HTML


<div id="main-content" class="wiki-content group">
	<h1
		id="ConfiguraçõesparaAutenticaçãoemMúltiplosServidoresADcomProtocoloLDAP-Índice">Contents</h1>
	<p>
		<style type='text/css'>/*<![CDATA[*/
div.rbtoc1412695400160 {
	padding: 0px;
}
div.rbtoc1412695400160 ul {
	list-style: none;
	margin-left: 0px;
}
div.rbtoc1412695400160 li {
	margin-left: 0px;
	padding-left: 0px;
}
/*]]>*/
</style>
	<div class='toc-macro rbtoc1412695400160'>
		<ul class='toc-indentation'>
			<li><span class='TOCOutline'>1</span> <a
				href='#ConfiguraçõesparaAutenticaçãoemMúltiplosServidoresADcomProtocoloLDAP-Objetivo'>Objective</a></li>
			<li><span class='TOCOutline'>2</span> <a
				href='#ConfiguraçõesparaAutenticaçãoemMúltiplosServidoresADcomProtocoloLDAP-AutenticaçãoemMúltiplosServidoresADcomProtocoloLDAP'>Authentication
					settings across multiple AD Servers with LDAP Protocol</a></li>
		</ul>
	</div>
	</p>
	<h1
		id="ConfiguraçõesparaAutenticaçãoemMúltiplosServidoresADcomProtocoloLDAP-Objetivo">Objective</h1>
	<p>
		The objective of this guide is to present the valid configurations for
		authentication in multiple AD servers using the LDAP protocol (<em>Lightweight
			Directory Access Protocol</em>).
	</p>
	<h1
		id="ConfiguraçõesparaAutenticaçãoemMúltiplosServidoresADcomProtocoloLDAP-AutenticaçãoemMúltiplosServidoresADcomProtocoloLDAP">Authentication
		settings across multiple AD Servers with LDAP Protocol</h1>
	<p>To define these configurations, the file
		&lt;INSTALL

Índice

outline	true
style	none
exclude	.*ndice

Objetivo

El objetivo de esta guía es presentar las configuraciones válidas para la autenticación en múltiples servidores AD, utilizando el protocolo LDAP ( (Lightweight Directory Access Protocol).

Autenticación en Múltiples Servidores AD con Protocolo LDAP

...

_FLUIG>\jboss\configuration\standalone.xml

...

Busque el tramo del código a seguir:

<security

 needs to be
		modified, according to the steps below:</p>
	<p>&#160;</p>
	<a name="composition-deck-samples"></a>
	<div id="samples" class="deck" history="false" loopcards="false"
		effecttype="fade" effectduration="0.5" nextafter="0.0">
		<ul class="tab-navigation"></ul>
		<!-- // .tab-navigation -->
		<div class="deck-cards panel" style="">
			<div id="1" class="deck-card  active-pane" style="" cssclass=""
				accesskey="" label="Passo1" title="" nextafter="0"
				effecttype="default" effectduration="-1.0">
				<p>&#160;</p>
				<ul>
					<li><p>Look for the snippet below:</p>
						<div class="code panel pdl" style="border-width: 1px;">
							<div class="codeContent panelContent pdl">
								<pre class="theme: Confluence; brush: html/xml; gutter: false"
									style="font-size: 12px;">&lt;security-domain name="TOTVSTech" cache-type="default">

&lt;authentication>

<login

&lt;login-module code="com.totvs.foundation.auth.FoundationDatabaseServerLoginModule" flag="required" module="com.totvs.foundation.auth">

<module

&lt;module-option name="hashAlgorithm" value="MD5"/>

<module

&lt;module-option name="hashEncoding" value="HEX"/>

<module

&lt;module-option name="principalClass" value="com.totvs.technology.foundation.common.TOTVSTechPrincipal"/>

<

&lt;/login-module>

<

&lt;/authentication>

</security-domain>

Sustituya la estructura de tags login-module por la siguiente estructura:

<login

&lt;/security-domain></pre>
							</div>
						</div></li>
				</ul>
			</div>
			<div id="2" class="deck-card " style="" cssclass="" accesskey=""
				label="Passo 2" title="" nextafter="0" effecttype="default"
				effectduration="-1.0">
				<p>&#160;</p>
				<div>
					<ul>
						<li><p>
								Replace the tags structure <em>login-module</em> for the
								following structure:
							</p>
							<div class="code panel pdl" style="border-width: 1px;">
								<div class="codeContent panelContent pdl">
									<pre class="theme: Confluence; brush: html/xml; gutter: false"
										style="font-size: 12px;">&lt;login-module code="com.totvs.foundation.auth.FoundationExtLdapLoginModule" flag="sufficient" module="com.totvs.foundation.auth">

<module

&lt;module-option name="java.naming.factory.initial" value="com.sun.jndi.ldap.LdapCtxFactory"/>

<module

&lt;module-option name="java.naming.provider.url" value="ldap://

<SERVIDOR

&lt;SERVIDOR AD 1>:

<PORTA

&lt;PORTA AD 1>/"/>

<module

&lt;module-option name="java.naming.security.authentication" value="simple"/>

<module

&lt;module-option name="java.naming.security.protocol" value=""/>

<module

&lt;module-option name="java.naming.security.principal" value="

<USUARIO

&lt;USUARIO AD

1>@<DOMINIO

1>@&lt;DOMINIO AD1>"/>

<module

&lt;module-option name="java.naming.security.credentials" value="

<SENHA

&lt;SENHA AD 1>"/>

<module

&lt;module-option name="uidAttributeID" value="sAMAccountName"/>

<module

&lt;module-option name="baseFilter" value="(sAMAccountName={0})"/>

<module

&lt;module-option name="loginCombinedWithDatabase" value="false"/>

<module

&lt;module-option name="baseCtxDN" value="DC=

<ESTRUTURA

&lt;ESTRUTURA AD 1>"/>

<module

&lt;module-option name="rolesCtxDN" value="DC=

<ESTRUTURA

&lt;ESTRUTURA AD 1>"/>

<module

&lt;module-option name="hashAlgorithm" value="MD5"/>

<module

&lt;module-option name="hashEncoding" value="HEX"/>

<module-option name="principalClass" value="com.totvs.technology.foundation.common.TOTVSTechPrincipal"/> <

&lt;/login-module>

<login

&lt;login-module code="com.totvs.foundation.auth.FoundationExtLdapLoginModule" flag="sufficient" module="com.totvs.foundation.auth">

<module

&lt;module-option name="java.naming.factory.initial" value="com.sun.jndi.ldap.LdapCtxFactory"/>

<module

&lt;module-option name="java.naming.provider.url" value="ldap://

<SERVIDOR

&lt;SERVIDOR AD 2>:

<PORTA

&lt;PORTA AD 2>/"/>

<module

&lt;module-option name="java.naming.security.authentication" value="simple"/>

<module

&lt;module-option name="java.naming.security.protocol" value=""/>

<module

&lt;module-option name="java.naming.security.principal" value="

<USUARIO

&lt;USUARIO AD

2>@<DOMINIO

2>@&lt;DOMINIO AD 2>"/>

<module

&lt;module-option name="java.naming.security.credentials" value="

<SENHA>

&lt;SENHA>"/>

<module

&lt;module-option name="uidAttributeID" value="sAMAccountName"/>

<module

&lt;module-option name="baseFilter" value="(sAMAccountName={0})"/>

<module

&lt;module-option name="loginCombinedWithDatabase" value="false"/>

<module

&lt;module-option name="baseCtxDN" value="DC=

<ESTRUTURA

&lt;ESTRUTURA AD 2>"/>

<module

&lt;module-option name="rolesCtxDN" value="DC=

<ESTRUTURA

&lt;ESTRUTURA AD 2>"/>

<module

&lt;module-option name="hashAlgorithm" value="MD5"/>

<module

&lt;module-option name="hashEncoding" value="HEX"/>
&lt;/login-module></pre>
								</div>
							</div></li>
					</ul>
				</div>
			</div>
			<div id="3" class="deck-card " style="" cssclass="" accesskey=""
				label="Passo

<module-option name="principalClass" value="com.totvs.technology.foundation.common.TOTVSTechPrincipal"/> </login-module>

En el caso que sea necesario utilizar también la autenticación por parte de los datos del banco de datos, se debe agregar también la siguiente estructura de tag login-module:

<login

3" title="" nextafter="0" effecttype="default"
				effectduration="-1.0">
				<p>&#160;</p>
				<ul>
					<li><p>
							In case authentication through data of the data bank is also
							required, the following tag structure <em>login-module</em> must
							also be added:
						</p>
						<div class="code panel pdl" style="border-width: 1px;">
							<div class="codeContent panelContent pdl">
								<pre class="theme: Confluence; brush: html/xml; gutter: false"
									style="font-size: 12px;">&lt;login-module code="com.totvs.foundation.auth.FoundationDatabaseServerLoginModule" flag="sufficient" module="com.totvs.foundation.auth">

<module

&lt;module-option name="hashAlgorithm" value="MD5"/>

<module

&lt;module-option name="hashEncoding" value="HEX"/>

<module

&lt;module-option name="principalClass" value="com.totvs.technology.foundation.common.TOTVSTechPrincipal"/>
&lt;/login-module></pre>
							</div>
						</div></li>
				</ul>
			</div>
		</

login-module>

div>
	</div>
	<!-- // .deck -->
	<p>&#160;</p>
	<p>&#160;</p>
</div>

Deck of Cards

effectDuration	0.5
id	samples
history	false
effectType	fade

Card

default	true
id	1
label	Paso 1

Bloco de código

language	html/xml

Card

id	2
label	Paso 2

Bloco de código

language	html/xml

Card

id	3
label	Paso 3

Bloco de código

language	html/xml

Árvore de páginas

Versões comparadas

Versão antiga 1

Nova versão 2

Chave

Índice

Objetivo

Autenticación en Múltiples Servidores AD con Protocolo LDAP

Árvore de páginas

Histórico da Página

Versões comparadas

Versão antiga 1

Nova versão 2

Chave

Índice

Objetivo

Autenticación en Múltiples Servidores AD con Protocolo LDAP