[Deploying Sakai] SAKAI 2.7.1 - LDAP

Richard Gliebe richard.gliebe at fhv.at
Tue Dec 14 02:26:55 PST 2010


On 12/14/10 2:37 AM Steve Swinsburg wrote:
> Hi Richard,

Hi Steve,

> Interested to know how you get on.

I've started from scratch with the source installation.

but LDAP connect don't work.

ldapsearch from command line works.

# ldapsearch -H ldaps://our.ldap.server.tld -x -W -D 
'uid=glr,ou=fhv,ou=People,dc=uclv,dc=net' 'uid=glr'
...
Enter LDAP Password:
# extended LDIF
#
# LDAPv3
# base <dc=uclv,dc=net> (default) with scope subtree
# filter: uid=glr
# requesting: ALL
#

# glr, fhv, People, uclv.net
dn: uid=glr,ou=fhv,ou=People,dc=uclv,dc=net
objectClass: top
objectClass: person
objectClass: organizationalPerson
objectClass: inetOrgPerson
objectClass: posixAccount
objectClass: schacUserEntitlements
objectClass: schacPersonalCharacteristics
objectClass: schacEmployeeInfo
objectClass: inetLocalMailRecipient
objectClass: eduPerson
objectClass: fhvPerson
...

here are my LDAP settings:

..:: Configure LDAP ::..
http://confluence.sakaiproject.org/display/~steve.swinsburg/LDAP+in+Sakai+2.5

# vi /opt/sakai-2.7.1/providers/component/pom.xml
....
<!-- Needed for the JLDAP Provider -->
                 <dependency>
                         <groupId>org.sakaiproject</groupId>
                         <artifactId>sakai-jldap-provider</artifactId>

                 </dependency>

                 <dependency>
                         <groupId>openldap</groupId>
                         <artifactId>ldap</artifactId>
                         <version>2005.03.29</version>
                 </dependency>
<!--    -->
....

# vi /opt/sakai-2.7.1/providers/component/src/webapp/WEB-INF/components.xml
....
<!-- Uncomment and configure to use the JLDAPDirectoryProvider -->
         <import resource="jldap-beans.xml" />
....

# vi /opt/sakai-2.7.1/providers/component/src/webapp/WEB-INF/jldap-beans.xml
....
<!-- Required. Host name or address of your LDAP server -->
                 <property name="ldapHost">
                         <value>our.ldap.server.tld</value>
                 </property>
....
		<property name="ldapPort">
                         <value>636</value>
                 </property>
....
<!-- Optional, but usually specified. Base DN for directory searches. -->
                 <property name="basePath">
                         <value>ou=fhv,ou=People,dc=uclv,dc=net</value>
                 </property>
....
                 <property name="attributeMappings">
                         <map>
                                 <entry 
key="login"><value>cn</value></entry>
                                 <entry 
key="firstName"><value>givenName</value></entry>
                                 <entry 
key="lastName"><value>sn</value></entry>
                                 <entry 
key="email"><value>mail</value></entry>
                                 <!-- entry 
key="groupMembership"><value>fhvisaismemberof</value></entry -->
                         </map>
                 </property>
....
<property name="secureConnection">
                         <value>true</value>
                 </property>
....

# cd /opt/sakai-2.7.1/providers/
# mvn clean install sakai:deploy
# /etc/init.d/tomcat stop/start

I'm still getting this "Alert: invalid login"

what do I'm missing?

many thanks
Richard


More information about the production mailing list