There are several additional steps to integrating Presto with LDAP which are covered in the Administration documentation. Unfortunately, there isn't a direct link to the topic you need. But it's fairly simple to find: 

Open the Documentation page from the MDC and select the Administration link. Or go to http://www.jackbe.com/prestodocs/v2.5/prestoadmin/index.html.

Use the Search tab and search for LDAP. The top hit "Integrating Your LDAP Directory with Presto" has all the configuration steps you need.

In addition to the documentation that Sara describes below, there's also a short video that gives an overview of LDAP configuration: http://www.jackbe.com/enterprise-mashup/videos/installing-presto-part-4-overview-presto-repository.  I hope this helps!

My LDAP Server allows anonymous bind if I leave these fields blank I get errors saying that they cannot be null.

fields:

dirManager.dn=c
dirManager.password=

Presto does not currently support anonymous bind. You have to user an account which has enough privileges to search all users and read user information. Specifically read user groups and roles.

Instead of using Admin UI I suggest you edit userRepositoryLdap.properties directly. User userRepositoryLdap-AD-example.properties as an example

HTH, Alexi

userRepositoryLdap-AD-example.properties Where can I find this file?

It is in {web-apps-home}/presto/WEB-INF/classes folder where {web-apps-home} is the path to your application server's root folder for web applications.

<!--Session data-->

It is in {web-apps-home}/presto/WEB-INF/classes folder where {web-apps-home} is the path to your application server's root folder for web applications.

These are one of the few posts that I actually care to comment on. I find this blogger an inspiration and is definitely worth following. I've became a subscriber too, so please keep me updated. I would appreciate if you could suggest your readers to check out VedoMedia. We have seo experts, Internet marketing gurus, and super affiliates on our team and we know how to get your business and site some traffic.  Website design Hartford, CT

Presto and LDAP Configuration

I am trying to configure Presto 2.7 to use LDAP, but now I can't log in.

I am using ApacheDS http://directory.apache.org/

I am follwing the steps outlined here:

http://www.jackbe.com/prestodocs/v2.7.0/prestoadmin/wwhelp/wwhimpl/common/html/wwhelp.htm?context=prestoadmin&file=PrestoAdminLibrary.1.30.html

I created new Presto groups in my LDAP and added new users to these grroups.  Am I missing something?

Can you help?

Thanks,

Dan

Daniel,

Any error messages in the log ?

Please enable security related login and see what error messages you have

log4j.logger.org.acegisecurity=DEBUG
log4j.logger.com.jackbe.jbp.sas.security=DEBUG

Also please  attach your userRepositoryLdap.properties

so we can review

Hi Alexi,

Thanks for offering to help out!

I attached the file, as you requested.  Do you also need to see the .ldif?

Thank you,

Dan

Looks like I just need a simple config update.

Here are some of my current errors:

[org.acegisecurity.ldap.search.FilterBasedLdapUserSearch] - Searching for user 'dhudson', with user search [ searchFilter: '(uid={0})', searchBase: 'ou=Users',

Creating InitialDirContext with environment {java.naming.provider.url=ldap://localhost:10389/dc=example,dc=com

Attempting to bind with DN = uid=dhudson,ou=Users,dc=example,dc=com

Creating InitialDirContext with environment {java.naming.provider.

Failed to bind as uid=dhudson,ou=Users,dc=example,dc=com: javax.naming.AuthenticationException:

Authentication event AuthenticationFailureBadCredentialsEvent: dhudson; details: org.acegisecurity.ui.

Configuring Presto to use LDAP (Apache DS) has been resolved.

I will need to do a few tests to build confidence now.

The next step is Single Sign On!

Does anyone have examples of using Central Authentication Service (CAS) as SSO for Presto?

Thanks,

For clarity for other forum users, could you post what configuration was the solution? This may also help me figure out if the docs need more clarification :-)

<!--Session data-->

Hi Sara,

I put together a "Step-by-Step" guide for configuring Presto to use LDAP.  This includes the LDIF files, LDAP properties file, screenshots, and details for each step.

I hope The Community here will review this Presto LDAP Guide and help shape it up for wider use.  I am concerned about the "filterSearch" value and I was hoping to get some feedback on this part and the overall document.

Thanks,