Issue
· Is it possible to query multiple LDAP authentication sources in EPP 5.2?
· Are there any known limitations to this feature?
Environment
· JBoss Enterprise Portal Platform (EPP) 5.2
Resolution
Yes it is possible to query multiple LDAP servers in JBoss EPP 5.2. Follow the steps below to configure multiple LDAP resources for users:
Step 1: Configure multiple identityStore with different providerURL pointing to different LDAP servers. An example configuration given below:
PortalLDAPStore1 org.picketlink.idm.impl.store.ldap.LDAPIdentityStoreImpl JBOSS_IDENTITY_MEMBERSHIP USER ...otherobject ...... PortalLDAPStore2 ......
Step 2: Map the identity store in repository configuration. An example provided below:
PortalRepository org.picketlink.idm.impl.repository.FallbackIdentityStoreRepository HibernateStore HibernateStore PortalLDAPStore1 USER otherobject PortalLDAPStore2 USER ...
Please note there is one limitation with this feature. The same user cannot be in multiple LDAP servers. In other words, if there is a UID uniqueness among the LDAP servers, then it should be fine to query users from multiple LDAP resources.
No comments:
Post a Comment