Announcement Announcement Module
Collapse
No announcement yet.
Acegi + ADAM: authentification problem with roles (must add role user/admin in ADAM) Page Title Module
Move Remove Collapse
X
Conversation Detail Module
Collapse
  • Filter
  • Time
  • Show
Clear All
new posts

  • Acegi + ADAM: authentification problem with roles (must add role user/admin in ADAM)

    Hi,

    I' m new to both acegi and ADAM, i have a problem of authetification . We use acegi authentification with ADAM, the problem is that we have to distribute a role (user/admin) to the user, if not, we have always:

    LDAP: error code 32 - 0000208D: NameErr: DSID-031521D2, problem 2001 (NO_OBJECT), data 0, best match of:

    Is there a way to avoid adding each user a role in ADAM for the authetification? Thank you very much for your help!!

    this is the configuration:

    <bean id="initialDirContextFactory" class="org.acegisecurity.ldap.DefaultInitialDirCon textFactory">
    <constructor-arg value="ldap://${ldap.host}:${ldap.port}/${ldap.rootDN}" />
    <property name="managerDn">
    <value>${ldap.managerDN},${ldap.rootDN}</value>
    </property>
    <property name="managerPassword">
    <value>${ldap.managerPassword}</value>
    </property>
    </bean>

    <bean id="userSearch" class="org.acegisecurity.ldap.search.FilterBasedLd apUserSearch">
    <constructor-arg index="0">
    <value></value>
    </constructor-arg>
    <constructor-arg index="1">
    <value>(uid={0})</value>
    </constructor-arg>
    <constructor-arg index="2">
    <ref local="initialDirContextFactory" />
    </constructor-arg>
    <property name="searchSubtree">
    <value>true</value>
    </property>
    </bean>

    <bean id="ldapAuthenticationProvider" class="org.irsn.sapide.web.security.LdapAuthentica tionProvider">
    <constructor-arg>
    <bean class="org.acegisecurity.providers.ldap.authentica tor.BindAuthenticator">
    <constructor-arg>
    <ref local="initialDirContextFactory" />
    </constructor-arg>
    <property name="userDnPatterns">
    <list>
    <value>${ldap.userDN}</value>
    </list>
    </property>
    </bean>
    </constructor-arg>
    <constructor-arg>
    <bean class="org.acegisecurity.providers.ldap.populator. DefaultLdapAuthoritiesPopulator">
    <constructor-arg>
    <ref local="initialDirContextFactory" />
    </constructor-arg>
    <constructor-arg>
    <value>${ldap.groupDN}</value>
    </constructor-arg>
    <property name="groupRoleAttribute">
    <value>${ldap.groupAttribute}</value>
    </property>
    <property name="rolePrefix">
    <value>ROLE_</value>
    </property>
    <property name="convertToUpperCase">
    <value>true</value>
    </property>
    </bean>
    </constructor-arg>
    </bean>
Working...
X