Ldap和afresco 5.2同步
我目前正在将alfresco配置为使用ldap服务器进行身份验证。我遵循了官方文档并更新了alfresco-global.properties文件,我可以使用ldap用户登录,但我看不到任何dap组,我只看到已经与alfresco连接的ldap用户,如果用户没有登录alfresco,我看不到他。我正在使用alfresco 5.2和apache LDAP,这是我的alfresco-global.properties文件和LDAP Hiarch 这是我的alfresco global.propertiesLdap和afresco 5.2同步,ldap,alfresco,Ldap,Alfresco,我目前正在将alfresco配置为使用ldap服务器进行身份验证。我遵循了官方文档并更新了alfresco-global.properties文件,我可以使用ldap用户登录,但我看不到任何dap组,我只看到已经与alfresco连接的ldap用户,如果用户没有登录alfresco,我看不到他。我正在使用alfresco 5.2和apache LDAP,这是我的alfresco-global.properties文件和LDAP Hiarch 这是我的alfresco global.proper
###############################
## Common Alfresco Properties #
###############################
dir.root=C:/ALFRES~1/alf_data
alfresco.context=alfresco
alfresco.host=127.0.0.1
alfresco.port=8080
alfresco.protocol=http
share.context=share
share.host=127.0.0.1
share.port=8080
share.protocol=http
### database connection properties ###
db.driver=org.postgresql.Driver
db.username=alfresco
db.password=admin
db.name=alfresco
db.url=jdbc:postgresql://localhost:5432/${db.name}
# Note: your database must also be able to accept at least this many connections. Please see your database documentation for instructions on how to configure this.
db.pool.max=275
db.pool.validate.query=SELECT 1
# The server mode. Set value here
# UNKNOWN | TEST | BACKUP | PRODUCTION
system.serverMode=UNKNOWN
### FTP Server Configuration ###
ftp.port=21
### RMI registry port for JMX ###
alfresco.rmi.services.port=50500
### External executable locations ###
ooo.exe=C:/ALFRES~1/LIBREO~1/App/libreoffice/program/soffice.exe
ooo.enabled=true
ooo.port=8100
img.root=C:\\alfresco-community\\imagemagick
img.coders=${img.root}\\modules\\coders
img.config=${img.root}
img.gslib=${img.root}\\lib
img.exe=${img.root}\\convert.exe
jodconverter.enabled=false
jodconverter.officeHome=C:/ALFRES~1/LIBREO~1/App/libreoffice
jodconverter.portNumbers=8100
### Initial admin password ###
alfresco_user_store.adminpassword=209c6174da490caeb422f3fa5a7ae634
### E-mail site invitation setting ###
notification.email.siteinvite=false
### License location ###
dir.license.external=C:/ALFRES~1
### Solr indexing ###
index.subsystem.name=solr4
dir.keystore=${dir.root}/keystore
solr.host=localhost
solr.port.ssl=8443
### Allow extended ResultSet processing
security.anyDenyDenies=false
### Smart Folders Config Properties ###
smart.folders.enabled=false
### Remote JMX (Default: disabled) ###
alfresco.jmx.connector.enabled=false
### Use Alfresco authentication for admin accounts and LDAP for users ###
authentication.chain=alfrescoNtlm1:alfrescoNtlm,ldap1:ldap
synchronization.allowDeletions=true
## When TESTING, set synchronizeChangesOnly to false
## - this will give FULL synchronization for scheduled synchs
synchronization.synchronizeChangesOnly=false
## Set up regular synchronization with the LDAP server ##
synchronization.syncWhenMissingPeopleLogIn=true
synchronization.syncOnStartup=true
# When TESTING, synchronise every 5 minutes
# secs min hour dom mon dow
synchronization.import.cron=0 0/1 * * * ?
ldap.synchronization.enableProgressEstimation=true
我也有类似的问题。当我使用一个有更多特权的服务帐户时,问题就解决了。尝试使用管理员帐户测试LDAP集成。下面是alfresco社区201704的alfresco-global.properties的LDAP集成部分
### LDAP connection ###
authentication.chain=alfinst:alfrescoNtlm,ldap1:ldap-ad
ntlm.authentication.sso.enabled=false
ldap.authentication.allowGuestLogin=false
ldap.authentication.userNameFormat=%s@example.org
ldap.authentication.java.naming.provider.url=ldap://{domain}
ldap.authentication.defaultAdministratorUserNames=Administrator,alfresco
ldap.synchronization.java.naming.security.principal={valid service account}
ldap.synchronization.java.naming.security.credentials={password for above account}
ldap.synchronization.active=true
# Group
ldap.synchronization.groupSearchBase=cn=Users,dc=exmaple,dc=org
# User
ldap.synchronization.userSearchBase=cn=Users,dc=example,dc=org
ldap.synchronization.userIdAttributeName=sAMAccountName
ldap.synchronization.userFirstNameAttributeName=givenName
ldap.synchronization.userLastNameAttributeName=sn
ldap.synchronization.userEmailAttributeName=mail
# Sync
synchronization.synchronizeChangesOnly=false
synchronization.allowDeletions=true
synchronization.syncWhenMissingPeopleLogIn=true
synchronization.syncOnStartup=true
synchronization.import.cron=0 */15 * * * ?
create.missing.people=false
我也有类似的问题。当我使用一个有更多特权的服务帐户时,问题就解决了。尝试使用管理员帐户测试LDAP集成。下面是alfresco社区201704的alfresco-global.properties的LDAP集成部分
### LDAP connection ###
authentication.chain=alfinst:alfrescoNtlm,ldap1:ldap-ad
ntlm.authentication.sso.enabled=false
ldap.authentication.allowGuestLogin=false
ldap.authentication.userNameFormat=%s@example.org
ldap.authentication.java.naming.provider.url=ldap://{domain}
ldap.authentication.defaultAdministratorUserNames=Administrator,alfresco
ldap.synchronization.java.naming.security.principal={valid service account}
ldap.synchronization.java.naming.security.credentials={password for above account}
ldap.synchronization.active=true
# Group
ldap.synchronization.groupSearchBase=cn=Users,dc=exmaple,dc=org
# User
ldap.synchronization.userSearchBase=cn=Users,dc=example,dc=org
ldap.synchronization.userIdAttributeName=sAMAccountName
ldap.synchronization.userFirstNameAttributeName=givenName
ldap.synchronization.userLastNameAttributeName=sn
ldap.synchronization.userEmailAttributeName=mail
# Sync
synchronization.synchronizeChangesOnly=false
synchronization.allowDeletions=true
synchronization.syncWhenMissingPeopleLogIn=true
synchronization.syncOnStartup=true
synchronization.import.cron=0 */15 * * * ?
create.missing.people=false
您确定这是组查询中正确的
objectClassldapsearchobjectClassldapsearchalfresco.logalfresco.log