...
| Code Block |
|---|
<group name="security" description="security configuration">
<property name="access.control.configuration" value="${ceptor.home}/config/ceptor-security-ldap.xml" description="access control definitions"/>
<property name="access.controller" value="dk.itp.security.accesscontrol.AccessControlListLDAPImpl" description="config server access controller implementation"/>
<property name="remote.servers" value="localhost,192.168.255.255,10.255.255.255" description="allowed remote servers, host:port separated by ,;"/>
</group>
<group name="ldap" description="LDAP configuration">
<property name="ldap.basedn" value="dc=adtest,dc=net" description="The base DN to use"/>
<property name="ldap.bindUsers" value="true"/>
<property name="ldap.searchFirstThenBind" value="true" description="Search the user through ldap.useridName first - and then bind then DN"/>
<property name="ldap.protocolVersion" value="3"/>
<property name="ldap.servers" value="adtest.net:389" description="The list of LDAP servers to use"/>
<property name="ldap.systempassword" value="<password>" description="The password for the system user"/>
<property name="ldap.systemuser" value="cn=Administrator,cn=Users,dc=adtest,dc=net" description="The system user to bind to LDAP"/>
<property name="ldap.useridName" value="anr" description="The search criteria for user search"/>
<property name="ldap.usersRDN" value="cn=Users"/>
<property name="ldap.usersRDNName" value="cn=Users" description="RDN Name in the subtree that users are stored under"/>
</group>
|
...
Information on how to create and update rights on an ACLs can be found in the section above on this page.
| Tip | ||
|---|---|---|
| ||
From Ceptor v6.5.4 the default implementation of the LDAP Authentication plugin has switched to used UnboundID LDAP client - if you for any reason still need the old implementation, you can set the following configuration property:
|