SHARE
TWEET

default-ldap-users-directory-config.xml

a guest Dec 6th, 2011 351 Never
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
  1.  
  2. <component name="org.nuxeo.ecm.directory.ldap.storage.users">
  3.  
  4.   <require>org.nuxeo.ecm.directory.ldap.LDAPDirectoryFactory</require>
  5.   <require>org.nuxeo.ecm.directory.sql.storage</require>
  6.  
  7.   <extension target="org.nuxeo.ecm.directory.ldap.LDAPDirectoryFactory" point="servers">
  8.    
  9.                 <server name="default">
  10.                   <ldapUrl>ldap://SRV:389</ldapUrl>
  11.                   <bindDn>CN=User,OU=Services,OU=Corporate,DC=A,DC=B,DC=C,DC=D</bindDn>
  12.                   <bindPassword>password</bindPassword>
  13.                 </server>
  14.    
  15.    </extension>
  16.  
  17.   <extension target="org.nuxeo.ecm.directory.ldap.LDAPDirectoryFactory" point="directories">
  18.  
  19.     <directory name="userDirectory">
  20.                   <server>default</server>
  21.                   <schema>user</schema>
  22.                   <idField>username</idField>
  23.                   <passwordField>password</passwordField>
  24.                   <searchBaseDn>DC=dsto,DC=defence,DC=gov,DC=au</searchBaseDn>
  25.                   <searchClass>person</searchClass>
  26.                   <searchScope>onelevel</searchScope>
  27.                   <substringMatchType>subany</substringMatchType>
  28.                   <readOnly>false</readOnly>
  29.                   <cacheTimeout>3600</cacheTimeout>
  30.                   <cacheMaxSize>1000</cacheMaxSize>
  31.                   <missingIdFieldCase>lower</missingIdFieldCase>
  32.                   <querySizeLimit>200</querySizeLimit>
  33.                   <queryTimeLimit>0</queryTimeLimit>
  34.                  
  35.                   <creationBaseDn>OU=Users,OU=OU1,OU=OU2,DC=A,DC=B,DC=C,DC=D</creationBaseDn>
  36.                   <creationClass>top</creationClass>
  37.                   <creationClass>person</creationClass>
  38.                   <creationClass>organizationalPerson</creationClass>
  39.                   <creationClass>inetOrgPerson</creationClass>
  40.          
  41.                   <rdnAttribute>uid</rdnAttribute>
  42.                  
  43.                   <fieldMapping name="username">sAMAccountName</fieldMapping>
  44.                   <fieldMapping name="password">userPassword</fieldMapping>
  45.                   <fieldMapping name="firstName">givenName</fieldMapping>
  46.                   <fieldMapping name="lastName">sn</fieldMapping>
  47.                   <fieldMapping name="company">department</fieldMapping>
  48.                   <fieldMapping name="email">mail</fieldMapping>
  49.                  
  50.                   <references>
  51.                                 <inverseReference field="groups" directory="groupDirectory" dualReferenceField="members" />
  52.                   </references>
  53.  
  54.         </directory>
  55.        
  56.     <directory name="groupDirectory">
  57.        
  58.                 <server>default</server>
  59.         <schema>group</schema>
  60.         <idField>groupname</idField>
  61.         <searchBaseDn>DC=A,DC=B,DC=C,DC=D</searchBaseDn>
  62.         <searchFilter>(|(objectClass=groupOfUniqueNames)(objectClass=groupOfURLs))</searchFilter>
  63.         <searchScope>subtree</searchScope>
  64.         <readOnly>false</readOnly>
  65.         <cacheTimeout>3600</cacheTimeout>
  66.         <cacheMaxSize>1000</cacheMaxSize>
  67.         <creationBaseDn>OU=JOD,OU=FBN,DC=dsto,DC=defence,DC=gov,DC=au</creationBaseDn>
  68.         <creationClass>top</creationClass>
  69.         <creationClass>groupOfUniqueNames</creationClass>
  70.         <rdnAttribute>cn</rdnAttribute>
  71.         <querySizeLimit>200</querySizeLimit>
  72.         <queryTimeLimit>0</queryTimeLimit>
  73.         <fieldMapping name="groupname">cn</fieldMapping>
  74.        
  75.                 <references>
  76.            
  77.                         <ldapReference directory="userDirectory"
  78.                dynamicAttributeId="memberURL" field="members"
  79.                forceDnConsistencyCheck="false" staticAttributeId="uniqueMember"/>
  80.             <ldapReference directory="groupDirectory"
  81.                dynamicAttributeId="memberURL" field="subGroups"
  82.                forceDnConsistencyCheck="false" staticAttributeId="uniqueMember"/>
  83.            
  84.                         <inverseReference directory="groupDirectory"
  85.                dualReferenceField="subGroups" field="parentGroups"/>
  86.            
  87.                         <ldapTreeReference directory="groupDirectory"
  88.                field="children" scope="onelevel"/>
  89.            
  90.                         <inverseReference directory="groupDirectory"
  91.                dualReferenceField="children" field="parents"/>
  92.         </references>
  93.    
  94.         </directory>   
  95.  
  96.   </extension>
  97.  
  98.   <extension target="org.nuxeo.ecm.platform.usermanager.UserService" point="userManager">
  99.  
  100.     <userManager>
  101.       <defaultAdministratorId>kivsharb</defaultAdministratorId>
  102.       <defaultGroup>members</defaultGroup>
  103.     </userManager>
  104.  
  105.   </extension>
  106.  
RAW Paste Data
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy. OK, I Understand
 
Top