Open Source Document Management System | OpenKM

Hi,

Need to configure openkm to use active directory for login authentication only, without creating group in active directory. So please suggest me how to configure openkm without creating groups in active directory only using for login authentication.

Thanks,
Vittal

To support mixed user sources you need to implement your own PrincipalAdapter (it is an interface)

Hi,

I am able to list users from active directory, i configured without using groups from active directory for authentication. But users list shows that they doesn't belong to any local group(ROLE_ADMIN, ROLE_USER). How to add these active directory users to local group in OpenKM?

Thanks,
Vittal

Really you need something more than a PrincipalAdapter you need to create your own SpringSecurity Adapter, by default we use org.springframework.security.ldap.authentication.LdapAuthenticationProvider what gives roles from AD ( there're also two classes more with spring ). You should implement your own classes to take ldap roles from database based on user id.

Based on default LDAP Authentication provider you should take a look for modify and create your own. Here some starting point http://www.baeldung.com/spring-security ... n-provider