If I use Microsoft Active Directory or Novel eDirectory as External Security System is there any possibility to specify an additional environment property / attribute? Examples are java.naming.referral (which is on Ivy set to follow per default) or java.naming.ldap.derefAliases etc.

asked 05.08.2014 at 11:43

SupportIvyTeam's gravatar image

SupportIvyTeam ♦♦
1.4k102118122
accept rate: 77%


With 7.2 and later:

Just configure it in the ivy.yaml like this:

SecuritySystems:
  myActiveDirectory:
    Provider: "Microsoft Active Directory"
    Connection:
      Url: ldap://localhost:389
      Environment:
        # Specifying how referrals encountered by the service provider are to be processed. Possible values are... follow, ignore, throw
        # https://docs.oracle.com/javase/jndi/tutorial/ldap/referral/index.html
        "java.naming.referral": ignore

See the ivy.yaml file reference section in the engine guide.

link

answered 14.11.2018 at 09:59

Christian%20Strebel's gravatar image

Christian St... ♦
3.2k31338
accept rate: 88%

looks great! no syntax highlighting for yaml files here?

(14.11.2018 at 10:02) Alex Suter ♦♦ Alex%20Suter's gravatar image

Before 7.2:

Yes this is possible, but unfortunately not configurable by the Administration UI by now. The following Steps are needed if you do it by Admin UI and Database Editor:

  1. Configure the additional properties by using the Administration UI and add them to the User Properties Edit User Properties
  2. Stop the Ivy Server/Engine
  3. Open a Database Editor and go to table IWA_ApplicationProperty
  4. Change the PropertyName from JndiAAA.UsrAttr.yourAdditionAttributeKey to JndiAAA.AddEnv.yourAdditionAttributeKey (e.g. JndiAAA.UsrAttr.java.naming.referral to JndiAAA.AddEnv.java.naming.referral)
  5. Start the Ivy Server/Engine, the additional attributes are now used
link

answered 05.08.2014 at 12:05

Christian%20Strebel's gravatar image

Christian St... ♦
3.2k31338
accept rate: 88%

edited 14.11.2018 at 09:52

It is also possible to set the properties per API. Just create a Simple helper Project/Process and upload it to the Server with the following Code:

// set additional property "java.naming.referral" to "ignore"
ivy.request.getApplication().getSecurityContext()
.getConfigurationProperty("JndiAAA.AddEnv.java.naming.referral").setValue("ignore");

// remove additional property "java.naming.referral"
ivy.request.getApplication().getSecurityContext()
.getConfigurationProperty("JndiAAA.AddEnv.java.naming.referral").setValue(null);
link

answered 05.08.2014 at 12:15

Christian%20Strebel's gravatar image

Christian St... ♦
3.2k31338
accept rate: 88%

Your answer
toggle preview

Follow this question

By Email:

Once you sign in you will be able to subscribe for any updates here

By RSS:

Answers

Answers and Comments

Markdown Basics

  • *italic* or _italic_
  • **bold** or __bold__
  • link:[text](http://url.com/ "Title")
  • image?![alt text](/path/img.jpg "Title")
  • numbered list: 1. Foo 2. Bar
  • to add a line break simply add two spaces to where you would like the new line to be.
  • basic HTML tags are also supported

Tags:

×19
×16
×3

Asked: 05.08.2014 at 11:43

Seen: 6,208 times

Last updated: 14.11.2018 at 10:02