-
1. Re: Set timeout property for ldap Connections
mchoma Oct 4, 2016 1:30 AM (in response to simranjeetsingh1786)Hi,
probably it has nothing to do with timeouts.
you are connecting to port 636, what use to be ldaps protocol (ldap over TLS). And you get "Unable to verify identity" , so probably your truststore doesn't contain proper certificate of server.
Does it work on non-secured connection?
Martin
-
2. Re: Set timeout property for ldap Connections
simranjeetsingh1786 Oct 4, 2016 3:06 PM (in response to mchoma)Hi Martin,
I am not using any truststore for connecting to ldap Server.
Below is the snippet from standalone.xml configuration for ldap
<security-realm name="ManagementRealm">
<authentication>
<ldap connection="LDAP" base-dn="ou=divisions,dc=corp,dc=mydomain,dc=com" recursive="false">
<advanced-filter filter="(&(sAMAccountName={%v})(objectcategory=user)(memberOf=cn=xxxx,ou=Service Accounts,dc=corp,dc=mydomain,dc=com))"/>
</ldap>
</authentication>
<authorization map-groups-to-roles="false">
<properties path="mgmt-groups.properties" relative-to="jboss.server.config.dir"/>
</authorization>
</security-realm>
<outbound-connections>
<ldap name="LDAP" url="ldap://ldapserver_name:636/" search-dn="cn=xxxx,ou=Service Accounts,dc=corp,dc=mydomain,dc=com" search-credential="password">
<properties>
<property name="com.sun.jndi.ldap.read.timeout" value="1000" />
</properties>
</ldap>
</outbound-connections>