Details
-
Type:
extRequest
-
Status: Closed
-
Priority:
Major
-
Resolution: Done
-
Fix Version/s: Sprint 4.1.2
-
Component/s: FIWARE-TECH-HELP
-
Labels:None
-
HD-Chapter:Security
-
HD-Enabler:AuthZForce
Description
Hi,
While configuring https://forge.fi-ware.org/plugins/mediawiki/wiki/fiware/index.php/Access_Control_-_Installation_and_Administration_Guide#Configuration, step 2, guide says "replace all occurrences of dc=example,dc=com with the base DN you have configured in 'User Role Management Setup'". This step is confusing. For example, if we configure the base DN as dc=example,dc=com (like in the example explained) in the end the authentication will fail because it will search in dc=example,dc=com,dc=example,dc=com.
OS: Ubuntu 14.04 Server x64
Regards,
Alberto Martín
_______________________________________________
Fiware-tech-help mailing list
Fiware-tech-help@lists.fi-ware.org
https://lists.fi-ware.org/listinfo/fiware-tech-help
Activity
| Field | Original Value | New Value |
|---|---|---|
| Assignee | Cyril Dangerville [ cyril.dangerville ] |
| Status | Open [ 1 ] | Answered [ 10104 ] |
| Component/s | FIWARE-TECH-HELP [ 10278 ] |
| Link | This issue is cloned by HELP-642 [ HELP-642 ] |
| Reporter | FIWARE-TECH-HELP [ fiware-tech-help ] | FW External User [ fw.external.urser ] |
| Reporter | FW External User [ fw.external.urser ] | Alberto Martín [ alberto.martin ] |
| Workflow | FW eRequest Workflow [ 17427 ] | FW extRequest Workflow-II [ 20280 ] |
| Issue Type | eRequest [ 10101 ] | extRequest [ 10104 ] |
| FI-WARE Environment | FI-LAB [ 10100 ] |
| Resolution | Done [ 10000 ] | |
| Status | Answered [ 10104 ] | Closed [ 6 ] |
| Fix Version/s | Sprint 4.1.2 [ 10738 ] |
| Summary | [Fiware-tech-help] [Chp - Security][Access Control] Authorization Server Application Setup (Configuration) | FIWARE.Request.Lab.Security.AuthorizationPDP.ApplicationSetupDocSetupConfusing |
| Summary | FIWARE.Request.Lab.Security.AuthorizationPDP.ApplicationSetupDocSetupConfusing | FIWARE.Request.Tech.Security.AuthorizationPDP.ApplicationSetupDocSetupConfusing |
| HD-Enabler | AuthZForce [ 10887 ] | |
| HD-Chapter | Security [ 10841 ] |
| Transition | Time In Source Status | Execution Times | Last Executer | Last Execution Date | |||||
|---|---|---|---|---|---|---|---|---|---|
|
15h 59m | 1 | Manuel Escriche | 24/Oct/14 10:55 AM | |||||
|
27d 4h 58m | 1 | Cyril Dangerville | 20/Nov/14 2:53 PM |
Fixed in next release documentation:
1) the URL in the core-pdp.xml by default will not include the base DN
2) the <baseDN> element will be renamed to <searchBasedDN> to indicate this is the starting point for the LDAP search (ou=users,dc=example,dc=com), and NOT the base DN of the directory itself
3) there will be a sample 'sed' command to show an example of base DN substitution to avoid any ambiguity.