Histórico da Página
| HTML |
|---|
<div id="main-content" class="wiki-content group">
<p>
Valid configurations for authentication in AD using the LDAP
Protocol <span style="font-size: 10.0pt; line-height: 13.0pt;">(</span><span
style="color: rgb(68, 68, 68);">Lightweight Directory Access
Protocol)</span><span style="font-size: 10.0pt; line-height: 13.0pt;">.</span>
</p>
<p> </p>
<p>
To this end, you need to change the file: <em><INSTALL |
Configuraciones válidas para autenticación en AD utilizando el Protocolo LDAP (Lightweight Directory Access Protocol).
...
_FLUIG>\jboss\configuration\standalone. |
...
Busque el siguiente fragmento:
| Bloco de código | ||||
|---|---|---|---|---|
| ||||
<securityxml</em>. </p> <p> </p> <p>Look for the following string:</p> <div class="code panel pdl" style="border-width: 1px;"> <div class="codeContent panelContent pdl"> <pre class="theme: Eclipse; brush: javascript; gutter: false" style="font-size: 12px;"><security-domain name="TOTVSTech" cache-type="default"> <authentication><authentication> <login<login-module code="com.totvs.foundation.auth.FoundationDatabaseServerLoginModule" flag="required" module="com.totvs.foundation.auth"> <module<module-option name="hashAlgorithm" value="MD5"/> <module<module-option name="hashEncoding" value="HEX"/> <module<module-option name="principalClass" value="com.totvs.technology.foundation.common.TOTVSTechPrincipal"/> <</login-module> <</authentication> </security-domain> |
En el caso que se utilice la forma de validación directa, sin necesidad credencial, sustituya por el siguiente fragmento:
| Bloco de código | ||||
|---|---|---|---|---|
| ||||
<security</security-domain></pre> </div> </div> <p> </p> <p>If you use the direct validation form, without the need for credential, replace it for the following string:</p> <div class="code panel pdl" style="border-width: 1px;"> <div class="codeContent panelContent pdl"> <pre class="theme: Eclipse; brush: javascript; gutter: false" style="font-size: 12px;"><security-domain name="TOTVSTech" cache-type="default"> <authentication><authentication> <login<login-module code="com.totvs.foundation.auth.FoundationLdapLoginModule" flag="required" module="com.totvs.foundation.auth"> <module<module-option name="java.naming.factory.initial" value="com.sun.jndi.ldap.LdapCtxFactory"/> <module<module-option name="java.naming.provider.url" value="ldap://<SERVIDOR>:<PORTA><SERVIDOR>:<PORTA>/"/> <module<module-option name="java.naming.security.authentication" value="simple"/> <module<module-option name="java.naming.security.protocol" value=""/> <module<module-option name="uidAttributeID" value="sAMAccountName"/> <module<module-option name="principalDNSuffix" value="@<DOMINIO>@<DOMINIO>"/> <module<module-option name="rolesCtxDN" value="DC=local"/> <module<module-option name="loginCombinedWithDatabase" value="false"/> <module<module-option name="hashAlgorithm" value="MD5"/> <module<module-option name="hashEncoding" value="HEX"/> <module-option name="principalClass" value="com.totvs.technology.foundation.common.TOTVSTechPrincipal"/> </login-module> </authentication> </security-domain> |
Sugerencia: En el caso que opte por utilizar el login "combinado", es decir, login/contraseña de la red E del banco de datos, modifique el valor de la propiedad loginCombinedWithDatabase para "true".
En el caso que se utilice el LDAP con necesidad de credencial, sustituya por el siguiente fragmento:
| Bloco de código | ||||
|---|---|---|---|---|
| ||||
<security</login-module> </authentication> </security-domain></pre> </div> </div> <p> <em style="line-height: 1.4285715;"><em><strong>Tip:</strong> If you choose to use a "combined" login, i.e. login/network AND database password, change the value of the <em><em>loginCombinedWithDatabase property to "true".</em></em></em></em> </p> <p> <em><em><br /></em></em> </p> <p> <em><em><br /></em></em> </p> <p>If you use LDAP with the need for credential, replace it with the following string:</p> <div class="code panel pdl" style="border-width: 1px;"> <div class="codeContent panelContent pdl"> <pre class="theme: Eclipse; brush: javascript; gutter: false" style="font-size: 12px;"><security-domain name="TOTVSTech" cache-type="default"> <authentication> <login<authentication> <login-module code="com.totvs.foundation.auth.FoundationExtLdapLoginModule" flag="required" module="com.totvs.foundation.auth"> <module<module-option name="java.naming.factory.initial" value="com.sun.jndi.ldap.LdapCtxFactory"/> <module<module-option name="java.naming.provider.url" value="ldap://<SERVIDOR>:<PORTA><SERVIDOR>:<PORTA>/"/> <module<module-option name="java.naming.security.authentication" value="simple"/> <module<module-option name="java.naming.security.protocol" value=""/> <module<module-option name="java.naming.security.principal" value="<USUARIO>@<DOMINIO><USUARIO>@<DOMINIO>"/> <module<module-option name="java.naming.security.credentials" value="<SENHA><SENHA>"/> <module<module-option name="uidAttributeID" value="sAMAccountName"/> <module<module-option name="baseFilter" value="(sAMAccountName={0})"/> <module<module-option name="loginCombinedWithDatabase" value="false"/> <module<module-option name="baseCtxDN" value="DC=<ESTRUTURA><ESTRUTURA>"/> <module<module-option name="rolesCtxDN" value="DC=<ESTRUTURA><ESTRUTURA>"/> <module<module-option name="hashAlgorithm" value="MD5"/> <module<module-option name="hashEncoding" value="HEX"/> <module-option name="principalClass" value="com.totvs.technology.foundation.common.TOTVSTechPrincipal"/> </login-module> </authentication> </security-domain> |
...
</login-module>
</authentication>
</security-domain></pre>
</div>
</div>
<p>
<strong>Tip:</strong><span> If you choose to use a
"combined" login, i.e. login/network AND database password, change
the value of the </span><em><em>loginCombinedWithDatabase
property to "true".</em></em>
</p>
<p>
<em><em><br /></em></em>
</p>
<p>
<em><em><br /></em></em>
</p>
</div>
|
Visão Geral
Import HTML Content
Conteúdo das Ferramentas
Tarefas