SV: [xwiki-users] Active Directory Authentication

[Karin Wiklund]

-----Ursprungligt meddelande-----
Från: Joseph P. McEttrick [mailto:jpmcettrick at suffolk.edu]
Skickat: den 22 juni 2007 19:29
Till: xwiki-users at objectweb.org
Ämne: [xwiki-users] Active Directory Authentication


Hi All,

Does anyone sucessfully authenticate with Active Directory using xwiki 1.0?

On my newly installed XWiki, I'm trying to authenticate against active directory. I installed the xwiki 1.0 war on tomcat 6, using mysql 5 as the database.

Using the default forms authentication method works fine, when I try to enable using the AD via the LDAP authentication, it doesn't work; I always get messages in the xwiki.log saying that  "LDAP Bind failed with Exception Invalid Credentials".

I am able to connect to the AD using ldap function in Coldfusion, so it should be possible.

Also, I'm using the following log4j.properties file located in WEB-INF/lib:


I had some problems getting authentication using Active Directory to work too. I don't know if it will help but here's what I did:

- I removed the ...authclass=com.xpn... line all together.
- used the server name, not the IP (tried that for a while at first)
- ...base_DN=ou=Users... using numbers did not work
- ...bind_DN... and ...bind_pass... didn't work with numbers either, they've got their values right there

xwiki.authentication.ldap=1
xwiki.authentication.ldap.authclass=com.xpn.xwiki.user.impl.LDAP.LDAPAuthServiceImpl
xwiki.authentication.ldap.server=adserver
xwiki.authentication.ldap.check_level=1
xwiki.authentication.ldap.port=389
xwiki.authentication.ldap.base_DN=dc=dc1,dc=dc2,dc=dc3
xwiki.authentication.ldap.bind_DN=dc1{0}
xwiki.authentication.ldap.bind_pass={1}
xwiki.authentication.ldap.UID_attr=sAMAccountName
xwiki.authentication.ldap.fields_mapping=name=sAMAccountName,last_name=sn,first_name=givenName,fullname=displayName,mail=mail,ldap_dn=dn

good luck!
//Karin