Products | Versions |
---|---|
TIBCO Enterprise Message Service | - |
Not Applicable | - |
Resolution:
Description:
==============
The group search in the sample we provided for external LDAP authorization using JAAS plugin does not work with Windows Active Directory server. When user wants to set permissions on the external group in acl.conf, the
group search could not return any groups the logged in user belongs to.
Resolution:
===============
You can use the modified LDAPSearchLoginModule.java code to find the membership of the user in the Windows Active Directory Server so that the external group permission can be set correctly within acl.conf. Then add one Line to the jass conf file: jass-config.txt file, so that the code could enable the handling for membership search of Windows Active Directory server.
ldap.windowsActiveDirectory="true"
Replace the old LDAPSearchLoginModule.java with the new one and recompile the JAAS plugin jar file.