Details
-
Type:
extRequest
-
Status: Closed
-
Priority:
Major
-
Resolution: Done
-
Fix Version/s: Sprint 4.1.2
-
Component/s: FIWARE-TECH-HELP
-
Labels:None
-
HD-Chapter:Security
-
HD-Enabler:AuthZForce
Description
Hi,
While configuring https://forge.fi-ware.org/plugins/mediawiki/wiki/fiware/index.php/Access_Control_-_Installation_and_Administration_Guide#Configuration, step 2, guide says "replace all occurrences of dc=example,dc=com with the base DN you have configured in 'User Role Management Setup'". This step is confusing. For example, if we configure the base DN as dc=example,dc=com (like in the example explained) in the end the authentication will fail because it will search in dc=example,dc=com,dc=example,dc=com.
OS: Ubuntu 14.04 Server x64
Regards,
Alberto Martín
_______________________________________________
Fiware-tech-help mailing list
Fiware-tech-help@lists.fi-ware.org
https://lists.fi-ware.org/listinfo/fiware-tech-help
Activity
- All
- Comments
- History
- Activity
- Transitions
Fixed in next release documentation:
1) the URL in the core-pdp.xml by default will not include the base DN
2) the <baseDN> element will be renamed to <searchBasedDN> to indicate this is the starting point for the LDAP search (ou=users,dc=example,dc=com), and NOT the base DN of the directory itself
3) there will be a sample 'sed' command to show an example of base DN substitution to avoid any ambiguity.