Open Source Document Management System | OpenKM

PostPosted:**Sat Oct 22, 2011 4:42 pm**

This week i changed the active directoy wiki page, consider read it if can help you.
I suggest you install apache ldap studio and execute there your queries ... that will help you to find correct query, that's really your problem.

PostPosted:**Mon Nov 14, 2011 5:31 am**

I setup OpenKM, and config auth with Windows AD server, but, when login OpenKM, I got error message "Error communicating with the server (getUserWorkspace)".

I have red this thread, I don't know how to setup it.

login-config.xml

Code: Select all

    <application-policy name = "OpenKM">
       <authentication>
          <login-module code="org.jboss.security.auth.spi.LdapExtLoginModule" flag="required" >
             <module-option name="java.naming.provider.url">ldap://172.26.10.10:3268</module-option>
             <module-option name="bindDN">cn=test,ou=SWD,dc=cc,dc=xp,dc=com</module-option>
             <module-option name="java.naming.security.authentication">simple</module-option>
             <module-option name="java.naming.referral">follow</module-option>
             <module-option name="bindCredential">test</module-option>
             <module-option name="baseCtxDN">ou=SWD,dc=cc,dc=xp,dc=com</module-option>
             <module-option name="baseFilter">(sAMAccountName={0})</module-option>
             <module-option name="rolesCtxDN">ou=SWD,dc=cc,dc=xp,dc=com</module-option>
             <module-option name="roleFilter">(member={1})</module-option>
             <module-option name="roleAttributeID">cn</module-option>
             <module-option name="roleAttributeIsDN">false</module-option>
             <module-option name="roleRecursion">2</module-option>
             <module-option name="searchScope">SUBTREE_SCOPE</module-option>
             <module-option name="defaultRole">UserRole</module-option>
             <module-option name="allowEmptyPasswords">false</module-option> 
          </login-module>
       </authentication>
    </application-policy>

server/default/data/hypersonic/OKM_APP.script:

Code: Select all

INSERT INTO OKM_CONFIG VALUES('principal.adapter','string','com.openkm.principal.DatabasePrincipalAdapter')
INSERT INTO OKM_CONFIG VALUES('principal.database.filter.inactive.users','boolean','true')
INSERT INTO OKM_CONFIG VALUES('principal.ldap.mail.attribute','string','mail')
INSERT INTO OKM_CONFIG VALUES('principal.ldap.mail.search.base','string','dc=cc,dc=xp,dc=com')
INSERT INTO OKM_CONFIG VALUES('principal.ldap.mail.search.filter','string','(objectclass=person)')
INSERT INTO OKM_CONFIG VALUES('principal.ldap.role.attribute','string','cn')
INSERT INTO OKM_CONFIG VALUES('principal.ldap.role.search.base','string','ou=SWD,dc=cc,dc=xp,dc=com')
INSERT INTO OKM_CONFIG VALUES('principal.ldap.role.search.filter','string','(objectclass=group)')
INSERT INTO OKM_CONFIG VALUES('principal.ldap.roles.by.user.attribute','string','memberOf')
INSERT INTO OKM_CONFIG VALUES('principal.ldap.roles.by.user.search.base','string','ou=SWD,dc=cc,dc=xp,dc=com')
INSERT INTO OKM_CONFIG VALUES('principal.ldap.roles.by.user.search.filter','string','(&(objectClass=person)(cn={0}))')
INSERT INTO OKM_CONFIG VALUES('principal.ldap.security.credentials','string','test')
INSERT INTO OKM_CONFIG VALUES('principal.ldap.security.principal','string','cn=test,ou=SWD,dc=cc,dc=xp,dc=com')
INSERT INTO OKM_CONFIG VALUES('principal.ldap.server','string','ldap://172.26.10.10:3268')
INSERT INTO OKM_CONFIG VALUES('principal.ldap.user.attribute','string','sAMAccountName')
INSERT INTO OKM_CONFIG VALUES('principal.ldap.user.search.base','string','dc=cc,dc=xp,dc=com')
INSERT INTO OKM_CONFIG VALUES('principal.ldap.user.search.filter','string','(objectclass=person)')
INSERT INTO OKM_CONFIG VALUES('principal.ldap.users.by.role.attribute','string','member')
INSERT INTO OKM_CONFIG VALUES('principal.ldap.users.by.role.search.base','string','ou=SWD,dc=cc,dc=xp,dc=com')
INSERT INTO OKM_CONFIG VALUES('principal.ldap.users.by.role.search.filter','string','(&(objectClass=group)(cn={0}))')

PostPosted:**Mon Nov 14, 2011 5:59 am**

my OpenKM's version is: OpenKM-5.1.7_JBoss-4.2.3.GA

PostPosted:**Tue Nov 15, 2011 12:16 pm**

The problem is ins configuration parameters. login-config.xml is correctly and only used to authentication purpose.

Put here the error appearing in server.log to see the line what produces the error. Probably will be getting roles by user.

Open Source Document Management System | OpenKM

Error communicating with the server (getUserWorkspace)

Re: Error communicating with the server (getUserWorkspace)

Re: Error communicating with the server (getUserWorkspace)

Re: Error communicating with the server (getUserWorkspace)

Re: Error communicating with the server (getUserWorkspace)