Combination View Flat View Tree View
Threads [ Previous | Next ]
Alexandre Terrasson
LDAP import issue Liferay 6
September 20, 2011 4:48 AM
Answer

Alexandre Terrasson

Rank: New Member

Posts: 22

Join Date: July 15, 2010

Recent Posts

Hi,
I got some problems with the LDAP import in Liferay 6.

Whatever I make the LDAP configuration into the Control Panel or put it in the portal-ext.properties it's same : the users import don't work.
The first time I start/restart the server after the LDAP configuration, I got some strange error (Password policy exception) and after that, the import doesn't even launch. Sometimes the server won't start after the import tried and failed.

Here my LDAP parameters in the portal-ext.properties :

 1
 2ldap.auth.enabled=true
 3
 4ldap.factory.initial=com.sun.jndi.ldap.LdapCtxFactory
 5ldap.base.provider.url=ldap://192.168.1.24:10638
 6ldap.base.dn=o=My Corpo Test
 7ldap.security.principal=uid=admin,OU=Users,ou=Admin,o=My Corpo Test
 8ldap.security.credentials=admin
 9
10ldap.user.mappings=screenName=cn\nemailAddress=mail\nfirstName=displayname\nlastName=sn\njobTitle=description\ngroup=memberOf\npassword=userPassword
11ldap.user.impl=com.liferay.portal.security.ldap.LDAPUser
12ldap.user.default.object.classes=top,person,inetOrgPerson,organizationalPerson
13
14ldap.group.mappings=groupName=cn\nuser=member
15
16ldap.import.enabled=true
17ldap.import.on.startup=true
18ldap.import.interval=5
19ldap.import.user.search.filter=(objectClass=inetOrgPerson)
20ldap.import.group.search.filter=(objectClass=groupOf*)
21
22ldap.export.enabled=false
23
24ldap.import.method=user
25
26auth.pipeline.pre=com.liferay.portal.security.auth.LDAPAuth
27ldap.auth.search.filter=(cn=@screen_name@)
28
29ldap.password.policy.enabled=true
30
31passwords.encryption.algorithm=NONE


Those parameters works well with Liferay 5.2.3.
I use the Liferay-Tomcat bundle (versions 6 and 5.2.3).

Any help or suggestions would be greatly appreciated because I really don't understand what the problem .....

Thanks.
Drew Blessing
RE: LDAP import issue Liferay 6
September 20, 2011 5:07 PM
Answer

Drew Blessing

Rank: Junior Member

Posts: 79

Join Date: January 27, 2011

Recent Posts

I am not exactly sure about the exception you are getting. I know the portal has a password policy but I was under the impression that LDAP synchronization overrides password policy. Maybe that's just CAS and I'm mistaken. I would suggest checking out the password policy settings in the portal. They could have changed those default policies in version 6. Maybe your accounts are not meeting that policy.

Below is the LDAP sync section from our Liferay 6 portal-ext.properties file. Maybe adding some of the additional property definitions will help you out. For reference, we're using OpenLDAP.

 1##
 2## ldap properties
 3
 4ldap.auth.enabled=true
 5ldap.base.provider.url=ldap://ldap.ourdomain.org
 6ldap.base.dn=dc=ourdomain,dc=org
 7ldap.security.principal=cn=pam,dc=ourdomain,dc=org
 8ldap.security.credentials=supersecurepassword
 9ldap.referral=follow
10
11ldap.auth.method=bind
12
13ldap.auth.search.filter=(mail=@email_address@)
14ldap.user.mappings=screenName=uidNumber\npassword=userPassword\nemailAddress=mail\nfirstName=givenName\nlastName=sn\ngroup=groupMembership\nfullName=gecos
15ldap.import.enabled=true
16ldap.import.on.startup=false
17ldap.import.interval=10
18ldap.import.user.search.filter=(objectClass=inetOrgPerson)
19ldap.import.group.search.filter=(objectClass=groupOfUniqueNames)
20ldap.import.method=user
Harsha Mhaske
RE: LDAP import issue Liferay 6
December 21, 2012 3:16 AM
Answer

Harsha Mhaske

Rank: New Member

Posts: 15

Join Date: September 26, 2008

Recent Posts

I am facing a similar issue using Domino LDAP integration with Liferay 6.1 CE ga1

The setting are successful but the users are not imported.
I was able to configure Microsoft Active Directory without any issues. But not sure why the Domino LDAP is giving this issue.

Regards,
Harsha