5 Replies Latest reply on Jan 12, 2012 2:33 AM by yves.p

JBoss 7.1.CR1 LDAP Security Realm

gboro54 Jan 11, 2012 9:31 AM

Hi everyone,

I am trying to configure the admin console so authenticate against ldap in JBoss 7.1.CR1. I have set security realm up as follows:

{code:xml}
    <management>
        <security-realms>
            <security-realm name="ManagementRealm">
                <authentication>
                    <properties path="mgmt-users.properties" relative-to="jboss.server.config.dir"/>
                </authentication>
            </security-realm>
                              <security-realm name="LDAPRealm">
                                        <authentication>
                                                  <ldap connection="ldap_connection" recursive="true" base-dn="dc=x,dc=n">
                                                            <advanced-filter filter="cn=test users,ou=test Groups"/>
                                                  </ldap>
                                        </authentication>
                              </security-realm>
        </security-realms>
                    <outbound-connections>
         <ldap name="ldap_connection" url="ldaps://connection.ldap.com" search-dn="USER" search-credential="test1"/>
                    </outbound-connections>
        <management-interfaces>
            <native-interface security-realm="ManagementRealm">
                <socket-binding native="management-native"/>
            </native-interface>
            <http-interface security-realm="LDAPRealm">
                <socket-binding http="management-http"/>
            </http-interface>
        </management-interfaces>
    </management>


{code}

With this setup I get the following error :

09:29:54,579 ERROR [org.jboss.as.controller.management-operation] Operation ("add") failed - address: ([
    ("core-service" => "management"),
    ("security-realm" => "LDAPRealm"),
    ("authentication" => "ldap")
]) - failure description: "JBAS014746: username-attribute may not be null"

What am I missing in this setup? I have tried adding the username elemnt to no avail. Any thoughts?

1. Re: JBoss 7.1.CR1 LDAP Security Realm

yves.p Jan 11, 2012 1:05 PM (in response to gboro54)

I also run into this and opened a thread and a jira for it:
https://community.jboss.org/message/644756
Actions
2. Re: JBoss 7.1.CR1 LDAP Security Realm

gboro54 Jan 11, 2012 1:29 PM (in response to yves.p)

Thanks for the info. Do you have the link to the JIRA? I didn't see it in your thread and would like to track it.
Actions
3. Re: JBoss 7.1.CR1 LDAP Security Realm

gboro54 Jan 11, 2012 1:29 PM (in response to yves.p)

Thanks for the info. Do you have the link to the JIRA? I didn't see it in your thread and would like to track it.
Actions
4. Re: JBoss 7.1.CR1 LDAP Security Realm

gboro54 Jan 11, 2012 1:29 PM (in response to yves.p)

Thanks for the info. Do you have the link to the JIRA? I didn't see it in your thread and would like to track it.
Actions
5. Re: JBoss 7.1.CR1 LDAP Security Realm

yves.p Jan 12, 2012 2:33 AM (in response to gboro54)

It's linked on the top of the page, under "Related Issues". Link: https://issues.jboss.org/browse/AS7-3197
Actions

Go to original post