TOTVS Fluig English

Árvore de páginas

Versões comparadas

Versão antiga 1

changes.mady.by.user Igor Duquia Giumelli

Gravado em

comparado com

Nova versão Atual

changes.mady.by.user Denise De Deus

Gravado em

Chave

  • Esta linha foi adicionada.
  • Esta linha foi removida.
  • A formatação mudou.

Índice

Índice
outlinetrue
stylenone
exclude.*ndice

Objetivo

stylenone

Objective

The objective of this guide is to present the valid configurations for authentication in multiple AD servers using the LDAP protocol El objetivo de esta guía es presentar las configuraciones válidas para la autenticación en múltiples servidores AD, utilizando el protocolo LDAP (  (Lightweight Directory Access Protocol).

Autenticación en Múltiples Servidores AD con Protocolo LDAP

Authentication settings across multiple AD Servers with LDAP Protocol

To define these configurations, the file Para definir las configuraciones, es necesario modificar el archivo <INSTALL_FLUIG>\jboss\configuration\standalone.xml , conforme a los pasos a seguirneeds to be modified, according to the steps below:


Deck of Cards
effectDuration0.5
historyfalse
idsamples
historyfalse
effectTypefade
Card
defaulttrue
id1
labelPaso Step 1


 

  • Busque el tramo del código a seguirLook for the snippet below:

    Bloco de código
    languagehtml/xml
    <security-domain name="TOTVSTech" cache-type="default">
 <authentication>
 <login-module code="com.totvs.foundation.auth.FoundationDatabaseServerLoginModule" flag="required" module="com.totvs.foundation.auth">
 <module-option name="hashAlgorithm" value="MD5"/>
 <module-option name="hashEncoding" value="HEX"/>
 <module-option name="principalClass" value="com.totvs.technology.foundation.common.TOTVSTechPrincipal"/>
 </login-module>
 </authentication>
</security-domain>
Card
id2
labelPaso Step 2


 

  • Sustituya la estructura de tags Replace the tags structure login-module por la siguiente estructura for the following structure:

    Bloco de código
    languagehtml/xml
    <login-module code="com.totvs.foundation.auth.FoundationExtLdapLoginModule" flag="sufficient" module="com.totvs.foundation.auth">
<module-option name="java.naming.factory.initial" value="com.sun.jndi.ldap.LdapCtxFactory"/>
        <module-option name="java.naming.provider.url" value="ldap://<SERVIDOR AD 1>:<PORTA AD 1>/"/> 
        <module-option name="java.naming.security.authentication" value="simple"/> 
        <module-option name="java.naming.security.protocol" value=""/> 
        <module-option name="java.naming.security.principal" value="<USUARIO AD 1>@<DOMINIO AD1>"/> 
        <module-option name="java.naming.security.credentials" value="<SENHA AD 1>"/> 
        <module-option name="uidAttributeID" value="sAMAccountName"/>
        <module-option name="baseFilter" value="(sAMAccountName={0})"/>
        <module-option name="loginCombinedWithDatabase" value="false"/> 
        <module-option name="baseCtxDN" value="DC=<ESTRUTURA AD 1>"/> 
        <module-option name="rolesCtxDN" value="DC=<ESTRUTURA AD 1>"/> 
        <module-option name="hashAlgorithm" value="MD5"/>
        <module-option name="hashEncoding" value="HEX"/>
        <module-option name="principalClass" value="com.totvs.technology.foundation.common.TOTVSTechPrincipal"/>
</login-module>
<login-module code="com.totvs.foundation.auth.FoundationExtLdapLoginModule" flag="sufficient" module="com.totvs.foundation.auth">
<module-option name="java.naming.factory.initial" value="com.sun.jndi.ldap.LdapCtxFactory"/>
        <module-option name="java.naming.provider.url" value="ldap://<SERVIDOR AD 2>:<PORTA AD 2>/"/> 
        <module-option name="java.naming.security.authentication" value="simple"/> 
        <module-option name="java.naming.security.protocol" value=""/> 
        <module-option name="java.naming.security.principal" value="<USUARIO AD 2>@<DOMINIO AD 2>"/> 
        <module-option name="java.naming.security.credentials" value="<SENHA>"/> 
        <module-option name="uidAttributeID" value="sAMAccountName"/>
        <module-option name="baseFilter" value="(sAMAccountName={0})"/>
        <module-option name="loginCombinedWithDatabase" value="false"/> 
        <module-option name="baseCtxDN" value="DC=<ESTRUTURA AD 2>"/> 
        <module-option name="rolesCtxDN" value="DC=<ESTRUTURA AD 2>"/> 
        <module-option name="hashAlgorithm" value="MD5"/>
        <module-option name="hashEncoding" value="HEX"/>
        <module-option name="principalClass" value="com.totvs.technology.foundation.common.TOTVSTechPrincipal"/>
</login-module>
Card
id3
labelPaso 3Step 3


  • In case authentication through data of the data bank is also required, the following tag structure login-module must also be added

 

  • En el caso que sea necesario utilizar también la autenticación por parte de los datos del banco de datos, se debe agregar también la siguiente estructura de tag login-module:

    Bloco de código
    languagehtml/xml
    <login-module code="com.totvs.foundation.auth.FoundationDatabaseServerLoginModule" flag="sufficient" module="com.totvs.foundation.auth">
 <module-option name="hashAlgorithm" value="MD5"/>
 <module-option name="hashEncoding" value="HEX"/>
 <module-option name="principalClass" value="com.totvs.technology.foundation.common.TOTVSTechPrincipal"/>
</login-module>