test

Using LDAP with Java CAPS

ProcedureTo Configure the Enterprise Manager Server

  1. Shut down the server component of Enterprise Manager.

  2. Open the web.xml file in the JavaCAPS-install-dir/emanager/server/webapps/sentinel/WEB-INF directory.

  3. Locate the following lines:


    <param-name>com.stc.emanager.sentinel.authHandler</param-name>
<param-value>com.stc.cas.auth.provider.tomcat.TomcatPasswordHandler</param-value>

  4. Change the parameter value to:


    <param-value>com.stc.cas.auth.provider.ldap.LDAPHandler</param-value>

  5. Save the web.xml file.

  6. Open the ldap.properties file in the JavaCAPS-install-dir/emanager/server/webapps/sentinel/WEB-INF/classes directory.

  7. The following table describes all of the properties that appear in the ldap.properties file. Edit the properties in the section for your LDAP server, and ensure that the properties are not commented out.

    Property 

    Description 

    com.stc.sentinel.auth.ldap.serverType 

    The type of LDAP server. 

    com.stc.sentinel.auth.ldap.serverUrl 

    The URL of the LDAP server. 

    com.stc.sentinel.auth.ldap.searchFilter 

    The name of the user ID attribute in user entries. 

    com.stc.sentinel.auth.ldap.searchBase 

    The root entry of the portion of the LDAP directory where Enterprise Manager will search for users. 

    com.stc.sentinel.auth.ldap.searchScope 

    This property is not currently used. 

    com.stc.sentinel.auth.ldap.bindDN 

    The security principal used for connecting to the LDAP server. 

    com.stc.sentinel.auth.ldap.bindPassword 

    The password of the security principal. 

    com.stc.sentinel.auth.ldap.referral 

    The LDAP referral policy. The default value is follow, which indicates that LDAP referrals will be automatically followed. Note that referrals must be enabled in the LDAP server. The other valid values are throw (for referral exceptions) and ignore.

    This property is optional. 

    This property appears only in the Active Directory and OpenLDAP sets of properties. 

    com.stc.sentinel.auth.ldap.roleAttribute 

    The name of the role name attribute in user entries. 

    com.stc.sentinel.auth.ldap.roleBaseDN 

    The root entry of the portion of the LDAP directory where Enterprise Manager will search for roles. 

    This property appears only in the OpenLDAP set of properties. 

    com.stc.sentinel.auth.ldap.rolePattern 

    Enables you to configure pattern matching for role names. You can place the Enterprise Manager users in a separate line of business from other users in the LDAP directory. 

    This property appears only in the Active Directory set of properties. 

  8. Save the ldap.properties file.

  9. Start the server component of Enterprise Manager.