Automatic authentication impossible

bab · May 18, 2010, 2:34pm

Hello,

I’ve configured an Openfire 3.6.4 with an Active Directory on a Windows 2003 Server R2. I’ve chosen the last build of Pandion as client for its auth possibilities. The manual connection with my Active Directory’s login/password is possible and works great. Though, I would like to connect users automatically with SSO (and it seems quite a mess).

I followed many documents, including this one : http://www.igniterealtime.org/community/docs/DOC-1362, but automatic AD authentication seems impossible. I also used the “openfire-sasl-sspi.v7.2” plugin, didn’t work either.

Actually, it doesn’t even work with other clients (Spark, Exodus)… So I don’t know what to do right now to make it work.

Thanks,

Nicolas.

Dom · May 19, 2010, 5:40am

Give this a try!!!

Log into admin console

click system properties

scroll down to item named: -> sasl.mechs

change order to: -> NTLM,PLAIN,DIGEST-MD5,CRAM-MD5,ANONYMOUS

Restart openfire service and try login using integrated windows authentication and let us know how that goes !

Good luck

bab · May 21, 2010, 9:19am

I changed the order but authentication still doesn’t work. I put in attachment files that I use for Openfire configuration. My server name is “serveurmi” and my domain “mess.lan”.
gss.conf.zip (336 Bytes)
krb5.ini.zip (313 Bytes)
openfire.xml (1848 Bytes)
openfire-patch.xml (840 Bytes)

bab · June 14, 2010, 6:46am

Someone to help me?

jeffk · January 3, 2012, 5:15pm

Any luck?