The group search in the sample we provide for external LDAP authorization using JAAS plugin does not work with Windows Active Directory server.

The group search in the sample we provide for external LDAP authorization using JAAS plugin does not work with Windows Active Directory server.

book

Article ID: KB0085944

calendar_today

Updated On:

Products Versions
TIBCO Enterprise Message Service -
Not Applicable -

Description

Resolution:
Description:
==============
The group search in the sample we provided for external LDAP authorization using JAAS plugin does not work with Windows Active Directory server. When user wants to set permissions on the external group in acl.conf, the group search could not return any groups the logged in user belongs to.

Resolution:
===============
You can use the modified LDAPSearchLoginModule.java code to find the membership of the user in the Windows Active Directory Server so that the external group permission can be set correctly within acl.conf. Then add one Line to the jass conf file:  jass-config.txt file, so that the code could enable the handling for membership search of Windows Active Directory server.

  ldap.windowsActiveDirectory="true"

Replace the old LDAPSearchLoginModule.java with the new one and recompile the JAAS plugin jar file.

Issue/Introduction

The group search in the sample we provide for external LDAP authorization using JAAS plugin does not work with Windows Active Directory server.

Additional Information

KB 36337
Setup external LDAP authorization and set permissions on LDAP group level with JAAS, JACI plugin feature.

Attachments

The group search in the sample we provide for external LDAP authorization using JAAS plugin does not work with Windows Active Directory server. get_app
Powered by Wolken Software