2 Replies Latest reply on Apr 22, 2014 4:55 PM by adila01

    JBoss EAP 6.2 (JBoss 7.1) And LDAP - Manage LDap Users (Active Directory)

    vintubr

      Hi All,

       

      I have been reading and trying to find the best solution to my problem.

       

      I need to change some Active Directory attributes (user password, groups and other attributes (I can't tell exactly which ones now)) through a web application I am developing (the application is like an IDM: Identity Management system) and I would like to know which is the best solution.

      I thought about the following: create like a LDap "datasource" in JBoss (Application Server managed), use it to connect to LDap, load and change LDap attributes through it.

             I have been reading and I could find only the possibilities below:

             1. ExternalContext:

               Create an ExternalContext to connect to LDap while the JBoss server is starting and access (load and change) Active Directories' LDap attributes. I found some examples but they were only applied to older versions of JBoss, and I could not find an example that fits JBoss 7.1 (standalone.xml) needs.

              These links are about older versions:

      https://docs.jboss.org/jbossas/docs/Server_Configuration_Guide/4/html/Additional_Naming_MBeans-org.jboss.naming.ExternalContext_MBean.html

      https://community.jboss.org/thread/175856

       

              2. JAAS:

              With this option, I do not even know if it is possible to load and change LDap attributes. If it is, can you show me an example?

              I found some links but they are only authenticating users, not loading and changing LDap attributes: http://middlewaremagic.com/jboss/?p=378

      http://stackoverflow.com/questions/16483236/jboss-connection-configuration-for-ldap

       

               3. JBoss GateIn

               If it is possible to access GateIn's LDap features programmatically, I think it would be possible to do what I want, but I could not find an example.

               I found some links, but I don't think they suit my needs: http://docs.jboss.com/jbportal/v2.6.4/referenceGuide/html/authentication.html#portal_login_modules

       

      Please, if I said something stupid, don't mind, I am just trying to find a solution to my problem.

       

      Thanks for your attention and if I was not that clear with my question, please, let me know.

       

      Regards!