Configure Apache Webserver to authenticate from LDAP Server

1. Connect to the LDAP Server from an LDAP Browser 2. Uncomment these two modules in httpd.conf LoadModule ldap_module modules/mod_ldap.so LoadModule authnz_ldap_module modules/mod_authnz_ldap.so 3. Add the following Location directive <Location /> AuthType Basic Require valid-user AuthName   “Enter Your ldap Username/Password” AuthBasicProvider   ldap AuthzLDAPAuthoritative   off AuthLDAPURL    ldap://localhost:444

Continue reading »

Websphere Application Server configuration with LDAP Server

 Security is a critical aspect of any distributed application model. Most of the firms have a centralized repository of the users in LDAP servers like Active Directory, Novell LDAP. This post illustrates how you can configure authentication to the WebSphere Application server using an Open DS LDAP  commonly reffered as

Continue reading »

LDAP search by group filter

Continue reading »

Configuring Active Directory Authenticator with Weblogic Server

Weblogic Server comes with an Embedded LDAP Server which acts as the Default Provider for authentication, authorization and rolemapping.Since authentication is based on JAAS ( Java Authentication and Authorization Service), we can have external providers as well.These providers can be Out Of the Box Providers provided by WLS or Custom

Continue reading »

Common LDAP Server Issues

The causes of the exceptions are discussed in brief. If you have anything to add, feel free to comment! com.bea.security.providers.xacml.store.ldap.LDAPException: netscape.ldap.LDAPException: error result (49) This exception is encountered when the password of the principal trying to connect to the LDAP Server is wrong. The AD-specific error code is the one

Continue reading »

Connecting to Weblogic Server Embedded LDAP using LDAP Browser

Weblogic Server Embedded LDAP Server runs on the same port as the Server. The Master LDAP Server runs on the same port on which the Admin Server runs. Any changes is first made on the Master LDAP Server and it gets propagated to the Embedded LDAP Server on the Mananged

Continue reading »

Installing Sun One LDAP Server

Continue reading »

LDAP Authentication on JBoss

The below post demonstrates a sample configuration of LDAP Server with JBoss Server Steps: 1. Install OpenDS Directory Server. 2. Import the following LDIF file *********************************** base.ldif dn: ou=People,dc=bea,dc=com objectclass: top objectclass: organizationalUnit ou: People dn: uid=faisal,ou=People,dc=bea,dc=com objectclass: top objectclass: uidObject objectclass: person uid: faisal cn: Java Duke sn: Duke

Continue reading »

Configuring OpenDS with Weblogic Server

Download Install and Configure OpenDS. I used the following LDIF as BASE while installing OpenDS. dn: dc=oracle,dc=com dc: oracle objectClass: domain objectClass: top dn: ou=TEST, dc=oracle,dc=com ou: TEST objectClass: organizationalUnit objectClass: top dn: cn=faisal,ou=TEST, dc=oracle,dc=com uid: faisal userPassword:: e1NTSEF9dnhBYUZKRzBONmwzWTdRMHBQRmdiczZrRHd5VUNwWCtCQTdlaHc9PQ == objectClass: person objectClass: inetOrgPerson objectClass: organizationalPerson objectClass: top givenName: Faisal

Continue reading »

Create Active Directory Authentication Provider from WLST

connect(‘weblogic’,’weblogic’,’t3://localhost:7001′) edit() startEdit(-1,-1,’false’) cmo.getSecurityConfiguration().getDefaultRealm().createAuthenticationProvider(‘ADAuthenticator’, ‘weblogic.security.providers.authentication.ActiveDirectoryAuthenticator’) cmo.getSecurityConfiguration().getDefaultRealm().lookupAuthenticationProvider(‘ADAuthenticator’).setControlFlag(‘OPTIONAL’) cd(‘/SecurityConfiguration’) cd(‘base_domain’) cd(‘Realms/myrealm/AuthenticationProviders’) cd(‘ADAuthenticator’) cmo.setGroupBaseDN(‘CN=Users,DC=faisal,DC=bea,DC=com’) cmo.setUserBaseDN(‘CN=Users,DC=faisal,DC=bea,DC=com’) cmo.setAllGroupsFilter(‘(objectclass=group)’) cmo.setPrincipal(‘CN=Administrator,CN=Users,DC=faisal,DC=bea,DC=com’) cmo.setCredential(‘Passw0rd’) cmo.setPort(389) cmo.setHost(‘localhost’) save() activate()

Continue reading »