[xwiki-users] Convert existing xwiki instance to Active Directory authentication

I have an existing instance of xwiki with some users and would like to convert it to authenticate against an Active Directory server. I tried setting up a new test instance of xwiki in a VM and was able to get it to authenticate against AD. But in the test, the user directory was empty (except for Admin) - so it created a new user at login. I'd appreciate some help on the next step of configuring the system so that an existing xwiki user authenticates against an existing AD entry. I configured the test system as follows: xwiki.authentication.authclass=com.xpn.xwiki.user.impl.LDAP.XWikiLDAPAuthServiceImpl xwiki.authentication.ldap=1 xwiki.authentication.ldap.server=servername xwiki.authentication.ldap.port=389 xwiki.authentication.ldap.bind_DN=subdomain\\{0} xwiki.authentication.ldap.bind_pass={1} xwiki.authentication.ldap.base_DN=DC=subdomain,DC=domain xwiki.authentication.ldap.UID_attr=sAMAccountName xwiki.authentication.ldap.group_classes=group,groupOfNames,groupOfUniqueNames,dynamicGroup,dynamicGroupAux,groupWiseDistributionList xwiki.authentication.ldap.fields_mapping=name=sAMAccountName,last_name=sn,first_name=givenName,fullname=displayName,email=mail,ldap_dn=dn xwiki.authentication.ldap.update_user=1 xwiki.authentication.ldap.trylocal=0 Other details that may or may not be relevant: - the AD login IDs contain periods which are not allowed in the xwiki names. For the xwiki users that already exist, the login names are the same as those in AD except that the period is replaced by an underscore - there are xwiki 'users' with no corresponding entry in AD. Those xwiki entries should not be allowed to login. - the exception to the above point is the Admin user. If I add one of the users with a corresponding AD entry to the Admin group, would that user be able to do everything that the Admin user can do? A nice to have would be to also bring the AD groupings/organizational units across to xwiki. Is their an easy way to do this? -- View this message in context: http://xwiki.475771.n2.nabble.com/Convert-existing-xwiki-instance-to-Active… Sent from the XWiki- Users mailing list archive at Nabble.com.