1 Apr
2010
1 Apr
'10
5:46 a.m.
Hello folks,
I need some help with a topic that has been discussed very often on the
mailing list - LDAP.
I've tried going through most of the posts on the mailing list but since I
am not a networking guy, I've had lot of trouble understanding the basic
terminology involved with LDAP & AD.
The AD that we've on production environment is available only through SSL
which I know will be a bigger challenge to configure with XWiki. Hence, to
start with, I would like to connect my XWiki with the MS Active Directory I
setup on my test machine.
With some help, I managed to create a Active Directory. Also, I am able to
connect to this AD using Apache Directory Browser. So this confirms that the
AD is working fine.
Both the AD and XWiki are installed on the same machine.
Now, I tried changing the xwiki.cfg LDAP properties but I am unable to login
using any of the users I created in AD. Moreover, I lost my default Admin
credentials for the Wiki (UN:Admin & PW:admin doesn't work anymore).
The configuration is as follows:
xwiki.authentication.ldap=1
xwiki.authentication.ldap.server=127.0.0.1
xwiki.authentication.ldap.port=389
xwiki.authentication.ldap.base_DN=dc=dilip,dc=com
xwiki.authentication.ldap.bind_DN=cn={0},dc=dilip,dc=com
xwiki.authentication.ldap.bind_pass={1}
xwiki.authentication.ldap.UID_attr=cn
xwiki.authentication.ldap.fields_mapping=name=cn,last_name=sn,first_name=giv
enName,fullname=displayName,mail=cn,ldap_dn=dn
And the AD structure can be loosely described as follows:
dilip.com
-----Builtin
-----Computers
-----Domain Controllers
-----ForeignSecurityPrincipals
-----Users
All my users are listed under the "Users" node including Windows
administrator called "Administrator" with password "redhat".
Does the {0} need to be replaced with an actual username & {1} replaced with
actual password. Could someone please have a look at my configuration
settings & probably suggest some changes. I am sure I've missed something
somewhere.
Thank you for your valuable time.