Hi,
You should create a user with the same login in your CUBA application. You should set up access rights for this user. As LDAP is used only for authentication (password storing).
By default, login is matched with sAMAccountName of the entry (Active directory stores login in this property).
If you use another LDAP implementation, for instance, Apache DS and another field is ID, you should adjust cuba.web.ldap.userLoginField.
In my test environment I use Apache Directory Studio. By default “sn” is used as ID there. So I have got the following settings:
Thank you,
I just solved the problem.
I found the class of CubaAuthProvider is obsolete in cuba-6.8 .
so I back to 6.7 ,set cuba.web.externalAuthentication = true and creat a class implements CubaAuthProvider,
and I Override the methods of authenticate,Use my own method to validation username.
Now ,It’s OK!
I’d recommend that you take a look at the new login subsystem in 6.8 version. You can easily replace existing LdapLoginProvider (or implement a new one): Web Login - CUBA Platform. Developer’s Manual instead of using deprecated external authentication property.
iskandarov
(Rostislav Iskandarov)
Split this topic
#15