Alfresco with OpenLDAP

(simple authentication)

2008/06/12
mryoshio

Alfresco with OpenLDAP(simple authentication)

Index

Summary 2
Notice 2
Environment 3
Software 3
System 3
Install & Configure Alfresco 4
Download 4
Install 4
Configure 4
Install & Configure OpenLDAP 5
Download & Install 5
Configure 5
Check it works 7
Login Alfresco 7

Alfresco with OpenLDAP(simple authentication) 1

Summary

This report shows how to setup Alfresco with OpenLDAP in using simple authentication.

So you have to add some special settings when you need secure authentication.

Notice
The words like “mryoshio”, “YAMADA” are examples.They don’t have special meanings.

Please replace them with your domain or favorite ones.

Alfresco with OpenLDAP(simple authentication) 2

Environment

Software
Alfresco Server OpenLDAP Server
OS Mac OS X 10.4.11 CentOS 5.1

Alfresco 2.1.0 Community Network -

OpenLDAP - 2.3.27

System
Alfresco Server OpenLDAP Server

valid user?
Alfresco OpenLDAP

Yes/No

try login Login OK/NG

Client

Alfresco with OpenLDAP(simple authentication) 3

Install & Configure Alfresco

Download
- Go to Alfresco Download site.
http://sourceforge.net/project/showfiles.php?group_id=143373&package_id=157460&release_id=524558

- Download alfresco-community-tomcat-2.1.0.tar.gz on your desktop.

Install
- Execute following commands.

$ cd ${ALF_HOME} 1
$ tar xvzf ~/Desktop/alfresco-community-tomcat-2.1.0.tar.gz

Configure
- Edit ldap-authentication-context.xml .

$ cd ${ALF_HOME}/tomcat/shared/classes/alfresco/extension/
$ cp ldap-authentication-context.xml.sample ldap-authentication-context.xml
$ vi ldap-authentication-context.xml

----------
L.41 <value>%s</value> => <value>cn=%s,dc=mryoshio,dc=jp</value>
~~~
L.64 <value>ldap://openldap.domain.com:389</value> => <value>ldap://<Your OpenLDAP Server 2>:389</value>
~~~
L.72 <value>DIGEST-MD5</value> => <value>simple</value>
----------

1 ${ALF_HOME} means your Alfresco install directory.

2 Replace it with your server name or IP address.

Alfresco with OpenLDAP(simple authentication) 4
Install & Configure OpenLDAP

Download & Install

- Donwload and install OpenLDAP via yum.

# yum install openldap-servers

Configure
- Edit /etc/openldap/slapd.conf.
$ vi /etc/openldap/slapd.conf

----------
suffix “dc=mryoshio,dc=jp”
rootdn “cn=Manager,dc=mryoshio,dc=jp”
----------

- Create a new LDIF file on a host which have ldapXXX commands.

$ vi ~/Desktop/alfSample.ldif

----------
# top
dn: dc=mryoshio,dc=jp
objectClass: dcObject
objectClass: organization
o: mryoshio corporation
dc: mryoshio

dn: cn=Manager,dc=mryoshio,dc=jp
objectClass: organizationalRole
cn: Manager

# member
dn: cn=YAMADA Yuji,dc=mryoshio,dc=jp
objectClass:inetOrgPerson
sn: YAMADA
cn: YAMADA Yuji
userPassword: yamada

Alfresco with OpenLDAP(simple authentication) 5

uid: yamayu
givenName: Yuji
mail: yuji.yamada@mryoshio.jp
o: mryoshio corporation

----------

Register entries by ldapadd command.

$ ldapadd -x -h <Your OpenLDAP Server> -D “cn=Manager,dc=mryoshio,dc=jp“ -W -f alfSample.ldif

Check registered entries

$ ldapsearch -h <Your OpenLDAP Server> -p 389 -x -b “dc=mryoshio,dc=jp“ -s sub “uid=*“

Alfresco with OpenLDAP(simple authentication) 6

Check it works

Login Alfresco
Access to http://<Your Alfresco Server 1>:8080/alfresco/

Input User Name: YAMADA Yuji, Password: yamada and Login.

It’s OK if you logged in.

1 Replace it with your server name or IP address.

Alfresco with OpenLDAP(simple authentication) 7