0 Replies Latest reply on Mar 4, 2011 10:12 AM by couse1

    Active Directory and admin-console

    couse1 Newbie

      Hi,

       

      I'm trying to use AD with my admin-console.

       

      My login-config.xml :

       

        <application-policy name="ldapLogin">

          <authentication>

          <login-module code="org.jboss.security.auth.spi.LdapExtLoginModule" flag="required">

              <module-option name="java.naming.factory.initial">com.sun.jndi.ldap.LdapCtxFactory</module-option>

              <module-option name="java.naming.provider.url">ldap://myldaphost:389/</module-option>

              <module-option name="java.naming.security.authentication">simple</module-option>

              <module-option name="bindDN">mydomain\myadmin</module-option>

              <module-option name="bindCredential">mypwd</module-option>

              <module-option name="baseCtxDN">cn=Users,dc=mydomain,dc=fr</module-option>

              <module-option name="baseFilter">(sAMAccountName={0})</module-option>

              <module-option name="rolesCtxDN">cn=Users,dc=mydomain,dc=fr</module-option>

              <module-option name="roleFilter">(member={1})</module-option>

              <module-option name="roleAttributeIsDN">true</module-option>

              <module-option name="roleNameAttributeID">name</module-option>

              </login-module>

          </authentication>

      </application-policy>

       

       

      In my jboss-web.xml :

       

      <security-domain>java:/jaas/ldapLogin</security-domain>

       

       

      And in my components.xml :

       

      <security:identity authenticate-method="#{authenticator.authenticate}" jaas-config-name="ldapLogin"/>

       

      But when i try to access to my admin-console, i have this message :

       

      2011-03-04 14:33:02,594 WARN  [org.jboss.seam.Component] (http-127.0.0.1-8080-1) Component class should be serializable: org.jboss.seam.ui.facelet.mockHttpSession

      2011-03-04 14:33:02,653 WARN  [org.jboss.seam.security.permission.PersistentPermissionResolver] (http-127.0.0.1-8080-1) no permission store available - please install a PermissionStore with the name 'org.jboss.seam.security.jpaPermissionStore' if persistent permissions are required.

      2011-03-04 14:33:08,664 INFO  [javax.enterprise.resource.webcontainer.jsf.lifecycle] (http-127.0.0.1-8080-1) WARNING: FacesMessage(s) have been enqueued, but may not have been displayed.

      sourceId=null[severity=(WARN 1), summary=(The conversation ended, timed out or was processing another request), detail=(The conversation ended, timed out or was processing another request)]

       

      And of course when i put my login and pwd, i have this message : "log in attempt failed, please try again"

       

      I believe that the admin-console work with seam, so i think that i must to write something in my components.xml but i don't know what?

       

      any idea?

       

      thanks in advance

      johan JOSEPH