Professional Documents
Culture Documents
Mounir Alfrsco
Mounir Alfrsco
(simple authentication)
2008/06/12 mryoshio
Index
Summary
Notice
2 2 3 3 3 4 4 4 4 5 5 5 7 7
Environment
Software
System
Check it works
Login Alfresco
Summary
This report shows how to setup Alfresco with OpenLDAP in using simple authentication. So you have to add some special settings when you need secure authentication.
Notice
The words like mryoshio, YAMADA are examples.They dont have special meanings. Please replace them with your domain or favorite ones.
Environment
Software
Alfresco Server
OS Alfresco OpenLDAP Mac OS X 10.4.11 2.1.0 Community Network CentOS 5.1 2.3.27
OpenLDAP Server
System
Alfresco Server OpenLDAP Server
valid user?
Alfresco
Yes/No
OpenLDAP
try login
Login OK/NG
Client
Install
- Execute following commands. $ cd ${ALF_HOME} 1 $ tar xvzf ~/Desktop/alfresco-community-tomcat-2.1.0.tar.gz
Congure
- Edit ldap-authentication-context.xml . $ cd ${ALF_HOME}/tomcat/shared/classes/alfresco/extension/ $ cp ldap-authentication-context.xml.sample ldap-authentication-context.xml $ vi ldap-authentication-context.xml ---------L.41 ~~~ L.64 ~~~ L.72 ---------<value>DIGEST-MD5</value> => <value>simple</value> <value>ldap://openldap.domain.com:389</value> => <value>ldap://<Your OpenLDAP Server 2>:389</value> <value>%s</value> => <value>cn=%s,dc=mryoshio,dc=jp</value>
1 2
${ALF_HOME} means your Alfresco install directory. Replace it with your server name or IP address. 4
Congure
- Edit /etc/openldap/slapd.conf. $ vi /etc/openldap/slapd.conf ---------sufx
---------- Create a new LDIF le on a host which have ldapXXX commands. $ vi ~/Desktop/alfSample.ldif ---------# top dn: dc=mryoshio,dc=jp objectClass: dcObject objectClass: organization o: mryoshio corporation dc: mryoshio dn: cn=Manager,dc=mryoshio,dc=jp objectClass: organizationalRole cn: Manager # member dn: cn=YAMADA Yuji,dc=mryoshio,dc=jp objectClass:inetOrgPerson sn: YAMADA cn: YAMADA Yuji userPassword: yamada
Alfresco with OpenLDAP(simple authentication)
dc=mryoshio,dc=jp
rootdn cn=Manager,dc=mryoshio,dc=jp
uid: yamayu givenName: Yuji mail: yuji.yamada@mryoshio.jp o: mryoshio corporation ---------Register entries by ldapadd command. $ ldapadd -x -h <Your OpenLDAP Server> -D cn=Manager,dc=mryoshio,dc=jp -W -f alfSample.ldif Check registered entries $ ldapsearch -h <Your OpenLDAP Server> -p 389 -x -b dc=mryoshio,dc=jp -s sub uid=*
Check it works
Login Alfresco
Access to http://<Your Alfresco Server 1>:8080/alfresco/ Input User Name: YAMADA Yuji, Password: yamada and Login. Its OK if you logged in.