Thanks a lot, i will try that as soon as possible associated
with the loginCAS plugin.
Our LDAP server contains 100000 users today. I've seen that
te scope of enumeration can be restricted with a filtrer in
the plugins ldap configuration.
Olivier
----- Message d'origine -----
De: Florent Guillaume <fg nuxeo.com>
Date: Mercredi, Février 28, 2007 10:52 am
Objet: Re: [Ecm] Re: LDAP configuration
À: ECM List <ecmlists.nuxeo.com>
> On 28 Feb 2007, at 09:43, Olivier Grisel wrote:
> > Olivier Adam a écrit :
> >> Hello
> >>
> >> I wish to configure an existig LDAP Directory
as users repository.
> >> Are the next operations enought for success ?
> >> 1. checking out the component from the
source repository
> >> 2. modifing the
resources/default-ldap-users-directory-
> bundle.xml>>
> <http://svn.nuxeo.org/nuxeo/org.nuxeo.ecm.directory
/trunk/ldap/
> >>
resources/default-ldap-users-directory-bundle.xml>
> >> for configuring the parameters of my ldap
server
> >> 3. launching an "mvn install"
> >> 4. launching an "ant deploy-ecm"
> >> 5. restarting Jboss server
> >
> > That should be that except you should the
standalone-deploy-ecm
> > target instead.
> >
> > You should also be aware of some current
limitations:
> >
> > - the user management screens can cope with a LDAP
with 1000 or
> > 10000 users but
> > not much more yet.
> > - the write mode is not finished, so trying the
attribute of
> users
> > (name,
> > password, emails) through those screens will not
crash but will
> not
> > update the
> > data in the LDAP either
> > - the groups are still managed in the SQL
directories though this
>
> > should
> > probably change in a week or too.
> >
> > You should also set a user from your LDAP as
administrator in:
> >
> > default-ldap-users-directory-bundle.xml
> >
> > And tiry also made a mode were all users are made
virtually
> > belonging to the
> > members groups by default though I do not remember
were to set
> that
> > right now.
> > Please feel free to ask again if you need more
info.
>
> To have all users virtually belong to a group, and also
define an
> administrator, use something like:
>
> <component
name="some.thing.usermanagerimpl">
> <extension
>
target="org.nuxeo.ecm.platform.usermanager.UserService&
quot;
> point="userManager">
> <userManager
>
class="org.nuxeo.ecm.platform.usermanager.UserManagerIm
pl">
>
<defaultGroup>members</defaultGroup>
>
<rootLogin>Administrator</rootLogin>
> </userManager>
> </extension>
> </component>
>
> (I'll probably change "rootLogin" to another
name in the future...
> it's not coherent with the other uses.)
>
> Florent
>
> --
> Florent Guillaume, Director of R&D, Nuxeo
> Open Source Enterprise Content Management (ECM)
> http://www.nuxeo.com
http://www.nuxeo.org
+33 1 40 33 79 87
>
>
>
> _______________________________________________
> ECM mailing list
> ECMlists.nuxeo.com
> http://li
sts.nuxeo.com/mailman/listinfo/ecm
>
_______________________________________________
ECM mailing list
ECMlists.nuxeo.com
http://li
sts.nuxeo.com/mailman/listinfo/ecm
|
