0 Replies Latest reply on Mar 4, 2011 10:12 AM by couse1

Active Directory and admin-console

couse1 Mar 4, 2011 10:12 AM

Hi,

I'm trying to use AD with my admin-console.

My login-config.xml :

<application-policy name="ldapLogin">

<login-module code="org.jboss.security.auth.spi.LdapExtLoginModule" flag="required">

<module-option name="java.naming.factory.initial">com.sun.jndi.ldap.LdapCtxFactory</module-option>

<module-option name="java.naming.provider.url">ldap://myldaphost:389/</module-option>

<module-option name="java.naming.security.authentication">simple</module-option>

<module-option name="bindDN">mydomain\myadmin</module-option>

<module-option name="bindCredential">mypwd</module-option>

<module-option name="baseCtxDN">cn=Users,dc=mydomain,dc=fr</module-option>

<module-option name="baseFilter">(sAMAccountName={0})</module-option>

<module-option name="rolesCtxDN">cn=Users,dc=mydomain,dc=fr</module-option>

<module-option name="roleFilter">(member={1})</module-option>

<module-option name="roleAttributeIsDN">true</module-option>

<module-option name="roleNameAttributeID">name</module-option>

</login-module>

</authentication>

</application-policy>

In my jboss-web.xml :

<security-domain>java:/jaas/ldapLogin</security-domain>

And in my components.xml :

<security:identity authenticate-method="#{authenticator.authenticate}" jaas-config-name="ldapLogin"/>

But when i try to access to my admin-console, i have this message :

2011-03-04 14:33:02,594 WARN [org.jboss.seam.Component] (http-127.0.0.1-8080-1) Component class should be serializable: org.jboss.seam.ui.facelet.mockHttpSession

2011-03-04 14:33:02,653 WARN [org.jboss.seam.security.permission.PersistentPermissionResolver] (http-127.0.0.1-8080-1) no permission store available - please install a PermissionStore with the name 'org.jboss.seam.security.jpaPermissionStore' if persistent permissions are required.

2011-03-04 14:33:08,664 INFO [javax.enterprise.resource.webcontainer.jsf.lifecycle] (http-127.0.0.1-8080-1) WARNING: FacesMessage(s) have been enqueued, but may not have been displayed.

sourceId=null[severity=(WARN 1), summary=(The conversation ended, timed out or was processing another request), detail=(The conversation ended, timed out or was processing another request)]

And of course when i put my login and pwd, i have this message : "log in attempt failed, please try again"

I believe that the admin-console work with seam, so i think that i must to write something in my components.xml but i don't know what?

any idea?

thanks in advance

johan JOSEPH