Records in this category

Sticky FAQs

»

ID #1179

How can I set LDAP authentication for a Muse application?

You can configure LDAP authentication as a single authentication method. The steps are:
- copy the ${MUSE_HOME}/use/ice/profiles/ICELoginModuleLDAP.xml file into the application which is to be configured, into the ${MUSE_HOME}/home/ApplicationID/profiles/ folder, where replace ApplicationID with the exact application ID you wish to configure with LDAP authentication.
- configure the necessary Muse login modules for the application. Below is their list in the correct order along with the correct flag values:
        - ICELoginModuleXML - required;       
        - ICELoginModuleParametersRemap - required;
        - ICELoginModuleLDAP - requisite.
The configuration of the login modules is done through the Muse Console for Applications Administration as follows: select the desired application from the list of applications and click on the left menu - "Login Modules"; from this location manage the login modules: add, delete or edit them. The ICELoginModuleParametersRemap login module must have the following attributes and values: ldapUserPwd="wwwAuthPwd" ldapUserID="wwwAuthID" .
- Configure the properties of the ICELoginModuleLDAP login module:
        - in the MCAA console select the desired application from the list of applications and click on the left menu - "Login Modules" and in the "Login Modules" panel click on the "Edit" link from next to the  ICELoginModuleLDAP entry;
        - in the editor page change the value for the "config" field from the default "${ICE_HOME}/profiles/ICELoginModuleLDAP.xml" to
                ${MUSE_HOME}/home/ApplicationID/profiles/ICELoginModuleLDAP.xml
        where replace ApplicationID with the exact application ID you wish to configure with LDAP authentication.
        - click the "Update" button;
        - click the "Edit Config File" and configure the elements specific to the LDAP server, such as LDAP-URL, BASE-DN...etc.
- Create a login page where the enduser will enter his/hers LDAP credentials to login into the application:
        - create a backup copy of the ${MUSE_HOME}/web/www/logon/ApplicationID/index.html file, where replace ApplicationID with the exact application ID you wish to configure with LDAP authentication.
        - edit the ${MUSE_HOME}/web/www/logon/ApplicationID/index.html file, locate the line:
    <form name="logonForm" action="/muse/servlet/MusePeer" method="post">
and replace the content from below that line until the line
    </form>
with
    <input type="hidden" name="action" value="logon" />
    <input type="hidden" name="errorTemplate" value="logon/ApplicationID/index.html" />
    <input type="hidden" name="userID" value="ApplicationID" />
    <input type="hidden" name="userPwd" value="ApplicationPassword" />
    <input type="hidden" name="parameterName0" value="wwwAuthID" />
    <input type="hidden" name="parameterName1" value="wwwAuthPwd" />
    <input type="hidden" name="locale" value="en" />
    <input type="hidden" name="useProperties" value="true" />
    <table border="0" cellpadding="2" cellspacing="0">
    <tr>
    <td>User Name:</td>
    <td><input class="input" name="parameterValue0" type="text" size="25" /></td>
    </tr>
    <tr>
    <td>Password:</td>
    <td><input class="input" name="parameterValue1" type="password" size="25" /></td>
    </tr>
    <tr>
    <td>&nbsp;</td>
    <td><input class="button" type="submit" title="Login" value="Login" /></td>
    </tr>
    </table>
where replace the 2 ApplicationID occurrences with the exact application ID you wish to configure with LDAP authentication and ApplicationPassword with the right password.
- the access URL for authenticating with LDAP credentials in this application is:
        http://MUSE_SERVER:MUSE_PORT/muse/logon/ApplicationID/
where replace ApplicationID with the exact application ID you wish to configure with LDAP authentication
Categories for this entry

Tags: authentication, configuration, LDAP

Related entries: -

Last update: 2013-09-23 09:16
Author: Administrator
Revision: 1.0

Print this record Send FAQ to a friend Show this as PDF file
Rate this FAQ

Average rating: 0 (0 Votes)

completely useless 1 2 3 4 5 most valuable

You cannot comment on this entry

powered by phpMyFAQ 2.7.2