[[Mathias Chauvin]] - IT stuff - Latest comments

David [Visitor] in response to: Tomcat LDAP authentication

David [Visitor] — Sun, 29 Aug 2010 15:36:30 +0000

Hello,

Thankyou for the article and the help comments. I have got the following info from an apache server. I have change the domain, group and company names. I do not know how to map this info to the tomcat configuration.
AuthLdapUrl ldap://ldap02.domain.com:389/o=company,c=com?uid?sub?(objectClass=*)

Require ldap-group cn=thegroup,o=company,c=com

James [Visitor] in response to: Tomcat LDAP authentication

James [Visitor] — Sun, 29 Aug 2010 01:17:45 +0000

Hallo,
what do uid={0} and memberUid={1} mean? I a mean the numbers between curly brackets. Great tutorial.
James

Thias [Member] in response to: Tomcat LDAP authentication

Thias [Member] — Fri, 27 Aug 2010 14:04:48 +0000

@David,

The entry userPattern="uid={0},ou=people,dc=domain,dc=com" should match your LDAP server.
In my case, users are stored in LDAP (I'm running Sun Directory Server here - but I could have been OpenLDAP or any other one) following this schema:
The user name is known by the uid.
Users entries are stored in the "people" ou, for the "domain.com" domain.

uid, ou, dc, cn, ... are quite standard, but the LDAP schema may vary depending on the LDAP server you're using...

Well, that's a really short answer to your long question, but anyone who wants to add more is welcome! ;-)

David [Visitor] in response to: Tomcat LDAP authentication

David [Visitor] — Fri, 27 Aug 2010 13:23:44 +0000

Hallo again,
Do I need to change the pairs ou=people, dc=domain, uid=(0) to the equivalentes in my LDAP server. I mean both sides (Strings) of the comparison? Or maybe just the right side value of the comparison? Are the keywords uid, ou, dc, cn, memberUid standard keywords for all posible configurations? And by configurations also mean not only in Tomcat, but also Spring Security, etc. I know this is an exhaustive question, I am having problems finding documntation. Thank you for the tutorial.

Rick [Visitor] in response to: Time Machine not completing backup due to backup disk already in use

Rick [Visitor] — Fri, 27 Aug 2010 13:10:11 +0000

Fantastic tip, thanks! As for your comment @Danny: I think the cause of the problem is the backup being prematurely stopped. My system backs up one an hour, and if while it is backing up, I close my laptop, it seems to make the next backup have this problem. I presume that the backup volume thinks it's still connected and so when the backup tries to get access, it tells it it is already in use.

Newie [Visitor] in response to: Tomcat LDAP authentication

Newie [Visitor] — Fri, 27 Aug 2010 11:58:11 +0000

Hello, nice tutorial. In order to understand LDAP, It would be great if you could highlight in bold the generic parameters in the "Realm" definition that need to be matched from the real ldap server.
Thank you.
Newie

Jose Torres [Visitor] in response to: Registering a SAMBA Solaris 10 server as a MS AD member

Jose Torres [Visitor] — Thu, 26 Aug 2010 15:42:18 +0000

Thank you for this guide. The instructions proved invaluable!

For those following along, in the following command, "pass" should be "ktpass" and "HOST" should be "sol10svr":

pass -princ HOST/sol10svr@NULLDOM.COM -mapuser sol10svr@NULLDOM.com -pass TheUnknownP@sswd -out sol10svr.keytab

Obviously, make the necessary changes per your configuration.

homepage [Visitor] in response to: Access Based Enumeration and Windows 2003 Cluster

homepage [Visitor] — Wed, 25 Aug 2010 06:20:43 +0000

Nice post, thanks!