Hi there,
I got a strange issue when I try to start instance with LDAP, my repository setting as below
<Security appName="com.day.crx">
<!--
security manager:
class: FQN of class implementing the JackrabbitSecurityManager interface
-->
<!--SecurityManager class="com.day.crx.core.CRXSecurityManager" workspaceName="" -->
<SecurityManager class="com.day.crx.core.CRXSecurityManager">
<WorkspaceAccessManager class="org.apache.jackrabbit.core.security.simple.SimpleWorkspaceAccessManager"/>
<!--
optional user manager configuration
-->
<UserManager class="org.apache.jackrabbit.core.security.user.UserPerWorkspaceUserManager">
<param name="usersPath" value="/home/users"/>
<param name="groupsPath" value="/home/groups"/>
<param name="defaultDepth" value="1"/>
<param name="autoExpandTree" value="true"/>
<AuthorizableAction class="org.apache.jackrabbit.core.security.user.action.AccessControlAction">
<param name="groupPrivilegeNames" value="jcr:read"/>
<param name="userPrivilegeNames" value="jcr:all"/>
</AuthorizableAction>
<!--AuthorizableAction class="com.day.crx.core.ntlm.NTLMAuthorizableAction"/>-->
</UserManager>
<!--
optional workspace access manager configuration
-->
</SecurityManager>
<!--
access manager:
class: FQN of class implementing the AccessManager interface
-->
<AccessManager class="org.apache.jackrabbit.core.security.DefaultAccessManager"></AccessManager>
<!--
Use LoginModule authenticating against repository itself
-->
</Security>
when I remove <LoginModule/> and launch the instance, there is an error shows in error.log:
---------------------------------------------------------------------------------------------------------------------
AuthenticationSupport service missing. Cannot authenticate request.
Possible reason is missing Repository service. Check AuthenticationSupport dependencies.
---------------------------------------------------------------------------------------------------------------------
my ldap_login.conf as below, the LDAP server works normally
com.day.crx {
com.day.crx.core.CRXLoginModule sufficient;
com.day.crx.security.ldap.LDAPLoginModule required
principal_provider.class="com.day.crx.security.ldap.principals.LDAPPrincipalProvider"
host="localhost"
port="10389"
authDn="uid=admin,ou=system"
authPw="secret"
userRoot="ou=users,dc=my,dc=com"
groupRoot="ou=groups,dc=my,dc=com"
userFilter="(objectclass=person)"
userIdAttribute="sn"
groupFilter="(objectclass=groupOfUniqueNames)"
groupMembershipAttribute="uniquemember"
groupNameAttribute="cn"
deny_anonymous_access="true"
autocreate="create"
autocreate.user.mail="rep:e-mail"
autocreate.user.cn="rep:fullname"
autocreate.group.mail="rep:e-mail"
autocreate.group.cn="rep:fullName"
autocreate.group.localadmin="admin"
autocreate.group.uniquemember="uniquemember"
autocreate.group.description="description"
autocreate.syncdelay="1800"
autocreate.lastmodified ="lastmodified"
autocreate.path="direct"
cache.expiration="600"
cache.maxsize="100";
};
any help will be appreciated!
Solved! Go to Solution.
Views
Replies
Total Likes
syntax issue in ldap_login.conf cause the problem
Views
Replies
Total Likes
syntax issue in ldap_login.conf cause the problem
Views
Replies
Total Likes