Hi Zaya,
Take a look at:
-
http://wiki.dspace.org/index.php/LDAP_Hierarchical_Authentication_with_Active_Directory
I think you might need to change your 'ldap.search.user' to be the full DN of
your user who has bind and search permissions across your LDAP tree.
So it will need to be something like:
- ldap.search.user = cn=binduser,dc=brom,dc=com
You can try using an interactive LDAP browser to check that the user and
password you are using (and the email address vs. DN) can connect OK.
Thanks,
Stuart Lewis
IT Innovations Analyst and Developer
Te Tumu Herenga The University of Auckland Library
Auckland Mail Centre, Private Bag 92019, Auckland 1142, New Zealand
Ph: 64 9 373-7599 x81928
http://www.library.auckland.ac.nz/
On 27/11/2009, at 2:15 AM, Zaya Kh wrote:
> Hello all,
> I have problem, i'm using dspace 1.5.2, jspui, about our organization 1500
> people, So I think using Active Directory, My configuration file :
>
> Stackable Authentication Methods #
>
> # Stack of authentication methods
> # (See org.dspace.authenticate.AuthenticationManager)
> # Example:
> # plugin.sequence.org.dspace.authenticate.AuthenticationMethod = \
> # org.dspace.authenticate.ShibAuthentication, \
> # org.dspace.authenticate.PasswordAuthentication
>
> # Next two lines added by Clive Gould on 22/04/09 to allow AD Authentication
>
> plugin.sequence.org.dspace.authenticate.AuthenticationMethod = \
> org.dspace.authenticate.LDAPHierarchicalAuthentication
>
> LDAP Authentication Configuration Settings
>
> ldap.enable = true
> ldap.provider_url = ldap://brom.com:389/
> ldap.id_field = cn
> ldap.object_context = dc=brom, dc=com
> ldap.search_context = dc=brom,dc=com
> ldap.email_field = mail
> ldap.surname_field = sn
> ldap.givenname_field = givenName
> webui.ldap.autoregister = true
> ldap.login.specialgroup = Authenticated
> ldap.search_scope = 2
> ldap.search.user = bindu...@brom.com
> ldap.search.password = *
>
>
> dspace.log
> 2009-11-26 20:35:24,630 INFO
> org.dspace.authenticate.LDAPHierarchicalAuthentication @
> anonymous:session_id=DB5F46EA3805E99C3B5F59D4ECCCAAFA:ip_addr=10.31.2.37:auth:attempting
> trivial auth of user=xx...@xx.xx.xx.xx
> 2009-11-26 20:35:24,675 INFO
> org.dspace.authenticate.LDAPHierarchicalAuthentication @
> anonymous:session_id=DB5F46EA3805E99C3B5F59D4ECCCAAFA:ip_addr=10.31.2.37:failed_login:no
> DN found for user x...@xx.xx.xx.xx
> 2009-11-26 20:35:24,675 INFO org.dspace.app.webui.servlet.LDAPServlet @
> anonymous:session_id=DB5F46EA3805E99C3B5F59D4ECCCAAFA:ip_addr=10.31.2.37:failed_login:netid=xx...@xx.xx.xx.xx,
> result=2
>
>
> What can I do? Help me.
>
> Regards, Zoloo
> --
> Let Crystal Reports handle the reporting - Free Crystal Reports 2008 30-Day
> trial. Simplify your report design, integration and deployment - and focus on
> what you do best, core application coding. Discover what's new with
> Crystal Reports now.
> http://p.sf.net/sfu/bobj-july___
> DSpace-tech mailing list
> DSpace-tech@lists.sourceforge.net
> https://lists.sourceforge.net/lists/listinfo/dspace-tech
--
Let Crystal Reports handle the reporting - Free Crystal Reports 2008 30-Day
trial. Simplify your report design, integration and deployment - and focus on
what you do best, core application coding. Discover what's new with
Crystal Reports now. http://p.sf.net/sfu/bobj-july
___
DSpace-tech mailing list
DSpace-tech@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/dspace-tech
