aspose file tools*
The moose likes Portals and Portlets and the fly likes Active Directory authentication in liferay Big Moose Saloon
  Search | Java FAQ | Recent Topics | Flagged Topics | Hot Topics | Zero Replies
Register / Login


Win a copy of EJB 3 in Action this week in the EJB and other Java EE Technologies forum!
JavaRanch » Java Forums » Java » Portals and Portlets
Bookmark "Active Directory authentication in liferay" Watch "Active Directory authentication in liferay" New topic
Author

Active Directory authentication in liferay

Yolande Kruse
Greenhorn

Joined: Mar 24, 2010
Posts: 6
Hi,

My client wants to know how the password for the active directory gets sent to the active directory host.
Is it seriazed, hashed or sent as plain text?

Thanks in advance
Rich Sezov
Author
Greenhorn

Joined: Dec 13, 2006
Posts: 17
Hi Yolande,

Liferay gives you various methods of connecting to LDAP. Of course, the preferred method is BIND, which Liferay defaults to, and in that case, Liferay doesn't have to store the LDAP password in the database. For binding, encryption is provided by the com.sun.crypto.provider.SunJCE class. If you elect to use the password-compare method, Liferay offers many different algorithms you can choose:

ldap.auth.password.encryption.algorithm=BCRYPT
ldap.auth.password.encryption.algorithm=MD2
ldap.auth.password.encryption.algorithm=MD5
ldap.auth.password.encryption.algorithm=NONE
ldap.auth.password.encryption.algorithm=SHA
ldap.auth.password.encryption.algorithm=SHA-256
ldap.auth.password.encryption.algorithm=SHA-384
ldap.auth.password.encryption.algorithm=SSHA
ldap.auth.password.encryption.algorithm=UFC-CRYPT

Hope this helps!

--Rich
Yolande Kruse
Greenhorn

Joined: Mar 24, 2010
Posts: 6
Hi Rich,

That was very helpful, but could you please explain the bind process?

Is this for the passwords for liferay users or for the configured LDAP connection?

My client is mainly concerned with the LDAP connection password(for the moment).

Thanks in advance
Yolande
Rich Sezov
Author
Greenhorn

Joined: Dec 13, 2006
Posts: 17
Hi Yolande,

This all, of course, depends on how your LDAP directory is configured. If you're running LDAP unsecured (i.e., the ldap:// protocol), passwords are in the clear. If you're running LDAP secured (ldaps://), passwords are encrypted.

Instructions for connecting Liferay in a secure way to LDAP are in Liferay's documentation here, and it uses Active Directory as the example:

http://www.liferay.com/documentation/liferay-portal/6.0/administration/-/ai/global-server-settin-4

Hope this helps!

--Rich
 
I agree. Here's the link: http://aspose.com/file-tools
 
subject: Active Directory authentication in liferay
 
Similar Threads
Authenticate user against windows active directory ADSI
JNDI, connect to M$ AD, search for users, change passwords etc.
Active Replication
LDAP
Active Directory