Configuration override and use of the rank attribute

One Star

Configuration override and use of the rank attribute

Hi,
I have set up LDAPLoginModule for karaf using the blueprint file deployed in to karaf:
<?xml version="1.0" encoding="UTF-8"?>
<blueprint xmlns="http://www.osgi.org/xmlns/blueprint/v1.0.0"
xmlns:jaas="http://karaf.apache.org/xmlns/jaas/v1.0.0"
xmlns:ext="http://aries.apache.org/blueprint/xmlns/blueprint-ext/v1.0.0">
<jaas:config name="karaf" rank="1">
<jaas:module className="org.apache.karaf.jaas.modules.ldap.LDAPLoginModule" flags="required">
connection.url = ldap://localhost:389
user.base.dn = ou=user,dc=apache,dc=org
user.filter = (cn=%u)
user.search.subtree = true
role.base.dn = ou=group,dc=apache,dc=org
role.filter = (member:=uid=%u)
role.name.attribute = cn
role.search.subtree = true
authentication = simple
</jaas:module>
</jaas:config>
</blueprint>
So, all talend services are secured with username/password and i am able to access successfully to the services
using soap ui for example.
But, I am no longer able to access to :
-- the SSH console
-- the JMX management layer
-- to the Web console : http://localhost:8040/system/console/
with the LDap users
Do I need some further configurations ?
regards,
Employee

Re: Configuration override and use of the rank attribute

Hi,
Did you config the karaf.admin.role property in the etc/system.properties? by default, the role is 'admin'.
Regards.
Xilai
One Star

Re: Configuration override and use of the rank attribute

Hi,
I have defined admin role in the LDAP group.
Everything works now, it is due to the syntax error in the role filter.
I have replaced role.filter = (member:=uid=%u) by role.filter = (member=uid=%u,ou=user,dc=apache,dc=org)
Regards,