| Author |
JAAS/LDAP Active Directory
|
Roberto Badaro
Greenhorn
Joined: May 22, 2003
Posts: 3
|
|
Hi!
I'm using JBoss/JAAS authentication via LDAP accessing W2K Active Directory. It's working fine... My problem is when I make any modification on membership of a user, the LdapLoginModule does not view this change. In my point of view, JBoss writes the user data into cache... If it's true, how can I configure the synchronization of this data, if not, what is the solution?
Please, forget about my poor english...
And thanks for any help!
Roberto.
|
 |
Tim Holloway
Saloon Keeper
Joined: Jun 25, 2001
Posts: 12513
|
|
If you're using JBoss+Tomcat, authentication is probably being done by the Tomcat JNDI Security Realm module. The documentation for that module (see the Realm docs at jakarta.apache.org/tomcat documentation) explicitly states that updates are not dynamic.
It's possible that you could write your own Realm module that didn't have those restrictions, but it's not a trivial task. You'd have to ensure that neither Tomcat nor JBoss cached info at a point closer to the app.
|
One of the most odious afflictions that Business has inflicted on the modern English language is "pro-active". Most of the time it's simply redundantly used in place of the simple old word "active". And a good deal of the rest of the time it means "You're not overworked enough yet, so go out and find more!"
|
|
Roberto Badaro
Greenhorn
Joined: May 22, 2003
Posts: 3
|
|
Hi!
I have found the solution:
There are two attributes setted at jboss-service.xml, in the configuration of mbeam "org.jboss.security.plugins.JaasSecurityManagerService":
(All times are in seconds)
DefaultCacheTimeout - default 1800 (30 minutes)
Credencials cache timeout
DefaultCacheResolution - default 60
Interval to service check the cache
Thanks!
Roberto.
|
|
David None
Greenhorn
Joined: May 14, 2004
Posts: 2
|
|
How do I configure JBoss with external OpenLdap server..
Someone please help me out....
|
|
 |
|
|
subject: JAAS/LDAP Active Directory
|
|
|
0
