Vista Combinata Vista Piatta Vista ad Albero
Discussioni [ Precedente | Successivo ]
toggle
Payal Gandhi
Password Synchronization Issue with AD and LDAP
27 marzo 2009 12.09
Risposta

Payal Gandhi

Punteggio: New Member

Messaggi: 1

Data di Iscrizione: 27 marzo 2009

Messaggi recenti

Hello,

We have configured Liferay to use LDAP Authentication with AD. We have a problem when a user changes their password in AD only the old password works to login to liferay.

Can someone please with this. FYI we are on the 4.3.2 version of liferay. Was this a bug and been fixed in the newer releases?

Thanks
PG
Patrice Laramee
RE: Password Synchronization Issue with AD and LDAP
21 aprile 2011 7.07
Risposta

Patrice Laramee

Punteggio: New Member

Messaggi: 4

Data di Iscrizione: 25 gennaio 2011

Messaggi recenti

Hi,

I'm using liferay 6.0.6 with NTLM and LDAP for the authentication. I'm experiencing the same issue. If a password is changed on Active Directory the following will occur:

1- The user will be allowed to login with NTLM on the Portal
2- If the user tries to mount the webdav share, it will fail. If the user use his previous password. It will work.

I believe that's is a major concern since good practices recommend to change a password every XX days... I also believe that it's a default setting (GPO) in Active Directory to ask the user to change his password. If we setup a SSO, the last thing we want to do is ask the users to sync their passwords manually.

Anyone know the mechanic behind the LDAP integration?

I noticed that if you don't check 'Import' for the LDAP settings. The groups will not be sync.

-Pat
Mika Koivisto
RE: Password Synchronization Issue with AD and LDAP
5 maggio 2011 12.46
Risposta

Mika Koivisto

LIFERAY STAFF

Punteggio: Liferay Legend

Messaggi: 1513

Data di Iscrizione: 7 agosto 2006

Messaggi recenti

I think the problem is that the portal does not know the password of the user when using SSO like NTLM. If you use normal Liferay login agains LDAP it would get the password used to authenticate agains the LDAP server and then update that to Liferays database.
Yann Lortie
RE: Password Synchronization Issue with AD and LDAP
7 marzo 2012 8.45
Risposta

Yann Lortie

Punteggio: New Member

Messaggi: 4

Data di Iscrizione: 10 gennaio 2012

Messaggi recenti

I also noticed a few issues...

I want to synchronize (with LDAP):
1) any User fields like Title
2) any User deletion
Could be done once a week, or on request.

Also, adding other fields like phone number and many others fields from the LDAP. Right now, I am considering writing a hook or an ext.
Do anybody knows if Liferay team will improve the LDAP sync ??
Thanks