 |
Page History
...
| Code Block |
|---|
authentication.type=ldap-auth
ldap.url=ldap://192.168.56.101:389
ldap.basedn=dc=smab,dc=org
ldap.user=CN=admin,dc=smab,dc=org
ldap.pass=smab123456
ldap.memberOf.attribute.name=isMemberOf
ldap.mail.attribute.name=mail
ldap.group.ignore.list=PwmAdmins,devTeam,nlst,testGroup
public.collection.access.group.name=General User
product.variation=NBIA
ldap.user and ldap.pass must be the administrator information of LDAP server.
3. In jaas.conf (Tomcat7.0/conf/jaas.conf)
NCIA
{
gov.nih.nci.security.authentication.loginmodules.LDAPLoginModule Required
ldapHost="ldap://192.168.56.101:389"
ldapSearchableBase="dc=smab,dc=org"
ldapUserIdLabel="cn"
ldapAdminUserName="CN=admin,dc=smab,dc=org"
ldapAdminPassword="smab123456";
}; |
| Note |
The jaas.conf is generated during
...
NBIA installation. The default ldapUserIdLabel is
...
cn, which means the LDAP server will search
...
the cn value, then compare it to the login username. If the user name
...
exists in the LDAP server, the LDAP server will
...
authenticate this user.
Some LDAP
...
servers may use
...
another field to store the login username
...
, such as uid. In this case, change the username value to uid.For example, ldapUserIdLabel="cn"
After changing that, we have to restart the Tomcat Restart Tomcat for the change to take effect.
