Page History
...
- Authentication by Password (class:
org.dspace.authenticate.PasswordAuthentication
) (DEFAULT) - Shibboleth Authentication (class:
org.dspace.authenticate.ShibAuthentication
) - LDAP Authentication (class:
org.dspace.authenticate.LDAPAuthentication
) - Hierarchical LDAP Authentication (class:
org.dspace.authenticate.LDAPHierarchicalAuthentication
) - IP Address based Authentication (class:
org.dspace.authenticate.IPAuthentication
) - X.509 Certificate Authentication (class:
org.dspace.authenticate.X509Authentication
)
...
Enabling Hierarchical LDAP Authentication
Info |
---|
Please note, that DSpace 3.0 doesn't contain the |
If your users are spread out across a hierarchical tree on your LDAP server, you may wish to instead use the Hierarchical LDAP Authentication plugin.
To enable Hierarchical LDAP Authentication, you must ensure the org.dspace.authenticate.LDAPHierarchicalAuthentication
class is listed as one of the AuthenticationMethods in the following configuration:
...
Configuration File:
...
[dspace]/config/modules/authentication.cfg
...
Property:
...
plugin.sequence.org.dspace.authenticate.AuthenticationMethod
have DSpace search for the user name in your tree. Here's how it works:
- DSpace gets the user name from the login form
- DSpace binds to LDAP as an administrative user with right to search in DNs (LDAP may be configured to allow anonymous users to search)
- DSpace searches for the user name as within DNs (username is a part of full DN)
- DSpace binds with the found full DN and password from login form
- DSpace logs user in if LDAP reports successful authentication; refuses login otherwise
...
Example Value:
...
Configuring Hierarchical LDAP Authentication
...