<handler>LDAP user</handler>
</stack>
<handler name="LDAP user" type="LDAP">
<description>
This is the external LDAP based login with a static role.
</description>
<host>localhost</host>
<port>389</port>
<base>o=Security,dc=openxpki,dc=org</base>
<version>3</version>
<bind_dn>cn=Manager,dc=openxpki,dc=org</bind_dn>
<bind_pw>your_big_secret</bind_pw>
<use_tls>false</use_tls>
<capath>no</capath>
<searchattr>cn</searchattr>
<searchvalueprefix>OpenXPKI User </searchvalueprefix>
<auth_meth_attr>uid</auth_meth_attr>
<default_auth_meth>bind</default_auth_meth>
<auth_meth_map>
<attr_value>X1</attr_value>
<auth_meth>pwattr</auth_meth>
</auth_meth_map>
<auth_meth_map>
<attr_value>X2</attr_value>
<auth_meth>bind</auth_meth>
</auth_meth_map>
<pw_attr>userPassword</pw_attr>
<pw_attr_hash>sha1</pw_attr_hash>
<role_attr>title</role_attr>
<role_map>
<value>manager</value>
<role>User</role>
</role_map>
<role_map>
<value>programmer</value>
<role>RA Operator</role>
</role_map>
<role_map>
<value>CEO</value>
<role>CA Operator</role>
</role_map>
</handler>
An extract from my ldap directory:
dc=de,dc=xyz,ou=openxpki, cn=User
dc=de,dc=xyz,ou=openxpki, cn=RA Operator
dc=de,dc=xyz,ou=openxpki, cn=CA Operator
Can I change the <role_attr> on the upper structure? Can you give me a tip?
Thanks for Reply
by Stefan Harbich
------------------------------------------------------------------------------
Check out the vibrant tech community on one of the world's most
engaging tech sites, SlashDot.org! http://sdm.link/slashdot
_______________________________________________
OpenXPKI-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/openxpki-users
-- Protect your environment - close windows and adopt a penguin!
smime.p7s
Description: S/MIME Cryptographic Signature
------------------------------------------------------------------------------ Check out the vibrant tech community on one of the world's most engaging tech sites, SlashDot.org! http://sdm.link/slashdot
_______________________________________________ OpenXPKI-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/openxpki-users
