Re: [Dspace-tech] Using LDAP in Dspace 4.0
Oscar Sánchez G., MAE Profesional en TI Biblioteca José Figueres Ferrer Instituto Tecnológico de Costa Rica I Tel: 2550-2135 Fax: 2591-4820 F Apdo Postal: 159-7050 -----Mensaje original- De: ivan.ma...@gmail.com [mailto:ivan.ma...@gmail.com] En nombre de helix84 Enviado el: martes, 25 de febrero de 2014 09:03 a.m. Para: Oscar Sanchez Gomez CC: DSpace-tech@lists.sourceforge.net Asunto: Re: [Dspace-tech] Using LDAP in Dspace 4.0 I think you need to set email_field = sAMAccountName. This is a limitation of DSpace (as described in [1] and possibly others) in that it assumes you use the email address to log in to DSpace (it doesn't have to be in email format, though). Then you may try to keep netid_email_domain = @itcr.ac.cr to see if an email address is properly formed. If not, it's possible that DSpace won't be able to send email to your users, depending on your format of sAMAccountName. [1] https://jira.duraspace.org/browse/DS-937 Regards, ~~helix84 Compulsory reading: DSpace Mailing List Etiquette https://wiki.duraspace.org/display/DSPACE/Mailing+List+Etiquette -- Flow-based real-time traffic analytics software. Cisco certified tool. Monitor traffic, SLAs, QoS, Medianet, WAAS etc. with NetFlow Analyzer Customize your own dashboards, set traffic alerts and generate reports. Network behavioral analysis & security monitoring. All-in-one tool. http://pubads.g.doubleclick.net/gampad/clk?id=126839071&iu=/4140/ostg.clktrk ___ DSpace-tech mailing list DSpace-tech@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/dspace-tech List Etiquette: https://wiki.duraspace.org/display/DSPACE/Mailing+List+Etiquette
Re: [Dspace-tech] Using LDAP in Dspace 4.0
I think you need to set email_field = sAMAccountName. This is a limitation of DSpace (as described in [1] and possibly others) in that it assumes you use the email address to log in to DSpace (it doesn't have to be in email format, though). Then you may try to keep netid_email_domain = @itcr.ac.cr to see if an email address is properly formed. If not, it's possible that DSpace won't be able to send email to your users, depending on your format of sAMAccountName. [1] https://jira.duraspace.org/browse/DS-937 Regards, ~~helix84 Compulsory reading: DSpace Mailing List Etiquette https://wiki.duraspace.org/display/DSPACE/Mailing+List+Etiquette -- Flow-based real-time traffic analytics software. Cisco certified tool. Monitor traffic, SLAs, QoS, Medianet, WAAS etc. with NetFlow Analyzer Customize your own dashboards, set traffic alerts and generate reports. Network behavioral analysis & security monitoring. All-in-one tool. http://pubads.g.doubleclick.net/gampad/clk?id=126839071&iu=/4140/ostg.clktrk ___ DSpace-tech mailing list DSpace-tech@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/dspace-tech List Etiquette: https://wiki.duraspace.org/display/DSPACE/Mailing+List+Etiquette
Re: [Dspace-tech] Using LDAP in Dspace 4.0
Hi, The values of the parameters are: For Dspace 3.2 enable = true autoregister = true provider_url = ldap://AD-Server:389/ id_field = sAMAccountName object_context = dc=itcr,dc=ac,dc=cr search_context = dc=itcr,dc=ac,dc=cr email_field = mail surname_field = sn givenname_field = givenName phone_field = telephoneNumber # Hierarchical LDAP Settings # search_scope = 2 search.user = cn=Usuario Biblioteca,ou=Usuarios-Aplicaciones,ou=CentroComputo,ou=Area Administrativa,ou=Cartago,ou=Usuario,dc=itcr,dc=ac,dc=cr search.password = password netid_email_domain = @itcr.ac.cr For Dspace 4.0 enable = true autoregister = true provider_url = ldap://AD-Server:389/ id_field = sAMAccountName object_context = dc=itcr,dc=ac,dc=cr search_context = dc=itcr,dc=ac,dc=cr email_field = mail surname_field = sn givenname_field = givenName phone_field = telephoneNumber # Hierarchical LDAP Settings # search_scope = 2 search.user = cn=Usuario Biblioteca, ou=Usuarios-Aplicaciones, ou=CentroComputo, \ ou=Area Administrativa, ou=Cartago, ou=Usuario,dc=itcr,dc=ac,dc=cr search.password=password netid_email_domain = @itcr.ac.cr As you can see, the both configuration are identical but only in Dspace 3.2 works fine. Regards, Ing. Oscar Sánchez G., MAE Profesional en TI Biblioteca José Figueres Ferrer Instituto Tecnológico de Costa Rica I Tel: 2550-2135 Fax: 2591-4820 F Apdo Postal: 159-7050 -Mensaje original- De: ivan.ma...@gmail.com [mailto:ivan.ma...@gmail.com] En nombre de helix84 Enviado el: martes, 25 de febrero de 2014 03:04 a.m. Para: Oscar Sanchez Gomez CC: DSpace-tech@lists.sourceforge.net Asunto: Re: [Dspace-tech] Using LDAP in Dspace 4.0 The change might be a consequence of this bugfix: https://github.com/DSpace/DSpace/commit/88b9d8fe78bb990d777c315abb31dcd823a5a208 What were your values of id_field, email_field and netid_email_domain during the 3.2 and 4.0 results you shown above? On Mon, Feb 24, 2014 at 5:34 PM, Oscar Sanchez Gomez mailto:osanc...@itcr.ac.cr>> wrote: > In some mails of DSpace-tech about LDAP authentication I read that I > can use the modules of previous version since there is no change in > the plugin. Who can I do that in order to recover the functionality have in > 3.2? You can copy the following files from the 3.x source to the 4.x source: dspace-api/src/main/java/org/dspace/authenticate/LDAPAuthentication.java dspace/config/modules/authentication-ldap.cfg Regards, ~~helix84 Compulsory reading: DSpace Mailing List Etiquette https://wiki.duraspace.org/display/DSPACE/Mailing+List+Etiquette -- Flow-based real-time traffic analytics software. Cisco certified tool. Monitor traffic, SLAs, QoS, Medianet, WAAS etc. with NetFlow Analyzer Customize your own dashboards, set traffic alerts and generate reports. Network behavioral analysis & security monitoring. All-in-one tool. http://pubads.g.doubleclick.net/gampad/clk?id=126839071&iu=/4140/ostg.clktrk___ DSpace-tech mailing list DSpace-tech@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/dspace-tech List Etiquette: https://wiki.duraspace.org/display/DSPACE/Mailing+List+Etiquette
Re: [Dspace-tech] Using LDAP in Dspace 4.0
The change might be a consequence of this bugfix: https://github.com/DSpace/DSpace/commit/88b9d8fe78bb990d777c315abb31dcd823a5a208 What were your values of id_field, email_field and netid_email_domain during the 3.2 and 4.0 results you shown above? On Mon, Feb 24, 2014 at 5:34 PM, Oscar Sanchez Gomez wrote: > In some mails of DSpace-tech about LDAP authentication I read that I can use > the modules of previous version since there is no change in the plugin. Who > can I do that in order to recover the functionality have in 3.2? You can copy the following files from the 3.x source to the 4.x source: dspace-api/src/main/java/org/dspace/authenticate/LDAPAuthentication.java dspace/config/modules/authentication-ldap.cfg Regards, ~~helix84 Compulsory reading: DSpace Mailing List Etiquette https://wiki.duraspace.org/display/DSPACE/Mailing+List+Etiquette -- Flow-based real-time traffic analytics software. Cisco certified tool. Monitor traffic, SLAs, QoS, Medianet, WAAS etc. with NetFlow Analyzer Customize your own dashboards, set traffic alerts and generate reports. Network behavioral analysis & security monitoring. All-in-one tool. http://pubads.g.doubleclick.net/gampad/clk?id=126839071&iu=/4140/ostg.clktrk ___ DSpace-tech mailing list DSpace-tech@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/dspace-tech List Etiquette: https://wiki.duraspace.org/display/DSPACE/Mailing+List+Etiquette
[Dspace-tech] Using LDAP in Dspace 4.0
Hi all, I can't achieve that Dspace 4.0 create a new user using the email as the user account. I prove using the "netid_email_domain = @itcr.ac.cr" with no positive results. Reviewing the dspace.log for the installation 4.0 and 3.2 I find the following differences: Dspace 3.2 version 2014-02-21 11:24:16,097 INFO org.dspace.authenticate.PasswordAuthentication @ anonymous:session_id=B7C93D84A33CE671CA7968B4C70D78CE:ip_addr=172.17.24.237:authenticate:attempting password auth of user=biblioteca 2014-02-21 11:24:16,098 INFO org.dspace.authenticate.LDAPAuthentication @ anonymous:session_id=B7C93D84A33CE671CA7968B4C70D78CE:ip_addr=172.17.24.237:auth:attempting trivial auth of user=biblioteca 2014-02-21 11:24:16,109 INFO org.dspace.authenticate.LDAPAuthentication @ anonymous:session_id=B7C93D84A33CE671CA7968B4C70D78CE:ip_addr=172.17.24.237:autoregister:netid=biblioteca 2014-02-21 11:24:16,120 INFO org.dspace.eperson.EPerson @ anonymous:session_id=B7C93D84A33CE671CA7968B4C70D78CE:ip_addr=172.17.24.237:create_eperson:eperson_id=4 2014-02-21 11:24:16,136 INFO org.dspace.eperson.EPerson @ anonymous:session_id=B7C93D84A33CE671CA7968B4C70D78CE:ip_addr=172.17.24.237:update_eperson:eperson_id=4 2014-02-21 11:24:16,140 INFO org.dspace.event.EventManager @ 2014-02-21 11:24:27,172 INFO org.dspace.eperson.EPersonConsumer @ anonymous:session_id=B7C93D84A33CE671CA7968B4C70D78CE:ip_addr=172.17.24.237:registerion_alert:user=bibliot...@itcr.ac.cr 2014-02-21 11:24:27,173 INFO org.dspace.authenticate.LDAPAuthentication @ bibliot...@itcr.ac.cr:session_id=B7C93D84A33CE671CA7968B4C70D78CE:ip_addr=172.17.24.237:authenticate:type=ldap-login, created ePerson 2014-02-21 11:24:27,173 INFO org.dspace.app.xmlui.utils.AuthenticationUtil @ bibliot...@itcr.ac.cr:session_id=B7C93D84A33CE671CA7968B4C70D78CE:ip_addr=172.17.24.237:login:type=explicit 2014-02-21 11:24:27,305 INFO org.dspace.app.xmlui.aspect.artifactbrowser.CommunityBrowser @ bibliot...@itcr.ac.cr:session_id=B7C93D84A33CE671CA7968B4C70D78CE:ip_addr=172.17.24.237:view_community_list: 2 Dspace 4.0 version 2014-02-24 10:38:46,614 INFO org.dspace.authenticate.PasswordAuthentication @ anonymous:session_id=A77CB392320971AB99D1DA4FE8D12946:ip_addr=172.17.24.237:authenticate:attempting password auth of user=biblioteca 2014-02-24 10:38:46,615 INFO org.dspace.authenticate.LDAPAuthentication @ anonymous:session_id=A77CB392320971AB99D1DA4FE8D12946:ip_addr=172.17.24.237:auth:attempting trivial auth of user=biblioteca 2014-02-24 10:38:46,652 INFO org.dspace.authenticate.LDAPAuthentication @ anonymous:session_id=A77CB392320971AB99D1DA4FE8D12946:ip_addr=172.17.24.237:autoregister:netid=biblioteca 2014-02-24 10:38:46,656 INFO org.dspace.eperson.EPerson @ anonymous:session_id=A77CB392320971AB99D1DA4FE8D12946:ip_addr=172.17.24.237:create_eperson:eperson_id=16 2014-02-24 10:38:46,658 INFO org.dspace.eperson.EPerson @ anonymous:session_id=A77CB392320971AB99D1DA4FE8D12946:ip_addr=172.17.24.237:update_eperson:eperson_id=16 2014-02-24 10:38:46,659 INFO org.dspace.authenticate.LDAPAuthentication @ biblioteca:session_id=A77CB392320971AB99D1DA4FE8D12946:ip_addr=172.17.24.237:authenticate:type=ldap-login, created ePerson 2014-02-24 10:38:46,661 INFO org.dspace.eperson.EPerson @ biblioteca:session_id=A77CB392320971AB99D1DA4FE8D12946:ip_addr=172.17.24.237:update_eperson:eperson_id=16 2014-02-24 10:38:46,661 INFO org.dspace.app.xmlui.utils.AuthenticationUtil @ biblioteca:session_id=A77CB392320971AB99D1DA4FE8D12946:ip_addr=172.17.24.237:login:type=explicit 2014-02-24 10:38:46,862 INFO org.dspace.app.xmlui.aspect.artifactbrowser.CommunityBrowser @ biblioteca:session_id=A77CB392320971AB99D1DA4FE8D12946:ip_addr=172.17.24.237:view_community_list: 2014-02-24 10:38:46,862 INFO org.dspace.app.xmlui.aspect.discovery.SidebarFacetsTransformer @ facets for scope, null: 3 ~ In some mails of DSpace-tech about LDAP authentication I read that I can use the modules of previous version since there is no change in the plugin. Who can I do that in order to recover the functionality have in 3.2? Regards, Ing. Oscar Sánchez G., MAE Profesional en TI Biblioteca José Figueres Ferrer Instituto Tecnológico de Costa Rica * Tel: 2550-2135 7 Fax: 2591-4820 * Apdo Postal: 159-7050 -- Flow-based real-time traffic analytics software. Cisco certified tool. Monitor traffic, SLAs, QoS, Medianet, WAAS etc. with NetFlow Analyzer Customize your own dashboards, set traffic alerts and generate reports. Network behavioral analysis & security monitoring. All-in-one tool. http://pubads.g.doubleclick.net/gampad/clk?id=126839071&iu=/4140/ostg.clktrk___ DSpace-tech mailing list DSpace-tech@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/dspace-tech List Etiquette: https://wiki.duraspace.org/display/DSPACE/Mailing+List+Etiquette