I'm running ML9 on a MacOS. I am trying to setup External Authentication (and Authorization eventually) on Query Console (on App-Server port 8000).
I have: 1. Created OpenLDAP server with some users 2. Created LDAP config with below details:
Name: ExtLDAP
authentication: ldap
authorization: internal
ldap server uri: ldap://localhost:389
ldap base: dc=babji,dc=com
ldap attribute: cn
ldap default user: cn=Manager,dc=babji,dc=com
ldap password: [password of the above default user in OpenLDAP database]
ldap bind method: simple
ldap memberof attribute: ou
ldap memer attribute: ou
ssl require client certificate: false
Updated Query Console App-Services [port 8000] with below details:
authentication: basic internal security: false external securities: ExtLDAP default user: nobody
Created an internal user with below details:
name: ldapuser external name: cn=Newer Surname,ou=BizUser,dc=babji,dc=com
Tested below: Successful
xdmp:ldap-search( "sn=Surname", options xmlns="xdmp:ldap"> username>cn=Manager,dc=babji,dc=com password>xxxx server-uri>ldap://localhost:389 search-base>ou=BiZUser,dc=babji,dc=com bind-method>simple /options>) (Forgive the format above. I was unable to change this to a code format.)
ldapsearch works too:
ldapsearch -D "cn=manager,dc=babji,dc=com" -b dc=babji,dc=com -W objectclass=*
Issue:
When I try to login to query console using the browser with one of the cn entries (users) in the LDAP database, I am unable to login. Also, below command does not work.
xdmp:http-get("http://localhost:8000",
<options xmlns="xdmp:http">
<authentication>
<username>Newer Surname</username>
<password>xxxx</password>
</authentication>
</options>)
I am unsure what configurations should I put in the config page. Can you please help or re-direct me to a right location?
regards, Bharadwaj