[Logo] SpagoWorld Forums
  [Search] Search   [Recent Topics] Recent Topics   [Hottest Topics] Hottest Topics   [Members]  Member Listing  
[Groups] Back to home page  [Moderation Log] Moderation Log   [Register] Register /  [Login] Login 
Ldap connection probleme during RoleSynchronizer with spagobi 2.6.0 [SOLVED]  XML
Forum Index » Technical Help - SpagoBI Server - CORE
Author Message
khen.spw

Newby

Joined: 22/07/2010 11:46:17
Messages: 14
Offline

Hi,

I configured SpagoBI 2.6.0 to use OpenLDAP for user authentication as BIADMIN, BIUSER ... respecting configuration of ldap_authorization.xml and spagobi.xml files proposed in the spagobi wiki.

can you help me solve this problem especially since the directory access is successful but SpagoBI can not read roles from the directory.

other infos about spagobi configuration:


=============================================
spagobi.log:

main] 29 juil. 2010 12:35:00,801 ERROR it.eng.spagobi.security.RoleSynchronizer.synchronize:120 - An exception has occurred
java.lang.NullPointerException
at it.eng.spagobi.security.LDAPConnector.createConnection(LDAPConnector.java:137)
at it.eng.spagobi.security.LDAPConnector.getAllGroups(LDAPConnector.java:342)
at it.eng.spagobi.security.LdapSecurityProviderImpl.getRoles(LdapSecurityProviderImpl.java:71)
at it.eng.spagobi.security.RoleSynchronizer.synchronize(RoleSynchronizer.java:94)
at it.eng.spagobi.security.init.SecurityInitializer.init(SecurityInitializer.java:82)
at it.eng.spago.init.InitializerManager.init(InitializerManager.java:79)
at it.eng.spago.configuration.ConfigServlet.init(ConfigServlet.java:115)
at org.apache.catalina.core.StandardWrapper.loadServlet(StandardWrapper.java:1173)
at org.apache.catalina.core.StandardWrapper.load(StandardWrapper.java:993)
at org.apache.catalina.core.StandardContext.loadOnStartup(StandardContext.java:4350)
at org.apache.catalina.core.StandardContext.start(StandardContext.java:4659)
at org.apache.catalina.core.ContainerBase.addChildInternal(ContainerBase.java:791)
at org.apache.catalina.core.ContainerBase.addChild(ContainerBase.java:771)
at org.apache.catalina.core.StandardHost.addChild(StandardHost.java:546)
at org.apache.catalina.startup.HostConfig.deployDescriptor(HostConfig.java:637)
at org.apache.catalina.startup.HostConfig.deployDescriptors(HostConfig.java:563)
at org.apache.catalina.startup.HostConfig.deployApps(HostConfig.java:49
at org.apache.catalina.startup.HostConfig.start(HostConfig.java:1277)
at org.apache.catalina.startup.HostConfig.lifecycleEvent(HostConfig.java:321)
at org.apache.catalina.util.LifecycleSupport.fireLifecycleEvent(LifecycleSupport.java:119)
at org.apache.catalina.core.ContainerBase.start(ContainerBase.java:1053)
at org.apache.catalina.core.StandardHost.start(StandardHost.java:785)
at org.apache.catalina.core.ContainerBase.start(ContainerBase.java:1045)
at org.apache.catalina.core.StandardEngine.start(StandardEngine.java:445)
at org.apache.catalina.core.StandardService.start(StandardService.java:519)
at org.apache.catalina.core.StandardServer.start(StandardServer.java:710)
at org.apache.catalina.startup.Catalina.start(Catalina.java:581)
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
at java.lang.reflect.Method.invoke(Method.java:585)
at org.apache.catalina.startup.Bootstrap.start(Bootstrap.java:289)
at org.apache.catalina.startup.Bootstrap.main(Bootstrap.java:414)




====================================
spagobi.xml


<?xml version="1.0" encoding="ISO-8859-1"?>
<SPAGOBI>

<!-- ********************* START MODE CONFIGURATION ************************ -->
<!-- START-WEB -->
<SPAGOBI-MODE mode="WEB"/>
<!-- END-WEB -->

<HOME>
<BANNER view="true" />
<FOOTER view="false" />
</HOME>

<!-- START-PORTLET
<SPAGOBI-MODE mode="PORTLET"/>
END-PORTLET -->

<!-- ********************* END MODE CONFIGURATION ************************** -->

<!-- defines the max dimension (in bytes) of a document template when uploading it into document detail page -->
<TEMPLATE_MAX_SIZE>5242880</TEMPLATE_MAX_SIZE>

<!-- ********************* START MENU CONFIGURATION ************************ -->
<!-- Property 'mode' defines the style of menu:
- 'ALL_TOP': all the menu voices are on the top of page
- 'ALL_LEFT': all the menu voices are on the left of the page
- 'TOP_LEFT': the first level is on the top, while others levels are on the left of the page
AT THE TIME BEING, ONLY ALL_TOP WORKS PROPERLY
-->
<MENU mode="ALL_TOP" viewExtra="YES" pathTracked="false"/>


<!-- ********************* END MENU CONFIGURATION ************************** -->


<!-- ********************* START SECURITY CONFIGURATION ************************ -->



<!-- START-XML -->
<!--
<SECURITY>
<PORTAL-SECURITY-INIT-CLASS>it.eng.spagobi.security.init.InternalSecurityInitializer</PORTAL-SECURITY-INIT-CLASS>
<PORTAL-SECURITY-CLASS className="it.eng.spagobi.security.InternalSecurityInfoProviderImpl">
<CONFIG />
</PORTAL-SECURITY-CLASS>
<USER-PROFILE-FACTORY-CLASS className="it.eng.spagobi.security.InternalSecurityServiceSupplierImpl" />
<ROLE-NAME-PATTERN-FILTER>.*</ROLE-NAME-PATTERN-FILTER>
<ROLE-TYPE-PATTERNS>
<ADMIN-PATTERN>/spagobi/admin</ADMIN-PATTERN>
<DEV_ROLE-PATTERN>/spagobi/dev</DEV_ROLE-PATTERN>
<TEST_ROLE-PATTERN>/spagobi/test</TEST_ROLE-PATTERN>
<MODEL_ADMIN-PATTERN>/spagobi/modeladmin</MODEL_ADMIN-PATTERN>
</ROLE-TYPE-PATTERNS>
</SECURITY>
-->
<!-- STOP-XML -->


<!-- Web security Provider (LDAP) -->

<SECURITY>
<PORTAL-SECURITY-INIT-CLASS>it.eng.spagobi.security.init.LdapSecurityProviderInit</PORTAL-SECURITY-INIT-CLASS>
<PORTAL-SECURITY-CLASS className="it.eng.spagobi.security.LdapSecurityProviderImpl">
<CONFIG />
</PORTAL-SECURITY-CLASS>
<USER-PROFILE-FACTORY-CLASS className="it.eng.spagobi.security.LdapUserProfileFactoryImpl" />
<ROLE-NAME-PATTERN-FILTER>.*</ROLE-NAME-PATTERN-FILTER>
<ROLE-TYPE-PATTERNS>
<ADMIN-PATTERN>/spagobi/admin</ADMIN-PATTERN>
<DEV_ROLE-PATTERN>/spagobi/dev</DEV_ROLE-PATTERN>
<TEST_ROLE-PATTERN>/spagobi/test</TEST_ROLE-PATTERN>
<MODEL_ADMIN-PATTERN>/spagobi/modeladmin</MODEL_ADMIN-PATTERN>
</ROLE-TYPE-PATTERNS>
</SECURITY>


<!-- Exo security Provider -->
<!--
<SECURITY>
<PORTAL-SECURITY-INIT-CLASS>it.eng.spagobi.security.init.ExoPortalSecurityProviderInit</PORTAL-SECURITY-INIT-CLASS>
<PORTAL-SECURITY-CLASS className="it.eng.spagobi.security.ExoSecurityProviderImpl">
<CONFIG>
<NAME_PORTAL_APPLICATION>@portal.context@</NAME_PORTAL_APPLICATION>
</CONFIG>
</PORTAL-SECURITY-CLASS>
<USER-PROFILE-FACTORY-CLASS className="it.eng.spagobi.security.ExoUserProfileImpl">
</USER-PROFILE-FACTORY-CLASS>
<ROLE-NAME-PATTERN-FILTER>/spagobi/.*</ROLE-NAME-PATTERN-FILTER>
<ROLE-TYPE-PATTERNS>
<ADMIN-PATTERN>/spagobi/admin</ADMIN-PATTERN>
<DEV_ROLE-PATTERN>/spagobi/dev</DEV_ROLE-PATTERN>
<TEST_ROLE-PATTERN>/spagobi/test</TEST_ROLE-PATTERN>
<MODEL_ADMIN-PATTERN>/spagobi/modeladmin</MODEL_ADMIN-PATTERN>
</ROLE-TYPE-PATTERNS>
</SECURITY>
-->

<!-- START-LIFERAY

<SECURITY>
<PORTAL-SECURITY-INIT-CLASS>it.eng.spagobi.security.init.LiferayPortalSecurityProviderInit</PORTAL-SECURITY-INIT-CLASS>
<PORTAL-SECURITY-CLASS className="it.eng.spagobi.security.LiferaySecurityInfoProviderImpl">
<CONFIG />
</PORTAL-SECURITY-CLASS>
<USER-PROFILE-FACTORY-CLASS className="it.eng.spagobi.security.LiferaySecurityServiceSupplierImpl">
</USER-PROFILE-FACTORY-CLASS>
<WS_SERVICE url="localhost:58080/tunnel-web/secure/axis/" username="bruno" password="bruno"/>
<ROLE-NAME-PATTERN-FILTER>/spagobi/.*</ROLE-NAME-PATTERN-FILTER>
<ROLE-TYPE-PATTERNS>
<ADMIN-PATTERN>/spagobi/admin</ADMIN-PATTERN>
<DEV_ROLE-PATTERN>/spagobi/dev</DEV_ROLE-PATTERN>
<TEST_ROLE-PATTERN>/spagobi/test</TEST_ROLE-PATTERN>
<MODEL_ADMIN-PATTERN>/spagobi/modeladmin</MODEL_ADMIN-PATTERN>
</ROLE-TYPE-PATTERNS>
<PROFILE_ATTRIBUTES>
<ATTRIBUTE name="NAME" default="" source="NAME" />
<ATTRIBUTE name="SURNAME" default="" source="SURNAME" />
<ATTRIBUTE name="USER_ID" default="" source="USER_ID" />
<ATTRIBUTE name="E_MAIL" default="" source="E_MAIL" />
</PROFILE_ATTRIBUTES>
<ROLES>
<ROLE name="/spagobi/admin" desc="/spagobi/admin" />
<ROLE name="/spagobi/dev" desc="/spagobi/dev" />
<ROLE name="/spagobi/test" desc="/spagobi/test" />
<ROLE name="/spagobi/modeladmin" desc="/spagobi/modeladmin" />
<ROLE name="/spagobi/user" desc="/spagobi/user" />
</ROLES>
</SECURITY>
END-LIFERAY -->

<!-- ********************* END SECURITY CONFIGURATION ************************** -->


<!-- ********************* START DATABASE CONFIGURATION ************************ -->

<!-- SPAGOBI HIBERNATE PERSISTENCE CONFIGURATTION -->
<!-- PostgresSQL -->
<!-- hibernate.cfg.postgres.xml -->
<!-- MySQL: Uncomment the row below and edit the file to provide connection info -->
<!-- hibernate.cfg.mysql.xml -->
<!-- Oracle: Uncomment the row below and edit the file to provide connection info -->
<!-- hibernate.cfg.ora.xml-->
<!-- Hsqldb: Uncomment the row below and edit the file to provide connection info -->
<!-- hibernate.cfg.hsql.xml -->
<!-- SqlServer: Uncomment the row below and edit the file to provide connection info -->
<!-- hibernate.cfg.sqlserver.xml -->
<!-- Ingres: Uncomment the row below and edit the file to provide connection info -->
<!-- hibernate.cfg.ingres.xml -->

<HIBERNATE-CFGFILE>hibernate.cfg.mysql.xml</HIBERNATE-CFGFILE>

<!-- ********************* END DATABASE CONFIGURATION ************************ -->


<!-- ********************* START GENERAL CONFIGURATION ************************ -->


<!--
Date format for communications with the server (both on sending and receiving); format attribute is for server side services, see java.text.SimpleDateFormat for details,
while extJsFormat is for ExtJs client, that use another standard, see http://extjs.com/deploy/dev/docs/.
IF YOU CHANGE ONE FORMAT YOU MUST CHANGE THE OTHER ONE ACCORDINGLY.
-->
<DATE-FORMAT-SERVER format="dd/MM/yyyy" extJsFormat="d/m/Y" />

<!--
Date format used while displaying dates according to user current locale.
Format attribute is for old presentation mechanism, see java.text.SimpleDateFormat for details,
while extJsFormat is for ExtJs client, that use another standard, see http://extjs.com/deploy/dev/docs/.
IF YOU CHANGE ONE FORMAT YOU MUST CHANGE THE OTHER ONE ACCORDINGLY.
-->
<DATE-FORMAT-IT_IT format="dd/MM/yyyy" extJsFormat="d/m/Y"/>
<DATE-FORMAT-EN_US format="MM/dd/yyyy" extJsFormat="m/d/Y"/>
<DATE-FORMAT-FR_FR format="dd/MM/yyyy" extJsFormat="d/m/Y"/>
<DATE-FORMAT-ES_ES format="dd/MM/yyyy" extJsFormat="d/m/Y"/>
<TIMESTAMP-FORMAT format="dd/MM/yyyy hh:mm:ss" extJsFormat="d/m/Y H:i:s"/>

<!-- Date visual format if language is not found-->
<DATE-FORMAT format="dd/MM/yyyy" extJsFormat="d/m/Y"/>


<!-- True If you want to log user actions in DB table sbi_activity_monitoring-->
<DB_LOG value="false" />
<!-- TimeStamp Format of SpagoBI DB-->
<!-- PostgresSQL: Uncomment the row below and edit the file to provide Db timestamp info -->
<!-- yyyy-MM-dd HH:mm:ss -->
<!-- MySQL: (Default) -->
<!-- yyyy-MM-dd HH:mm:ss -->
<!-- Oracle: Uncomment the row below and edit the file to provide Db timestamp info -->
<!-- dd-MMM-yy HH:mm:ss-->
<!-- Hsqldb: Uncomment the row below and edit the file to provide Db timestamp info -->
<!-- yyyy-MM-dd HH:mm:ss -->
<DB-TIMESTAMP-FORMAT format="yyyy-MM-dd HH:mm:ss" />



<THEMES>
<THEME name="sbi_default" default="true" view_name="default" ext_theme="xtheme-gray.css" />
<!-- <THEME name="other_theme" default="false" view_name="other" /> -->
</THEMES>

<SESSION_PARAMETERS_MANAGER enabled="false" />

<LOOKUP numberRows = "20" />


<SPAGOBI_CONTEXT>/SpagoBI</SPAGOBI_CONTEXT>

<SPAGOBI_HOST_JNDI>java://comp/env/spagobi_host_url</SPAGOBI_HOST_JNDI>

<RESOURCE_PATH_JNDI_NAME>java://comp/env/spagobi_resource_path</RESOURCE_PATH_JNDI_NAME>

<!-- The URL to FORWARD to when session has expired -->
<SESSION_EXPIRED_URL>/WEB-INF/jsp/commons/sessionExpired.jsp</SESSION_EXPIRED_URL>

<SPAGO_ADAPTERHTTP_URL>/servlet/AdapterHTTP</SPAGO_ADAPTERHTTP_URL>

<PORTLET_EDIT_MODE_ROLES>
<ROLE name="/spagobi/admin" />
</PORTLET_EDIT_MODE_ROLES>

<LANGUAGE_SUPPORTED>
<LANGUAGE default="false" language="it" country="IT" />
<LANGUAGE default="true" language="en" country="US" />
<LANGUAGE default="false" language="fr" country="FR" />
<LANGUAGE default="false" language="es" country="ES" />
</LANGUAGE_SUPPORTED>


<SCRIPT_LANGUAGE_SUPPORTED>
<SCRIPT_LANGUAGE default="true"
name="groovy"
engineclass="org.codehaus.groovy.bsf.GroovyEngine"
identifier="groovy"
shortidentifier="gy"
predefinedScriptFile="predefinedGroovyScript.groovy"/>
<SCRIPT_LANGUAGE default="false"
name="javascript"
identifier="javascript"
shortidentifier="js"
predefinedScriptFile="predefinedJavascriptScript.js"/>
</SCRIPT_LANGUAGE_SUPPORTED>


<TREE_INITIALIZATION>
<TREE_INITIAL_STRUCTURE>
<NODE code="Functionalities" name="Functionalities"
description="Functionalities" parentPath="" codeType="LOW_FUNCT" />
<!--
<NODE code="SystemFunctionalities" name="System Functionalities"
description="System Functionalities" parentPath="/Functionalities" codeType="LOW_FUNCT" />
-->
</TREE_INITIAL_STRUCTURE>
</TREE_INITIALIZATION>
<INDEX_INITIALIZATION>
<INDEX jndiResourcePath="java://comp/env/spagobi_resource_path" name="//idx" />
</INDEX_INITIALIZATION>
<INTERNAL_PROFILING_INITIALIZER passwordAbilitated="false">
<DEFAULT_USERS>
<USER userId="biadmin" password="biadmin" fullName="SpagoBI Administrator">
<ATTRIBUTE name="email" value="admin@eng.it" />
<ATTRIBUTE name="name" value="SpagoBI Administrator" />
<ROLE name="/spagobi/admin"/>
</USER>
<USER userId="biuser" password="biuser" fullName="SpagoBI User">
<ATTRIBUTE name="name" value="SpagoBI User" />
<ROLE name="/spagobi/user"/>
</USER>
<USER userId="bitest" password="bitest" fullName="SpagoBI Test User">
<ATTRIBUTE name="name" value="SpagoBI TestUser" />
<ROLE name="/spagobi/test"/>
</USER>
<USER userId="bidev" password="bidev" fullName="SpagoBI Developer">
<ATTRIBUTE name="name" value="SpagoBI Developer" />
<ROLE name="/spagobi/dev"/>
</USER>
<USER userId="user1" password="user1" fullName="SpagoBI User1">
<ATTRIBUTE name="name" value="SpagoBI1" />
<ATTRIBUTE name="surname" value="user1" />
<ATTRIBUTE name="email" value="user1@yahoo.com" />
<ROLE name="/spagobi/user"/>
</USER>
</DEFAULT_USERS>
<DEFAULT_ATTRIBUTES>
<ATTRIBUTE name="name" description="name" />
<ATTRIBUTE name="surname" description="surname" />
<ATTRIBUTE name="address" description="address" />
<ATTRIBUTE name="birth_date" description="birth date" />
<ATTRIBUTE name="email" description="email" />
</DEFAULT_ATTRIBUTES>
<DEFAULT_ROLES>
<ROLE roleName="/spagobi/dev" description="/spagobi/dev" roleTypeCD="DEV_ROLE"/>
<ROLE roleName="/spagobi/test" description="/spagobi/test" roleTypeCD="TEST_ROLE"/>
<ROLE roleName="/spagobi/user" description="/spagobi/user" roleTypeCD="USER"/>
<ROLE roleName="/spagobi/admin" description="/spagobi/admin" roleTypeCD="ADMIN" />
<ROLE roleName="/spagobi/modeladmin" description="/spagobi/modeladmin" roleTypeCD="MODEL_ADMIN" />
</DEFAULT_ROLES>
</INTERNAL_PROFILING_INITIALIZER>

</SPAGOBI>


====================================================
ldap_authorizations.xml


<?xml version="1.0" encoding="ISO-8859-1"?>
<LDAP_AUTHORIZATIONS default="FALSE">
<CONFIG>
<USER_DN>cn=*,ou=People,dc=spagobi,dc=com</USER_DN>
<ADMIN_USER>cn=Manager,dc=spagobi,dc=com</ADMIN_USER>
<ADMIN_PSW>{SSHA}d7pO5yQ0bg3aHfCmQyiqHBWMmh8AK3nG</ADMIN_PSW>
<ATTRIBUTES_ID name="nome">description</ATTRIBUTES_ID>
<ATTRIBUTES_ID name="cognome">sn</ATTRIBUTES_ID>
<ATTRIBUTES_ID name="userId">cn</ATTRIBUTES_ID>
<HOST>192.168.10.11</HOST>
<PORT>389</PORT>
<OBJECTCLASS>person</OBJECTCLASS>
<SEARCH_ROOT>ou=People,dc=spagobi,dc=com</SEARCH_ROOT>
<OU_ATTRIBUTE>memberOf</OU_ATTRIBUTE>
<SEARCH_ROOT_GROUP>CN=Group,dc=spagobi,dc=com</SEARCH_ROOT_GROUP>
<OBJECTCLASS_GROUP>organizationalUnit</OBJECTCLASS_GROUP>
<ATTRIBUTES_ID_GROUP>description</ATTRIBUTES_ID_GROUP>
<ATTRIBUTES_ID_GROUP>CN</ATTRIBUTES_ID_GROUP>
</CONFIG>

</LDAP_AUTHORIZATIONS>


====================================================

LDIF file extracted from openldap server

version: 1
dn: dc=spagobi,dc=com
objectClass: top
objectClass: dcObject
objectClass: organization
dc: spagobi
description: Spagobi
o: Spagobi

dn: cn=Manager,dc=spagobi,dc=com
objectClass: organizationalRole
cn: Manager

dn: cn=root,dc=spagobi,dc=com
objectClass: organizationalRole
cn: root

dn: ou=People,dc=spagobi,dc=com
objectClass: top
objectClass: organizationalUnit
ou: People

dn: cn=bidev,ou=People,dc=spagobi,dc=com
objectClass: organizationalPerson
objectClass: person
objectClass: top
cn: bidev
description: /spagobi/dev
ou: ou=/spagobi/dev,ou=Group,dc=spagobi,dc=com
sn: bidev
title: Dot.
userPassword:: YmlkZXY=

dn: cn=biuser,ou=People,dc=spagobi,dc=com
objectClass: organizationalPerson
objectClass: person
objectClass: top
cn: biuser
description: /spagobi/user
ou: ou=/spagobi/user,ou=Group,dc=spagobi,dc=com
sn: biuser
title: Dot.
userPassword:: Yml1c2Vy

dn: cn=bitest,ou=People,dc=spagobi,dc=com
objectClass: organizationalPerson
objectClass: person
objectClass: top
cn: bitest
description: /spagobibi/test
ou: ou=/spagobi/test,ou=Group,dc=spagobi,dc=com
sn: bitest
title: Dot.
userPassword:: Yml0ZXN0

dn: cn=biadmin,ou=People,dc=spagobi,dc=com
objectClass: organizationalPerson
objectClass: person
objectClass: top
cn: biadmin
description: /spagobi/biadmin
ou: ou=/spagobi/admin, ou=Group,dc=spagobi,dc=com
sn: biadmin
title: Dot.
userPassword:: YmlhZG1pbg==

dn: cn=user2,ou=People,dc=spagobi,dc=com
objectClass: organizationalPerson
objectClass: person
objectClass: top
cn: user2
description: /spagobi/user2
ou: ou=/spagobi/user, ou=Group,dc=spagobi,dc=com
sn: user2
title: Dot.
userPassword:: dGRx

dn: cn=user1,ou=People,dc=spagobi,dc=com
objectClass: organizationalPerson
objectClass: person
objectClass: top
cn: user1
description: /spagobi/user1
ou: ou=/spagobi/user, ou=Group,dc=spagobi,dc=com
sn: user1
title: Dot.
userPassword:: dGRx

dn: cn=bam,ou=People,dc=spagobi,dc=com
objectClass: organizationalPerson
objectClass: person
objectClass: top
cn: bam
description: bam
ou: ou=/spagobi/user, ou=Group,dc=spagobi,dc=com
sn: bam
title: Dot.
userPassword:: YmFt

dn: ou=Group,dc=spagobi,dc=com
objectClass: top
objectClass: organizationalUnit
description: Group
ou: Group

dn: ou=/spagobi/modeladmin,ou=Group,dc=spagobi,dc=com
objectClass: organizationalUnit
objectClass: top
description: /spagobi/modeladmin
ou: /spagobi/modeladmin

dn: ou=/spagobi/admin,ou=Group,dc=spagobi,dc=com
objectClass: organizationalUnit
objectClass: top
description: /spagobi/admin
ou: /spagobi/admin

dn: ou=/spagobi/dev,ou=Group,dc=spagobi,dc=com
objectClass: organizationalUnit
objectClass: top
description: /spagobi/de
ou: /spagobi/dev

dn: ou=/spagobi/user,ou=Group,dc=spagobi,dc=com
objectClass: organizationalUnit
objectClass: top
description: /spagobi/user
ou: /spagobi/user

dn: ou=/spagobi/test,ou=Group,dc=spagobi,dc=com
objectClass: organizationalUnit
objectClass: top
description: /spagobi/test
ou: /spagobi/test



Thank you every one;

This message was edited 1 time. Last update was at 27/09/2010 12:35:13

bernabei

SpagoBI friend
[Avatar]

Joined: 05/07/2010 12:44:01
Messages: 84
Location: Bologna
Offline

HI,
the problem is in this line of code:
connection.bind(LDAPConnection.LDAP_V3, adminUser, (defaultCipher.decrypt(adminPsw)).getBytes("UTF8"));

Null Pointer here is possible if there is a problem in defaultCipher.decryp.
How did you generate the ADMIN_PSW ????

Regards
Angelo
[Email]
samueleorso.spw

Newby

Joined: 08/07/2010 18:07:07
Messages: 11
Offline

Hi khen,
I think there're some errors inside ldap_authorizations.xml:

1. <ADMIN_PSW> "The ADMIN_PSW value must be encrypted with DefaultCipher" (See user management chapter of documentation)
2. <OU_ATTRIBUTE> In your ldif file I see the "ou" attribute and not "memberOf" attribute as link between users and group
3. <SEARCH_ROOT_GROUP> I see "ou=Group,dc=spagobi,dc=com" and not "CN=Group,dc=spagobi,dc=com" as Group Root Node
4. <ATTRIBUTES_ID_GROUP>CN</ATTRIBUTES_ID_GROUP> the attribute cn is not present inside role node, try use "ou"

I hope to help you...
samueleorso.spw

Newby

Joined: 08/07/2010 18:07:07
Messages: 11
Offline

Hi Khen,
I forgotten this (I found it inside spagobi forum):


to obtain the encryption of your password you have to run the DefaultCipher.java file that is in spago-core-2.2.0.jar file:

So go to the folder where the jar file is, should be something like: -[TOMCAT_PATH]\apache-tomcat- 6.0.18\webapps\SpagoBI\WEB-INF\lib> and run the java command:

java -cp ./spago-core-2.2.0.jar:./commons-codec-1.3.jar it.eng.spago.security.DefaultCipher.encrypt [YOUR_PASSWORD]

khen.spw

Newby

Joined: 22/07/2010 11:46:17
Messages: 14
Offline

I generate password with ldpadpassword utilty;

but when run spagobi server it can access to ldap server and ead informations from, the problem it can't compose roles!
bernabei

SpagoBI friend
[Avatar]

Joined: 05/07/2010 12:44:01
Messages: 84
Location: Bologna
Offline

Hi
to generate password you have to use

java -cp ./spago-core-XXX.jar:./commons-codec-1.3.jar it.eng.spago.security.DefaultCipher.encrypt [YOUR_PASSWORD]

regards
Angelo
[Email]
khen.spw

Newby

Joined: 22/07/2010 11:46:17
Messages: 14
Offline

I'll try to change passwords with those generated with

java -cp ./spago-core-2.2.0.jar:./commons-codec-1.3.jar it.eng.spago.security.DefaultCipher.encrypt [YOUR_PASSWORD]

khen.spw

Newby

Joined: 22/07/2010 11:46:17
Messages: 14
Offline

A)
I tryed the next line dosn't works rigth

C:\tdqportal\webapps\tdqportal\WEB-INF\lib>java -cp ./spago-core-2.2.0.jar;./commons-codec-1.3.jar it.eng.spago.security.DefaultCipher.encrypt secret
Exception in thread "main" java.lang.NoClassDefFoundError: it/eng/spago/security/DefaultCipher/encrypt
Caused by: java.lang.ClassNotFoundException: it.eng.spago.security.DefaultCipher.encrypt
at java.net.URLClassLoader$1.run(Unknown Source)
at java.security.AccessController.doPrivileged(Native Method)
at java.net.URLClassLoader.findClass(Unknown Source)
at java.lang.ClassLoader.loadClass(Unknown Source)
at sun.misc.Launcher$AppClassLoader.loadClass(Unknown Source)
at java.lang.ClassLoader.loadClass(Unknown Source)
Could not find the main class: it.eng.spago.security.DefaultCipher.encrypt. Program will exit.



but this one can generate a password:

java -cp ./spago-core-2.2.0.jar;./commons-codec-1.3.jar it.eng.spago.security.DefaultCipher encrypt secret
encrypted [6ddbcdd70d086e75bdc121b16bd23f03]

I must separate DefaultCipher encrypt and replace : with ; as commands separator in windows.

any way

=========================================================


I used this password 6ddbcdd70d086e75bdc121b16bd23f03

in ldap_authorization.xml

<LDAP_AUTHORIZATIONS default="FALSE">
<CONFIG>
<USER_DN>cn=*,ou=People,dc=spagobi,dc=com</USER_DN>
<ADMIN_USER>cn=Manager,dc=spagobi,dc=com</ADMIN_USER>
<ADMIN_PSW>6ddbcdd70d086e75bdc121b16bd23f03</ADMIN_PSW>
<ATTRIBUTES_ID name="nome">description</ATTRIBUTES_ID>
<ATTRIBUTES_ID name="cognome">sn</ATTRIBUTES_ID>
<ATTRIBUTES_ID name="userId">cn</ATTRIBUTES_ID>
<HOST>192.168.10.11</HOST>
<PORT>389</PORT>
<OBJECTCLASS>person</OBJECTCLASS>
<SEARCH_ROOT>ou=People,dc=spagobi,dc=com</SEARCH_ROOT>
<OU_ATTRIBUTE>memberOf</OU_ATTRIBUTE>
<SEARCH_ROOT_GROUP>OU=Group,dc=spagobi,dc=com</SEARCH_ROOT_GROUP>
<OBJECTCLASS_GROUP>organizationalUnit</OBJECTCLASS_GROUP>
<ATTRIBUTES_ID_GROUP>description</ATTRIBUTES_ID_GROUP>
<ATTRIBUTES_ID_GROUP>OU</ATTRIBUTES_ID_GROUP>
</CONFIG>
</LDAP_AUTHORIZATIONS>

in ldap config file i changed Manager password as

rootpw 6ddbcdd70d086e75bdc121b16bd23f03


But my quation is, what kind of encryption should i select with LDAP authentification (when login with Manager : plain, MD5, SMD5, SHA or SSHA) that it works with it.eng.spago.security.DefaultCipher.





samueleorso.spw

Newby

Joined: 08/07/2010 18:07:07
Messages: 11
Offline

Hi Khen,
you don't have to change password inside ldap server config file, because the defaultChiper encryption is only for SpagoBI LDAP connector.

For example (cn=Manager password = secret):
<ADMIN_PSW>6ddbcdd70d086e75bdc121b16bd23f03</ADMIN_PSW> (ldap_authorization file)

rootpw secret (password saved as plain text inside ldap server config file)


Verify also the <OU_ATTRIBUTE> configuration (memberOf or ou???)

Regards
khen.spw

Newby

Joined: 22/07/2010 11:46:17
Messages: 14
Offline

A help steps about How deploy Openldap with Spagobi server

1) Openldap configuration

1.1) sldap.conf and users.ldif config

it is important to use a plain password in sldap.conf file because spagobi can't decrypt passwords other then whos wrypted with efaultCipher java;class.

I consider that you installed an open ldap server to support spagobi groups and users.

This is an extract of sldap.conf file:
...
suffix "dc=khen_pc,dc=com"
rootdn "cn=Manager,dc=khen_pc,dc=com"
rootpw spagobiworld
...

1.2) An exemple of ldif file (users.ldif) to create groups or users:

==========================================
dn: dc=khen_pc,dc=com
objectClass: top
objectClass: dcObject
objectClass: organization
dc: khen_pc
o: khen_pc.com

dn: cn=admin,dc=khen_pc,dc=com
objectClass: simpleSecurityObject
objectClass: organizationalRole
cn: admin
description: LDAP administrator
userPassword:: e2NyeXB0fVAxWGVuT0Z5MkR3N28=

dn: ou=People,dc=khen_pc,dc=com
objectClass: organizationalUnit
objectClass: top
ou: People

dn: cn=root,dc=khen_pc,dc=com
objectClass: organizationalRole
cn: root

dn: cn=biadmin,ou=People,dc=khen_pc,dc=com
objectClass: organizationalPerson
objectClass: person
objectClass: top
cn: biadmin
description: /spagobi/admin
ou: ou= /spagobi/admin,ou=Group,dc=khen_pc,dc=com
sn: biadmin
telephoneNumber: 00331445566
title: Dot.
userPassword:: YmlhZG1pbg==

dn: cn=bidev,ou=People,dc=khen_pc,dc=com
objectClass: organizationalPerson
objectClass: person
objectClass: top
cn: bidev
description: /spagobi/dev
ou: ou=/spagobi/dev,ou=Group,dc=khen_pc,dc=com
sn: bidev
title: Dot.
userPassword:: YmlkZXY=

dn: cn=biuser,ou=People,dc=khen_pc,dc=com
objectClass: organizationalPerson
objectClass: person
objectClass: top
cn: biuser
description: /spagobi/user
ou: ou=/spagobi/user,ou=Group,dc=khen_pc,dc=com
sn: biuser
title: Dot.
userPassword:: Yml1c2Vy

dn: cn=bitest,ou=People,dc=khen_pc,dc=com
objectClass: organizationalPerson
objectClass: person
objectClass: top
cn: bitest
description: /spagobi/test
ou: ou=/spagobi/test,ou=Group,dc=khen_pc,dc=com
sn: bitest
title: Dot.
userPassword:: Yml0ZXN0

dn: ou=Group,dc=khen_pc,dc=com
objectClass: top
objectClass: organizationalUnit
ou: Group

dn: ou=/spagobi/admin,ou=Group,dc=khen_pc,dc=com
objectClass: organizationalUnit
objectClass: top
description: /spagobi/admin
ou: /spagobi/admin

dn: ou=/spagobi/dev,ou=Group,dc=khen_pc,dc=com
objectClass: organizationalUnit
objectClass: top
description: ou=/spagobi/dev
ou: /spagobi/dev

dn: ou=/spagobi/test,ou=Group,dc=khen_pc,dc=com
objectClass: organizationalUnit
objectClass: top
description: /spagobi/test
ou: /spagobi/test

dn: ou=/spagobi/user,ou=Group,dc=khen_pc,dc=com
objectClass: organizationalUnit
objectClass: top
description: /spagobi/user
ou: /spagobi/user

========================================



2) Spagobi configuration

2.1) Encrypt password with DefaultCipher:

move to folder (tomcat)\webapps\SpagoBI\WEB-INF\lib

run next line:
java -cp ./spago-core-2.2.0.jar;./commons-codec-1.3.jar it.eng.spago.security.DefaultCipher encrypt spagobiworld
encrypted [8e0c280140f49893d8b9e474a198feb8]

copy only 8e0c280140f49893d8b9e474a198feb8 in ldap_authorization.xml as crypted password

with Linux:
java -cp ./spago-core-2.2.0.jar:./commons-codec-1.3.jar it.eng.spago.security.DefaultCipher encrypt spagobiworld

2.2) prepare ldap_authorization.xml file
located in folder: (tomcat)\webapps\SpagoBI\WEB-INF\conf\webapp
...
<LDAP_AUTHORIZATIONS default="FALSE">
<CONFIG>
<USER_DN>cn=*,ou=People,dc=khen_pc,dc=com</USER_DN>
<ADMIN_USER>cn=admin,dc=khen_pc,dc=com</ADMIN_USER>
<ADMIN_PSW>8e0c280140f49893d8b9e474a198feb8</ADMIN_PSW>
<ATTRIBUTES_ID name="nome">description</ATTRIBUTES_ID>
<ATTRIBUTES_ID name="cognome">sn</ATTRIBUTES_ID>
<ATTRIBUTES_ID name="userId">cn</ATTRIBUTES_ID>
<HOST>localhost</HOST>
<PORT>389</PORT>
<OBJECTCLASS>person</OBJECTCLASS>
<SEARCH_ROOT>ou=People,dc=khen_pc,dc=com</SEARCH_ROOT>
<OU_ATTRIBUTE>ou</OU_ATTRIBUTE>
<SEARCH_ROOT_GROUP>OU=Group,dc=khen_pc,dc=com</SEARCH_ROOT_GROUP>
<OBJECTCLASS_GROUP>organizationalUnit</OBJECTCLASS_GROUP>
<ATTRIBUTES_ID_GROUP>description</ATTRIBUTES_ID_GROUP>
<ATTRIBUTES_ID_GROUP>OU</ATTRIBUTES_ID_GROUP>
</CONFIG>
</LDAP_AUTHORIZATIONS>


2.3) prepare spagobi.xml file:
located in folder: (tomcat)\webapps\SpagoBI\WEB-INF\conf\config

activate the ldap xml group in spagobi.xml
....
<!-- Web security Provider (LDAP) -->

<SECURITY>
<PORTAL-SECURITY-INIT-CLASS>it.eng.spagobi.security.init.LdapSecurityProviderInit</PORTAL-SECURITY-INIT-CLASS>
<PORTAL-SECURITY-CLASS className="it.eng.spagobi.security.LdapSecurityProviderImpl">
<CONFIG />
</PORTAL-SECURITY-CLASS>
<USER-PROFILE-FACTORY-CLASS className="it.eng.spagobi.security.LdapUserProfileFactoryImpl" />
<ROLE-NAME-PATTERN-FILTER>.*</ROLE-NAME-PATTERN-FILTER>
<ROLE-TYPE-PATTERNS>
<ADMIN-PATTERN>/spagobi/admin</ADMIN-PATTERN>
<DEV_ROLE-PATTERN>/spagobi/dev</DEV_ROLE-PATTERN>
<TEST_ROLE-PATTERN>/spagobi/test</TEST_ROLE-PATTERN>
<MODEL_ADMIN-PATTERN>/spagobi/modeladmin</MODEL_ADMIN-PATTERN>
</ROLE-TYPE-PATTERNS>
</SECURITY>

....


and desactivate xthe xml authentification like this :

....
<!-- START-XML -->
<!--
<SECURITY>
<PORTAL-SECURITY-INIT-CLASS>it.eng.spagobi.security.init.InternalSecurityInitializer</PORTAL-SECURITY-INIT-CLASS>
<PORTAL-SECURITY-CLASS className="it.eng.spagobi.security.InternalSecurityInfoProviderImpl">
<CONFIG />
</PORTAL-SECURITY-CLASS>
<USER-PROFILE-FACTORY-CLASS className="it.eng.spagobi.security.InternalSecurityServiceSupplierImpl" />
<ROLE-NAME-PATTERN-FILTER>.*</ROLE-NAME-PATTERN-FILTER>
<ROLE-TYPE-PATTERNS>
<ADMIN-PATTERN>/spagobi/admin</ADMIN-PATTERN>
<DEV_ROLE-PATTERN>/spagobi/dev</DEV_ROLE-PATTERN>
<TEST_ROLE-PATTERN>/spagobi/test</TEST_ROLE-PATTERN>
<MODEL_ADMIN-PATTERN>/spagobi/modeladmin</MODEL_ADMIN-PATTERN>
</ROLE-TYPE-PATTERNS>
</SECURITY>
-->
<!-- STOP-XML -->

....


3) you can use an external software to administrate users and groups in openldap server:

JXplorer is a frindly program to administrate an openldap server.

after download it and install the program : http://sourceforge.net/projects/jxplorer/

fill info about your openldap sever login:
for exemple:
IP server : localhost
Port: 389
Protocol: ldap_v3
DN:dc=talend,dc=com
user DN: cn=admin,dc=khen_pc,dc=com
password: spagobiworld

and so

Don't forget to read : http://wiki.spagobi.org/xwiki/bin/view/spagobi_server/User+management
....

I hope this litle guide will every body.

All my thanks to Samueleorso and Bernabei.
verscom.spw



Joined: 18/02/2011 14:31:09
Messages: 1
Offline

hi,

does anybody use Microsoft AD (Active Directory) LDAP connection with SPAGOBI 2.7 version
We have successfully logged in via LDAP authentication but The SPAGI pages comes empty even we use biadmin user which is created in AD with /spagobi/admin organizational Unit.
how can we sync roles for LDAP users
marcia.spw

SpagoBI friend
[Avatar]

Joined: 29/05/2012 15:29:11
Messages: 89
Location: Brazil
Offline

I'm facing the same problem!
brullesco.spw



Joined: 24/09/2014 16:59:44
Messages: 7
Offline

Sorry, khen, but does this procedure worked for you. I tried it but SpagoBI gives me wrong pword or user error. If you want i can post the passages i followed



khen.spw wrote:A help steps about How deploy Openldap with Spagobi server

1) Openldap configuration

1.1) sldap.conf and users.ldif config

it is important to use a plain password in sldap.conf file because spagobi can't decrypt passwords other then whos wrypted with efaultCipher java;class.

I consider that you installed an open ldap server to support spagobi groups and users.

This is an extract of sldap.conf file:
...
suffix "dc=khen_pc,dc=com"
rootdn "cn=Manager,dc=khen_pc,dc=com"
rootpw spagobiworld
...

1.2) An exemple of ldif file (users.ldif) to create groups or users:

==========================================
dn: dc=khen_pc,dc=com
objectClass: top
objectClass: dcObject
objectClass: organization
dc: khen_pc
o: khen_pc.com

dn: cn=admin,dc=khen_pc,dc=com
objectClass: simpleSecurityObject
objectClass: organizationalRole
cn: admin
description: LDAP administrator
userPassword:: e2NyeXB0fVAxWGVuT0Z5MkR3N28=

dn: ou=People,dc=khen_pc,dc=com
objectClass: organizationalUnit
objectClass: top
ou: People

dn: cn=root,dc=khen_pc,dc=com
objectClass: organizationalRole
cn: root

dn: cn=biadmin,ou=People,dc=khen_pc,dc=com
objectClass: organizationalPerson
objectClass: person
objectClass: top
cn: biadmin
description: /spagobi/admin
ou: ou= /spagobi/admin,ou=Group,dc=khen_pc,dc=com
sn: biadmin
telephoneNumber: 00331445566
title: Dot.
userPassword:: YmlhZG1pbg==

dn: cn=bidev,ou=People,dc=khen_pc,dc=com
objectClass: organizationalPerson
objectClass: person
objectClass: top
cn: bidev
description: /spagobi/dev
ou: ou=/spagobi/dev,ou=Group,dc=khen_pc,dc=com
sn: bidev
title: Dot.
userPassword:: YmlkZXY=

dn: cn=biuser,ou=People,dc=khen_pc,dc=com
objectClass: organizationalPerson
objectClass: person
objectClass: top
cn: biuser
description: /spagobi/user
ou: ou=/spagobi/user,ou=Group,dc=khen_pc,dc=com
sn: biuser
title: Dot.
userPassword:: Yml1c2Vy

dn: cn=bitest,ou=People,dc=khen_pc,dc=com
objectClass: organizationalPerson
objectClass: person
objectClass: top
cn: bitest
description: /spagobi/test
ou: ou=/spagobi/test,ou=Group,dc=khen_pc,dc=com
sn: bitest
title: Dot.
userPassword:: Yml0ZXN0

dn: ou=Group,dc=khen_pc,dc=com
objectClass: top
objectClass: organizationalUnit
ou: Group

dn: ou=/spagobi/admin,ou=Group,dc=khen_pc,dc=com
objectClass: organizationalUnit
objectClass: top
description: /spagobi/admin
ou: /spagobi/admin

dn: ou=/spagobi/dev,ou=Group,dc=khen_pc,dc=com
objectClass: organizationalUnit
objectClass: top
description: ou=/spagobi/dev
ou: /spagobi/dev

dn: ou=/spagobi/test,ou=Group,dc=khen_pc,dc=com
objectClass: organizationalUnit
objectClass: top
description: /spagobi/test
ou: /spagobi/test

dn: ou=/spagobi/user,ou=Group,dc=khen_pc,dc=com
objectClass: organizationalUnit
objectClass: top
description: /spagobi/user
ou: /spagobi/user

========================================



2) Spagobi configuration

2.1) Encrypt password with DefaultCipher:

move to folder (tomcat)\webapps\SpagoBI\WEB-INF\lib

run next line:
java -cp ./spago-core-2.2.0.jar;./commons-codec-1.3.jar it.eng.spago.security.DefaultCipher encrypt spagobiworld
encrypted [8e0c280140f49893d8b9e474a198feb8]

copy only 8e0c280140f49893d8b9e474a198feb8 in ldap_authorization.xml as crypted password

with Linux:
java -cp ./spago-core-2.2.0.jar:./commons-codec-1.3.jar it.eng.spago.security.DefaultCipher encrypt spagobiworld

2.2) prepare ldap_authorization.xml file
located in folder: (tomcat)\webapps\SpagoBI\WEB-INF\conf\webapp
...
<LDAP_AUTHORIZATIONS default="FALSE">
<CONFIG>
<USER_DN>cn=*,ou=People,dc=khen_pc,dc=com</USER_DN>
<ADMIN_USER>cn=admin,dc=khen_pc,dc=com</ADMIN_USER>
<ADMIN_PSW>8e0c280140f49893d8b9e474a198feb8</ADMIN_PSW>
<ATTRIBUTES_ID name="nome">description</ATTRIBUTES_ID>
<ATTRIBUTES_ID name="cognome">sn</ATTRIBUTES_ID>
<ATTRIBUTES_ID name="userId">cn</ATTRIBUTES_ID>
<HOST>localhost</HOST>
<PORT>389</PORT>
<OBJECTCLASS>person</OBJECTCLASS>
<SEARCH_ROOT>ou=People,dc=khen_pc,dc=com</SEARCH_ROOT>
<OU_ATTRIBUTE>ou</OU_ATTRIBUTE>
<SEARCH_ROOT_GROUP>OU=Group,dc=khen_pc,dc=com</SEARCH_ROOT_GROUP>
<OBJECTCLASS_GROUP>organizationalUnit</OBJECTCLASS_GROUP>
<ATTRIBUTES_ID_GROUP>description</ATTRIBUTES_ID_GROUP>
<ATTRIBUTES_ID_GROUP>OU</ATTRIBUTES_ID_GROUP>
</CONFIG>
</LDAP_AUTHORIZATIONS>


2.3) prepare spagobi.xml file:
located in folder: (tomcat)\webapps\SpagoBI\WEB-INF\conf\config

activate the ldap xml group in spagobi.xml
....
<!-- Web security Provider (LDAP) -->

<SECURITY>
<PORTAL-SECURITY-INIT-CLASS>it.eng.spagobi.security.init.LdapSecurityProviderInit</PORTAL-SECURITY-INIT-CLASS>
<PORTAL-SECURITY-CLASS className="it.eng.spagobi.security.LdapSecurityProviderImpl">
<CONFIG />
</PORTAL-SECURITY-CLASS>
<USER-PROFILE-FACTORY-CLASS className="it.eng.spagobi.security.LdapUserProfileFactoryImpl" />
<ROLE-NAME-PATTERN-FILTER>.*</ROLE-NAME-PATTERN-FILTER>
<ROLE-TYPE-PATTERNS>
<ADMIN-PATTERN>/spagobi/admin</ADMIN-PATTERN>
<DEV_ROLE-PATTERN>/spagobi/dev</DEV_ROLE-PATTERN>
<TEST_ROLE-PATTERN>/spagobi/test</TEST_ROLE-PATTERN>
<MODEL_ADMIN-PATTERN>/spagobi/modeladmin</MODEL_ADMIN-PATTERN>
</ROLE-TYPE-PATTERNS>
</SECURITY>

....


and desactivate xthe xml authentification like this :

....
<!-- START-XML -->
<!--
<SECURITY>
<PORTAL-SECURITY-INIT-CLASS>it.eng.spagobi.security.init.InternalSecurityInitializer</PORTAL-SECURITY-INIT-CLASS>
<PORTAL-SECURITY-CLASS className="it.eng.spagobi.security.InternalSecurityInfoProviderImpl">
<CONFIG />
</PORTAL-SECURITY-CLASS>
<USER-PROFILE-FACTORY-CLASS className="it.eng.spagobi.security.InternalSecurityServiceSupplierImpl" />
<ROLE-NAME-PATTERN-FILTER>.*</ROLE-NAME-PATTERN-FILTER>
<ROLE-TYPE-PATTERNS>
<ADMIN-PATTERN>/spagobi/admin</ADMIN-PATTERN>
<DEV_ROLE-PATTERN>/spagobi/dev</DEV_ROLE-PATTERN>
<TEST_ROLE-PATTERN>/spagobi/test</TEST_ROLE-PATTERN>
<MODEL_ADMIN-PATTERN>/spagobi/modeladmin</MODEL_ADMIN-PATTERN>
</ROLE-TYPE-PATTERNS>
</SECURITY>
-->
<!-- STOP-XML -->

....


3) you can use an external software to administrate users and groups in openldap server:

JXplorer is a frindly program to administrate an openldap server.

after download it and install the program : http://sourceforge.net/projects/jxplorer/

fill info about your openldap sever login:
for exemple:
IP server : localhost
Port: 389
Protocol: ldap_v3
DN:dc=talend,dc=com
user DN: cn=admin,dc=khen_pc,dc=com
password: spagobiworld

and so

Don't forget to read : http://wiki.spagobi.org/xwiki/bin/view/spagobi_server/User+management
....

I hope this litle guide will every body.

All my thanks to Samueleorso and Bernabei.
 
Forum Index » Technical Help - SpagoBI Server - CORE
Go to:   
Powered by JForum 2.1.9 © JForum Team