Thanks! BTW, are there any "easy" ways (preferable ready-made recipes ) to include a NTLM filter in Lenya to receive the user id, thus passing it on to Shibboleth (for example) for verification against LDAP? A custom authenticator in other words?
Andreas Hartmann wrote: > > jazzhazze schrieb: >> Ok! >> I have to admit that I'm not so very familiar with the Eclipse debugger. >> How >> does it work? > > I have added a little how-to to the documentation: > > https://lenya.zones.apache.org/cms/docu/live/docu20/tutorials/setupide.html > > -- Andreas > >> >> >> Andreas Hartmann wrote: >>> jazzhazze schrieb: >>>> Ok! >>>> But then maybe the delegation doesn't work properly, i.e Lenya can't >>>> verify >>>> against LDAP that the password an user enter is correct. >>>> >>>> Is there any way to verify that the delegation procedures work fine? >>> Have you tried to debug the authentication? You could step through the >>> method in the Eclipse debugger, this will certainly help - at least if >>> the problem is on the client side. >>> >>> -- Andreas >>> >>> >>>> By the way, I will start another thread about Kupu, because it is very >>>> frustrating... >>>> >>>> >>>> Andreas Hartmann wrote: >>>>> jazzhazze schrieb: >>>>>> That really helped! Thank you! >>>>>> Now it works to import users from AD. The only thing is that is seems >>>>>> like >>>>>> the AD passwords aren't imported along with the users? Thus it isn't >>>>>> possible for the users to log in to Lenya using their AD passwords. >>>>> AFAIK the passwords aren't imported, but the authentication is >>>>> delegated >>>>> to the LDAP server. I don't know if this information helps you, >>>>> though. >>>>> >>>>> -- Andreas >>>>> >>>>> >>>>>> >>>>>> Richard Frovarp wrote: >>>>>>> jazzhazze wrote: >>>>>>>> I've found the HTML-source of the error page that occurs when I try >>>>>>>> to >>>>>>>> add a >>>>>>>> LDAP-user. It looks like this: >>>>>>>> >>>>>>>> stacktracejava.lang.NullPointerException >>>>>>>> at java.util.Hashtable.put(Hashtable.java:396) >>>>>>>> at org.apache.lenya.ac.ldap.LDAPUser.bind(LDAPUser.java:359) >>>>>>>> at >>>>>>>> org.apache.lenya.ac.ldap.LDAPUser.getDirectoryEntry(LDAPUser.java:434) >>>>>>>> at >>>>>>>> org.apache.lenya.ac.ldap.LDAPUser.existsUser(LDAPUser.java:146) >>>>>>>> at >>>>>>>> org.apache.lenya.cms.ac.usecases.AddUser.validate(AddUser.java:75) >>>>>>>> at >>>>>>>> org.apache.lenya.cms.ac.usecases.AddUser.doCheckExecutionConditions(AddUser.java:96) >>>>>>>> at >>>>>>>> >>>>>>> Somehow the principal being passed in is null. You probably haven't >>>>>>> set >>>>>>> the mgr-dn property in the ldap config file. >>>>>>> >>>>>>> Richard >>>>>>> >>>>>>> --------------------------------------------------------------------- >>>>>>> To unsubscribe, e-mail: [EMAIL PROTECTED] >>>>>>> For additional commands, e-mail: [EMAIL PROTECTED] >>>>>>> >>>>>>> >>>>>>> >>>>> -- >>>>> Andreas Hartmann, CTO >>>>> BeCompany GmbH >>>>> http://www.becompany.ch >>>>> Tel.: +41 (0) 43 818 57 01 >>>>> >>>>> >>>>> --------------------------------------------------------------------- >>>>> To unsubscribe, e-mail: [EMAIL PROTECTED] >>>>> For additional commands, e-mail: [EMAIL PROTECTED] >>>>> >>>>> >>>>> >>> >>> -- >>> Andreas Hartmann, CTO >>> BeCompany GmbH >>> http://www.becompany.ch >>> Tel.: +41 (0) 43 818 57 01 >>> >>> >>> --------------------------------------------------------------------- >>> To unsubscribe, e-mail: [EMAIL PROTECTED] >>> For additional commands, e-mail: [EMAIL PROTECTED] >>> >>> >>> >> > > > -- > Andreas Hartmann, CTO > BeCompany GmbH > http://www.becompany.ch > Tel.: +41 (0) 43 818 57 01 > > > --------------------------------------------------------------------- > To unsubscribe, e-mail: [EMAIL PROTECTED] > For additional commands, e-mail: [EMAIL PROTECTED] > > > :clap::clap::clap::clap: -- View this message in context: http://www.nabble.com/Support-for-Active-Directory----tp16720195p17229934.html Sent from the Lenya - Users mailing list archive at Nabble.com. --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
