Implementation

The LDAP Group User Authentication module name is: com.tibco.tibems.tibemsd.security.jaas.LDAPGroupUserAuthentication

The JAAS configuration file entry for this module should have an entry similar to:

EMSUserAuthentication {
    com.tibco.tibems.tibemsd.security.jaas.LDAPGroupUserAuthentication required
    tibems.ldap.url="ldap://ldapserver:389"
    tibems.ldap.user_base_dn="ou=Marketing,dc=company,dc=com"
    tibems.ldap.user_attribute="uid"
    tibems.ldap.scope="subtree"
    tibems.ldap.group_base_dn="ou=Groups,dc=company"
    tibems.ldap.group_member_attribute="uniqueMember"
    tibems.ldap.dynamic_group_base_dn="ou=Groups,dc=company"
    tibems.ldap.dynamic_group_class="groupOfURLs"
    tibems.ldap.dynamic_group_member_attribute="uid"
    tibems.ldap.dynamic_group_filter="(objectClass=GroupOfURLs)"
    tibems.cache.enabled=true
    tibems.cache.user_ttl=600
    tibems.ldap.manager="CN=Manager"
    tibems.ldap.manager_password="password" ;
};

Copyright © Cloud Software Group, Inc. All rights reserved.