0 Replies Latest reply on Mar 7, 2013 3:50 PM by ndrw_cheung

    LdapExtLoginModule : how to make authentication case-insensitive? (x-posted in PicketLink UserForum)

    ndrw_cheung
    ndrw_cheung Mar 7, 2013 3:50 PM

      Hi. I'm using the following configuration for a security domain used by Picketlink (version 2.1.4) on JBoss EPP 5.2.1, but would like to make it so that the user's cn is case-INSENSITIVE. Not sure if this can be configured here in the security domain or would it be configured in the picketlink.xml file.

      Here are my current settings:

       

      <login-module code="org.jboss.security.auth.spi.LdapExtLoginModule" flag="required">
                <module-option name="java.naming.provider.url">ldap://127.0.0.1:389</module-option>
                <module-option name="bindDN">cn=mygenericuser,ou=Canada,o=com</module-option>
                <module-option name="bindCredential">hello123</module-option>
                <module-option name="baseCtxDN">ou=Canada,o=com</module-option>
                <module-option name="baseFilter">(cn={0})</module-option>
                <module-option name="rolesCtxDN">ou=Canada,o=com</module-option>
                <module-option name="roleFilter">(cn={0})</module-option>
                <module-option name="roleAttributeID">employeetype</module-option>
      </login-module>

       

      Any help is appreciated.

       

        -Andrew