留言板
LDAP integration - Users Import Issue
Hi,
I'm using Liefray 6.2.0. - CE.
I configured LDAP with following configurations:
[indent]Server Name
[indent][/indent]Base Provider URL
[indent][/indent]Base DN
[indent][/indent]Principal
[indent][/indent]Credentials
[indent][/indent]Authentication Search Filter : (mail=@email_address@)
[indent][/indent]Import Search Filter : (objectClass=person)
[indent][/indent]Screen Name : name
[indent][/indent]Email Address : mail
[indent][/indent]Password : pwdLastSet
[indent][indent][/indent][/indent]First Name : givenName
[indent][/indent]Last Name : sn
[indent][/indent]Job Title : title
[indent][/indent]Group : memberOf[/indent]
Test connection is sucessful.
Test Users subset is also displaying.
Import on Startup option is also selected.
Users are not getting imported even after restarting couple of times.
Anybody got resolved this issue?
I'm using Liefray 6.2.0. - CE.
I configured LDAP with following configurations:
[indent]Server Name
[indent][/indent]Base Provider URL
[indent][/indent]Base DN
[indent][/indent]Principal
[indent][/indent]Credentials
[indent][/indent]Authentication Search Filter : (mail=@email_address@)
[indent][/indent]Import Search Filter : (objectClass=person)
[indent][/indent]Screen Name : name
[indent][/indent]Email Address : mail
[indent][/indent]Password : pwdLastSet
[indent][indent][/indent][/indent]First Name : givenName
[indent][/indent]Last Name : sn
[indent][/indent]Job Title : title
[indent][/indent]Group : memberOf[/indent]
Test connection is sucessful.
Test Users subset is also displaying.
Import on Startup option is also selected.
Users are not getting imported even after restarting couple of times.
Anybody got resolved this issue?
Juan Gonzalez,修改在10 年前。
RE: LDAP integration - Users Import Issue
Liferay Legend 帖子: 3089 加入日期: 08-10-28 最近的帖子
Please take a look at the user guide:
https://www.liferay.com/es/documentation/liferay-portal/6.2/user-guide/-/ai/integrating-existing-users-into-liferay-liferay-portal-6-2-user-guide-17-en
Just read "LDAP" section.
https://www.liferay.com/es/documentation/liferay-portal/6.2/user-guide/-/ai/integrating-existing-users-into-liferay-liferay-portal-6-2-user-guide-17-en
Just read "LDAP" section.
Hi Juan,
Thank you very much for directing me to a proper location.
Actually I followed the same document for configuring LDAP settings. Finally, after lot of trail & error combinations, I'm able to import Users in to Liferay with the following configurations :
Liefray 6.2.0. - CE.
I configured LDAP with following configurations:
Server Name - LDAP server name
Base Provider URL - LDAP server name with port
Base DN - as per lcoal server
Principal - user name (user@company.com)
Credentials - pwd
Authentication Search Filter - (screen_name=@screen_name@)
Import Search Filter - (objectClass=person)
Screen Name - cn
Email Address - mail
Password - pwdLastSet ( as per local LDAP server)
First Name - givenName
Last Name - sn
Job Title - title
Group - memberOf
Following are the properties added in portal-ext.proeprties:
ldap.auth.method=bind
ldap.auth.password.encryption.algorithm=SHA
ldap.auth.method=password-compare
Following are the GUI settings in control panel:
Enabled : checkedIn
Import Enabled : checkedIn
Import on Startup Enabled : checkedIn
stop & start liferay server for two times. from second time onwards, users will get imported.
clear database cache & reindex database search in server administration.
Thanks,
Hans
Thank you very much for directing me to a proper location.
Actually I followed the same document for configuring LDAP settings. Finally, after lot of trail & error combinations, I'm able to import Users in to Liferay with the following configurations :
Liefray 6.2.0. - CE.
I configured LDAP with following configurations:
Server Name - LDAP server name
Base Provider URL - LDAP server name with port
Base DN - as per lcoal server
Principal - user name (user@company.com)
Credentials - pwd
Authentication Search Filter - (screen_name=@screen_name@)
Import Search Filter - (objectClass=person)
Screen Name - cn
Email Address - mail
Password - pwdLastSet ( as per local LDAP server)
First Name - givenName
Last Name - sn
Job Title - title
Group - memberOf
Following are the properties added in portal-ext.proeprties:
ldap.auth.method=bind
ldap.auth.password.encryption.algorithm=SHA
ldap.auth.method=password-compare
Following are the GUI settings in control panel:
Enabled : checkedIn
Import Enabled : checkedIn
Import on Startup Enabled : checkedIn
stop & start liferay server for two times. from second time onwards, users will get imported.
clear database cache & reindex database search in server administration.
Thanks,
Hans
Hi,
Importing users from LDAP server is not consistent in Liferay CE. Some times it's importing after restarting two times the server. some times importing is never being happened.
Could anybody please guide me what could be the correct sequece of steps to be followed?
Thanks,
Hans
Importing users from LDAP server is not consistent in Liferay CE. Some times it's importing after restarting two times the server. some times importing is never being happened.
Could anybody please guide me what could be the correct sequece of steps to be followed?
Thanks,
Hans
Juan Gonzalez,修改在10 年前。
RE: LDAP integration - Users Import Issue
Liferay Legend 帖子: 3089 加入日期: 08-10-28 最近的帖子
Hi hansraj,
Liferay imports and updates users which have being modified in LDAP after the last update in Liferay. Perhaps the timezones are different from LDAP server and Liferay, and the modifiedDate field in LDAP isn't equivalent to Liferay's user last modified date.
BTW, how do you know user's arent imported properly? What are the changes you can't see reflected in Liferay?
Liferay imports and updates users which have being modified in LDAP after the last update in Liferay. Perhaps the timezones are different from LDAP server and Liferay, and the modifiedDate field in LDAP isn't equivalent to Liferay's user last modified date.
BTW, how do you know user's arent imported properly? What are the changes you can't see reflected in Liferay?
Vilmos Papp,修改在10 年前。
RE: LDAP integration - Users Import Issue
Liferay Master 帖子: 529 加入日期: 10-10-21 最近的帖子
Just for the import settings, I would suggest to not check import on startup. Hence if you have many users it takes a while, further more if the user first time tries to log in, and import is enabled his user will be imported just in time.
Hi Juan,
Thank you very much for your support.
Issue is not with improper importing of user data.
after selecting following options
- import enabled
- import on Startup Enabled
expected behavior is, Users will get imported once we re-start the server. This is not happening even after re-starting the server for couple of times.
My Portal-ext.properties file entries are:
ldap.auth.method=bind
ldap.import.method=user
ldap.error.password.age=age
ldap.error.password.expired=expired
ldap.error.password.history=history
ldap.error.password.not.changeable=not allowed to change
ldap.error.password.syntax=syntax
ldap.error.password.trivial=trivial
ldap.error.user.lockout=retry limit
##ldap.factory.initial=com.sun.jndi.ldap.LdapCtxFactory
Thanks,
Hans
Thank you very much for your support.
Issue is not with improper importing of user data.
after selecting following options
- import enabled
- import on Startup Enabled
expected behavior is, Users will get imported once we re-start the server. This is not happening even after re-starting the server for couple of times.
My Portal-ext.properties file entries are:
ldap.auth.method=bind
ldap.import.method=user
ldap.error.password.age=age
ldap.error.password.expired=expired
ldap.error.password.history=history
ldap.error.password.not.changeable=not allowed to change
ldap.error.password.syntax=syntax
ldap.error.password.trivial=trivial
ldap.error.user.lockout=retry limit
##ldap.factory.initial=com.sun.jndi.ldap.LdapCtxFactory
Thanks,
Hans
meera prince,修改在10 年前。
RE: LDAP integration - Users Import Issue
Liferay Legend 帖子: 1111 加入日期: 11-2-8 最近的帖子
Hi
Go through following links it may be help you..
http://www.liferaysavvy.com/2013/10/liferay-ldap-integration_8.html
http://www.liferaysavvy.com/2013/02/life-ray-ldap-integration.html
Regards,
Meera Prince
http://www.liferaysavvy.com
Go through following links it may be help you..
http://www.liferaysavvy.com/2013/10/liferay-ldap-integration_8.html
http://www.liferaysavvy.com/2013/02/life-ray-ldap-integration.html
Regards,
Meera Prince
http://www.liferaysavvy.com
Hi Meera,
Thank you very much for information.
I tried by following the links you have given.
The Issue is in CE version. Users importing is not getting started as we expected.
I selected following options
- Import Enabled
- Import on Startup Enabled
Generally, after statrting server for two times, from second time onwards import will get started. But this is not happening. There are no errors also.
Thanks,
Hans
Thank you very much for information.
I tried by following the links you have given.
The Issue is in CE version. Users importing is not getting started as we expected.
I selected following options
- Import Enabled
- Import on Startup Enabled
Generally, after statrting server for two times, from second time onwards import will get started. But this is not happening. There are no errors also.
Thanks,
Hans
meera prince,修改在10 年前。
RE: LDAP integration - Users Import Issue
Liferay Legend 帖子: 1111 加入日期: 11-2-8 最近的帖子
Ok...
Here two things we need to consider about LDAP import..
one When we enable only import enabled then every particular interval import process is going. with the following property
ldap.import.interval=10 with this property every 10 min it will update the users from LDAP to lifeary User_ table...
When you enable both
-Import Enabled
- Import on Startup Enabled
then as soon as you start the server it will start import process i.e get the users from LDAP and update into Liferay User_ Table
once task is finished then the process will be locked means one of entry inserted in Lock_ table.
this lock generally for 24 hours... so until 24 hours finished then only again import process will be start. this lock expiration time will be decided by following property
ldap.import.lock.expiration.time=86400000 so its generally for 24 hrs.. that is why you cant see again update users from LDAP on that day..
so that is not CE version problem.. because import process was already locked..
So based on your requirement you can use only Import Enabled or both.
as for my suggestion don't use Import on Startup instead of that enable only Import Enabled and decide ldap.import.interval value based on your requirement.
And one more when we import users from LDAP .. uncheck Use LDAP Password Policy this in configuration for smooth success full import process.
and in portal section go to Default Password Policy and unchecked the Change Required so that it wont ask user to change his password for first time login...
Regards,
Meera Prince
http://liferaysavvy.com
Here two things we need to consider about LDAP import..
one When we enable only import enabled then every particular interval import process is going. with the following property
ldap.import.interval=10 with this property every 10 min it will update the users from LDAP to lifeary User_ table...
When you enable both
-Import Enabled
- Import on Startup Enabled
then as soon as you start the server it will start import process i.e get the users from LDAP and update into Liferay User_ Table
once task is finished then the process will be locked means one of entry inserted in Lock_ table.
this lock generally for 24 hours... so until 24 hours finished then only again import process will be start. this lock expiration time will be decided by following property
ldap.import.lock.expiration.time=86400000 so its generally for 24 hrs.. that is why you cant see again update users from LDAP on that day..
so that is not CE version problem.. because import process was already locked..
So based on your requirement you can use only Import Enabled or both.
as for my suggestion don't use Import on Startup instead of that enable only Import Enabled and decide ldap.import.interval value based on your requirement.
And one more when we import users from LDAP .. uncheck Use LDAP Password Policy this in configuration for smooth success full import process.
and in portal section go to Default Password Policy and unchecked the Change Required so that it wont ask user to change his password for first time login...
Regards,
Meera Prince
http://liferaysavvy.com
Hi Meera,
Thank you very much for detailed explanation.
Issue got resolved now.
You are right, Issue is not with liferay CE version. Importing was not happening because of an entry in Lock_ table. I removed that entry, import got started immediately.
We can set Lock expiration duration with the following property :
ldap.import.lock.expiration.time=60000 (milliseconds) (this is by default set to 24hrs duration).
Thanks to all.
Regards,
Hans
Thank you very much for detailed explanation.
Issue got resolved now.
You are right, Issue is not with liferay CE version. Importing was not happening because of an entry in Lock_ table. I removed that entry, import got started immediately.
We can set Lock expiration duration with the following property :
ldap.import.lock.expiration.time=60000 (milliseconds) (this is by default set to 24hrs duration).
Thanks to all.
Regards,
Hans
Shahbaz Khan,修改在7 年前。
RE: LDAP integration - Users Import Issue
Junior Member 帖子: 40 加入日期: 14-11-18 最近的帖子
Hi
I am using ldap and its working fine. User is imported (added or updated) in liferay successfully.
But I don't want user(or some user field like firstName etc.) to be updated after first import.
Is there any possibility that user will not update if it is already exist in liferay ?
I am using ldap and its working fine. User is imported (added or updated) in liferay successfully.
But I don't want user(or some user field like firstName etc.) to be updated after first import.
Is there any possibility that user will not update if it is already exist in liferay ?
Jack Bakker,修改在7 年前。
RE: LDAP integration - Users Import Issue
Liferay Master 帖子: 978 加入日期: 10-1-3 最近的帖子Shahbaz Khan:
Hi
I am using ldap and its working fine. User is imported (added or updated) in liferay successfully.
But I don't want user(or some user field like firstName etc.) to be updated after first import.
Is there any possibility that user will not update if it is already exist in liferay ?
Hi Shahbaz, your need here is better put in a new forum post .
Hey Meera,
In my case , user got imported successfully. Also i can see user details in User_ table. But the problem is user is not able to login with the password set while signup.
I'm not able to find the root cause.
In my case , user got imported successfully. Also i can see user details in User_ table. But the problem is user is not able to login with the password set while signup.
I'm not able to find the root cause.