Results 1 to 3 of 3

Thread: Use Jboss LdapLoginModule

  1. #1
    skud is offline Starter Member
    Join Date
    Apr 2006
    Location
    FRANCE
    Posts
    2
    Rep Power
    9

    Question Use Jboss LdapLoginModule

    Hi,

    First, Let me excuse for my english...

    I have a intranet jboss application, which used LdapLoginModule for authenticate user. It worked on a Active Directory Server on Windows. But, where i try to use it on Zimbra Ldap, this error is displayed in server.log :

    ... [org.jboss.jetty] WARNING: AUTH FAILURE: role for <user>

    The problem is that there is role for user in Zimbra Ldap structure and no role branch in Ldap structure too.

    Need help please ...

    Bye

  2. #2
    KevinH's Avatar
    KevinH is offline Expert Member
    Join Date
    Aug 2005
    Location
    San Mateo, CA
    Posts
    4,789
    Rep Power
    18

    Default

    Do you know what kind of LDAP search JBoss is trying to make?
    Looking for new beta users -> Co-Founder of Acompli. Previously worked at Zimbra (and Yahoo! & VMware) since 2005.

  3. #3
    skud is offline Starter Member
    Join Date
    Apr 2006
    Location
    FRANCE
    Posts
    2
    Rep Power
    9

    Default JBoss configuration

    I use the login-config.xml configuration file in which i configure an application policy as follow :

    <application-policy name = "ods-intranet">
    <authentication>
    <login-module code = "org.jboss.security.auth.spi.LdapLoginModule" flag = "required">
    <module-option name="java.naming.factory.initial">com.sun.jndi.ld ap.LdapCtxFactory</module-option>
    <module-option name="java.naming.provider.url">ldap://10.0.200.11</module-option>
    <module-option name="java.naming.security.authentication">simple</module-option>
    <module-option name="principalDNPrefix">uid=</module-option>
    <module-option name="principalDNSuffix">,ou=people,dc=ods,dc=fr</module-option>
    <module-option name="rolesCtxDN">ou=people,dc=ods,dc=fr</module-option>
    <module-option name="matchOnUserDN">true</module-option>
    <module-option name="roleAttributeIsDN">false</module-option>
    <module-option name="uidAttributeID">company</module-option>
    <module-option name="roleAttributeID">memberOf</module-option>
    <module-option name="roleNameAttributeID">name</module-option>
    </login-module>
    </authentication>
    </application-policy>
    Hope it will help you.

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •