- Concept http://www.jianshu.com/p/a41b41977f95
- Install LDAP.
Download http://directory.apache.org/apacheds/downloads.html
Install. My test is http://directory.apache.org/apacheds/download/download-linux-deb.html 64bit
After install, start apacheds with sudo or root
# /etc/init.d/apacheds-2.0.0-M20-default start
# /etc/init.d/apacheds-2.0.0-M20-default status
then check if it starts. My first starting failed. It’s because /var/lib/apacheds-2.0.0-M20/default/conf/wrapper-instance.conf
# Path to java executable
# Override the JRE used
# wrapper.java.command=
uncomment wrapper.java.command, set it to your java executable file
wrapper.java.command=/home/bejond/tools/java-tools/jdk1.7.0_40/jre/bin/java
then try another start, status.
My second starting failed again. I look the log
INFO | jvm 1 | 2015/11/18 17:43:30 | [17:43:30] WARN [org.apache.directory.server.config.ConfigPartitionInitializer] - Conflict in selecting configuration source, both config.ldif and ou=config exist delete either one of them and restart the server
so just delete all folders and *.ldif files inside /var/lib/apacheds-2.0.0-M20/default/conf/ but log4j.properties and wrapper-instance.conf.
Then start apacheds successfully.
3) Add test data in Apacheds.
I use ApacheDirectoryStudio to do this.
Download https://directory.apache.org/studio/downloads.html
After unzip it, it needs jre to run it. I copy my jre into ApacheDirectoryStudio, just the same folder of ApacheDirectoryStudio.ini.
a) After ApacheDirectoryStudio starts, new connection, leave authentication blank.
Then new Entry behind dc=example,dc=com.
b) After creating ou, let’s import users.
i) Right click “Root DSE” -> Import -> LDIF import…
Check the things like this
ii) Import the data that saved in a.ldif file
1 | dn: cn=test1,ou=Users,dc=example,dc=com |
You can see I didn’t add emain for users. If you don’t want to add email for users, please add the properties in portal-ext.properties
1 | users.email.address.required=false |
- Add LDAP server in Liferay.
Start Liferay 6.2.10 sp13
Go to control panel -> Portal Settings -> Authentication -> LDAP, check “Enabled”, “Import Enabled”, then click “Add” to add LDAP Servers.
In the Edit LDAP Server, just click “Reset Values”, liferay would set all values in defaut values. You need other changing to adapt to LDAP server.
After that, click “Test LDAP Connection”, “Liferay has successfully connected to the LDAP server.” would show.
If it saids failed, please check if LDAP server starts, if liferay server can connect to LDAP server, if the settings are correct.
After settings, we can try to search users in LDAP. Click “Test LDAP Users”.
The blue info says missing the required attribtes, just ignore it, because we’ve set properties in portal-ext.properties file.
Save the LDAP server, Save portal settings.
- Import LDAP users
Go to control panel -> Configuration -> Server Administration -> Script, select language “Javascript”. Type the code in Script and Execute.
Packages.com.liferay.portal.security.ldap.PortalLDAPImporterUtil.importFromLDAP(); // This is for ee6.2
In trunk, the PortalLDAPImporterUtil has been removed, so we need to import user with other API.
In trunk, there's a bug that script only supports Groovy now (2015-12-04). Please change the code to
com.liferay.portal.security.exportimport.UserImporterUtil.importUsers()
Then we can see that users are imported into Liferay!