Changes for page User Authentication

Last modified by Simon Urli on 2023/12/11

From version 6.1
edited by Thomas Mortagne
on 2008/02/19
Change comment: There is no comment for this version
To version 10.1
edited by Thomas Mortagne
on 2008/02/20
Change comment: There is no comment for this version

Summary

Details

Page properties
Content
... ... @@ -5,7 +5,7 @@
5 5  
6 6  The form authentication is the default mechanism.
7 7  
8 -#info("Note that currently XWiki allows only one method of authentication to be enabled at a time which means you cannot implement policies such as if the user is not found in LDAP then check if he's in the XWiki database. This will probably be improved in the future.")
8 +##info("Note that currently XWiki allows only one method of authentication to be enabled at a time which means you cannot implement policies such as if the user is not found in LDAP then check if he's in the XWiki database. This will probably be improved in the future.")
9 9  
10 10  1.1 Form Authentication
11 11  
... ... @@ -18,26 +18,22 @@
18 18  
19 19  In order to enable the LDAP support you have to change the authentication method in ~~WEB-INF/xwiki.cfg~~ as follows:
20 20  {code}
21 +## Turn LDAP authentication on - otherwise only XWiki authentication
22 +## 0 : disable
23 +## 1 : enable
21 21  xwiki.authentication.ldap=1
25 +
26 +## set LDAP as authentication service
27 +xwiki.authentication.authclass=com.xpn.xwiki.ldap.authentication.XWikiLDAPAuthServiceImpl
22 22  {code}
23 23  
24 24  You can setup the LDAP configuration in the ~~xwiki.cfg~~ file by filling the following properties:
25 25  
26 26  {code:none}
27 -## new LDAP authentication service
28 -xwiki.authentication.authclass=com.xpn.xwiki.ldap.authentication.XWikiLDAPAuthServiceImpl
29 -
30 -
31 -## Turn LDAP authentication on - otherwise only XWiki authentication
32 -## 0 : disable
33 -## 1 : enable
34 -xwiki.authentication.ldap=1
35 -
36 36  ## LDAP Server (Active Directory, eDirectory, OpenLDAP, etc.)
37 37  xwiki.authentication.ldap.server=156.58.101.204
38 38  xwiki.authentication.ldap.port=389
39 39  
40 -
41 41  ## LDAP login, empty = anonymous access, otherwise specify full dn
42 42  ## {0} is replaced with the username, {1} with the password
43 43  xwiki.authentication.ldap.bind_DN=cn={0},department=USER,department=INFORMATIK,department=1230,o=MP
... ... @@ -73,8 +73,17 @@
73 73  
74 74  ## if ldap authentication fails for any reason, try XWiki DB authentication with the same credentials
75 75  xwiki.authentication.ldap.trylocal=1
72 +
73 +## SSL connection to LDAP server
74 +## 0 : normal
75 +## 1 : SSL
76 +xwiki.authentication.ldap.ssl=1
77 +
78 +## The keystore file to use in SSL connection
79 +xwiki.authentication.ldap.ssl.keystore=
76 76  {code}
77 77  
82 +#*
78 78  #info("You can also setup the LDAP configuration in XWiki.XWikiPreferences page by going to the class editor and adding the following fields:
79 79  * ldap
80 80  * ldap_server
... ... @@ -89,8 +89,11 @@
89 89  * ldap_group_mapping
90 90  * ldap_groupcache_expiration
91 91  * ldap_mode_group_sync
92 -* ldap_trylocal")
93 -
97 +* ldap_trylocal
98 +* ldap_ssl
99 +* ldap_ssl.keystore")
100 +*#
101 +
94 94  1.1.1 LDAP Configuration for Active Directory
95 95  
96 96  Here are values of the properties you need to set if your LDAP server implementation is Miscrosoft Active Directory:
... ... @@ -185,3 +185,4 @@
185 185  
186 186  
187 187  
196 +

Get Connected