[jboss-user] [jBPM] - Re: LDAP UserGroupCallback with bind credentials

Hung Phan do-not-reply at jboss.com
Wed Jan 30 08:03:03 EST 2013 

Hung Phan [https://community.jboss.org/people/phan] created the discussion

"Re: LDAP UserGroupCallback with bind credentials"

To view the discussion, visit: https://community.jboss.org/message/795126#795126

--------------------------------------------------------------
Have you tried using the 'java.naming.security.principal' and 'java.naming.security.credentials' in your properties file?  They worked for me (thank you for the hints).  

Also, what is the correct configurations to get just the CN for a user's groups (e.g. just 'user', or 'admin') into the task.OrganizationalEntity table?  Below is a section of my current configuration, which results ininserting the entire string 'CN=admin,CN=Users,DC=...' as the 'Group' id.  Thanks in advance.
-------------
# Filter that will be used to search for user information,
# usually will contain substitution keys {0} to be replaced with parameters
# (mandatory)
ldap.user.filter=(sAMAccountName\={0})

# Attribute name of the user id in Active Directory
ldap.user.attr.id=sAMAccountName

# Filter that will be used to search for group/role information,
# usually will contain substitution keys {0} to be replaced with parameters
# (mandatory)
ldap.role.filter=(sAMAccountName\={0})

# Filter that will be used to search for user group/role membership information,
# usually will contain substitution keys {0} to be replaced with parameters
# (mandatory)
ldap.user.roles.filter=(sAMAccountName\={0})

# Attribute name of the group/role id in Active Directory
# (optional, if not given 'cn' will be used)
ldap.roles.attr.id=memberOf

# User id a DN, instructs the callback to query for user DN
# before searching for roles (optional, default false)
ldap.user.id.dn=true
-------------------
--------------------------------------------------------------

Reply to this message by going to Community
[https://community.jboss.org/message/795126#795126]

Start a new discussion in jBPM at Community
[https://community.jboss.org/choose-container!input.jspa?contentType=1&containerType=14&container=2034]

-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.jboss.org/pipermail/jboss-user/attachments/20130130/9b8c2a70/attachment.html

More information about the jboss-user mailing list