How wildfire.xml for LDAP (Win2003 ADS + wildfire_2_6_2 in RHEL4)

updatemyself · June 12, 2006, 2:02pm

Hi All,

Because of so many reason my LDAP Server is… Windows 2003

and i install Wildfire-2.6.2 in RHEL4

Anyone can help me to Configure LDAP Auth for wildfire

or let me know this is possible. (i tried a lot… but

nothing got success)

Wildfire Server /b

OS : Red Hat Enterprise Linux ES release 4(Linux 2.6.9-22.ELsmp)

Wildfire : Wildfire-2.6.2

Database : MySQL-5.0.22-0

Package Installed

MySQL-devel-standard-5.0.22-0.rhel4

MySQL-standard-debuginfo-5.0.22-0.rhel4

MySQL-shared-compat-5.0.22-0.rhel4

MySQL-client-standard-5.0.22-0.rhel4

MySQL-shared-standard-5.0.22-0.rhel4

MySQL-server-standard-5.0.22-0.rhel4

LDAP Server[/b]

OS : Windows 2003 Server

Hostname: globus.mca.com

->MCA.COM

–>ASSOCIATES (OU)

—>RnD (OU)

—>Reg (OU)

—>RD_USERS (OU)

—>TEXTURING (OU)

—>TRAINEE (OU)

—>HR (OU)

—>SYSTEM (OU)

—>TEST (OU)

—>PROGRAMMERS (OU)

–>Builtin

–>COMP

–>Computers

–>Domain Controllers

–>ForeignSecurity…

–>GROUPS

–>TEST

–>Users

Admin User (sysadmin@mca.com) in MCA.COM\ASSOCIATES\SYSTEM

and i wish to give allow the authentication for only the

users in MCA.COM\GROUPS\WILDFIREUSERS

Thank You in Advance

robinboby.

Message was edited by: robinboby

Timothy_Collett · June 12, 2006, 2:18pm

I don’'t know for certain just how the relevant parts of your schema look, but something like this ought to get you what you need:

[/code]

Timothy Collett

santhosh_kumar · June 12, 2006, 2:30pm

The wildfire.xml configuration is same for windows and linux

It needs one user and password for LDAP binding. Create as wildfire ( for example) and set password never expire to avoid future problem.

Please see the configuration for globus.mca.com assuming that username is wildfire and password is wild1234

updatemyself · June 12, 2006, 2:51pm

This is my present Conf file…

but no luck… client not able to login even as "sysadmin"account

Timothy_Collett · June 12, 2006, 3:08pm

Can you check the log files to see just where the breakdown is?

For instance, is it connecting correctly to the server, but then not being able to authenticate users? Or is it not authenticating to the server in the first place? Or not connecting at all?

Timothy Collett

Luke · June 12, 2006, 3:51pm

<![CDATA[ (&(member=)(objectClass=group)(sAMAccountName=*))

]]>

[/b]

Try this one, this is the translation of mine that works.

Tweak the search filter to narrow the user and group showing.

updatemyself · June 14, 2006, 11:39am

with this option i am able to connect to the LDAP thanks for all support

regards

robinboby