23 Mar
2007
23 Mar
'07
2:47 p.m.
Hi,
In our LDAP structure (about 2000 employees) the users that should
have access to XWiki are in multiple department nodes in the LDAP
structure. Thus, I cannot specify a single pattern of the kind
cn={0},department=USER,department=INFORMATIK,department=1230,o=MP for
authentication.
How could I specify users from different departments to have access to
XWiki?
Can I specify multiple xwiki.authentication.ldap.bind_DN lines that are
searched for the user?
My ldap configuration (XWiki 1.0B3 against mySQL):
xwiki.authentication.ldap=1
xwiki.authentication.ldap.authclass=com.xpn.xwiki.user.impl.LDAP.LDAPAuthServiceImpl
xwiki.authentication.ldap.server=dsmaster
xwiki.authentication.ldap.check_level=1
xwiki.authentication.ldap.port=389
xwiki.authentication.ldap.base_DN=department=USER,department=INFORMATIK,department=1230,o=MP
xwiki.authentication.ldap.bind_DN=cn={0},department=USER,department=INFORMATIK,department=1230,o=MP
xwiki.authentication.ldap.bind_pass={1}
xwiki.authentication.ldap.UID_attr=uid
I would like to say that XWiki runs fine against Novell eDirectory
through the LDAP interface! (It was a little bit tricky to set up and
it
would be great if someone could write up some more detailed
documentation on it. I am unfortunately no expert in this.)
Regards,
GLeeb
-------------------------------------------------------------------------------
Diese E-Mail enthaelt vertrauliche und/oder rechtlich geschuetzte
Informationen. Wenn Sie nicht der richtige Adressat sind oder diese E-Mail
irrtuemlich erhalten haben, informieren Sie bitte sofort den Absender und
vernichten Sie diese Mail. Das unerlaubte Kopieren sowie die unbefugte
Weitergabe dieser Mail ist nicht gestattet.
The information transmitted is intended only for the person or entity to
which it is addressed and may contain confidential and/or privileged
material. Any review, retransmission, dissemination or other use of, or
taking of any action in reliance upon, this information by persons or
entities other than the intended recipient is prohibited. If you received
this in error, please contact the sender and delete the material from any
computer.
-------------------------------------------------------------------------------