Spark with ldap

aperseghin · May 4, 2007, 3:04pm

ok i dont see the option to integrate spark with ldap durring the install… so how do i get spark to recognize that its a on a domain? and use windows authentication? the server is up and running with ldap just fine. but the client wants to use a login and password.

Message was edited by: aperseghin

Brad_Mace · May 4, 2007, 3:43pm

Spark doesn’'t handle authentication. It just collects a username and password which it sends to the server, where the actual authentication happens. So setting up LDAP on the server is sufficient.

According to this post they’‘re working on auto-login using your windows credentials, but haven’'t completed it yet.

Just to be clear, auto-login is a completely separate issue from LDAP, and could work just as well with manually configured accounts once it’'s implemented.

LG1 · May 6, 2007, 9:00pm

Hi,

the current SVN version (which should be released as 2.5.3 in three weeks) should already contain SSO code. If you want to compile it by yourself you could give it a try right now.

LG

bugmenot · May 7, 2007, 11:39pm

it2000 wrote:

the current SVN version (which should be released as 2.5.3 in three weeks) should already contain SSO code

Eagerly awaits the 2.5.3 beta

aperseghin, here is an extract from my wildfire.xml configuration file, you can use this as a base. It connects to ldapserver1, ldapserver2 for authentication (put your DCs in there). It only allows users from the IMAccess group to connect and only enabled users as well.

&lt;ldap&gt;

&lt;host&gt;ldapserver1,ldapserver2&lt;/host&gt;

&lt;port&gt;389&lt;/port&gt;

&lt;baseDN&gt;OU=Users,DC=mycompany,DC=com&lt;/baseDN&gt;

&lt;adminDN&gt;CN=sys_Wildfire,OU=System,DC=mycompany,DC=com&lt;/adminDN&gt;

&lt;adminPassword&gt;blah&lt;/adminPassword&gt;

&lt;debugEnabled&gt;false&lt;/debugEnabled&gt;

&lt;usernameField&gt;sAMAccountName&lt;/usernameField&gt;

&lt;nameField&gt;displayName&lt;/nameField&gt;

&lt;emailField&gt;mail&lt;/emailField&gt;

&lt;groupNameField&gt;cn&lt;/groupNameField&gt;

&lt;groupMemberField&gt;member&lt;/groupMemberField&gt;

&lt;groupDescriptionField&gt;description&lt;/groupDescriptionField&gt;

&lt;posixMode&gt;false&lt;/posixMode&gt;

&lt;clientSideSorting&gt;true&lt;/clientSideSorting&gt;

&lt;searchFilter&gt; &lt;![CDATA[

(&

(objectClass=user)

(memberOf=CN=IMAccess,OU=Groups,DC=mycompany,DC=com)

(!(userAccountControl:1.2.840.113556.1.4.803:=2))

]]&gt;&lt;/searchFilter&gt;

&lt;groupSearchFilter&gt; &lt;![CDATA[

(&

(objectClass=group)

(memberOf=CN=IMAccess,OU=Groups,DC=mycompany,DC=com)

]]&gt;&lt;/groupSearchFilter&gt;

&lt;/ldap&gt;