Do users get put in their groups with the import in Alfresco 3.3g? I would go back to that version, if it would work correctly.

Can i use this config for alfresco 3.4?
I need AD connection and ntlm.

log4j:ERROR Failed to rename [alfresco.log] to [alfresco.log.2010-11-02].
00:00:00,617 User:System WARN [security.sync.ChainingUserRegistrySynchronizer]
Full synchronization with user registry ‘ldap1′; some users and groups previousl
y created by synchronization with this user registry may be removed.
00:00:00,633 User:System INFO [security.sync.ChainingUserRegistrySynchronizer]
Retrieving all groups from user registry ‘ldap1′
00:00:00,648 User:System INFO [security.sync.ChainingUserRegistrySynchronizer]
ldap1 Group Analysis: Commencing batch of 0 entries
00:00:00,648 User:System INFO [security.sync.ChainingUserRegistrySynchronizer]
ldap1 Group Analysis: Completed batch of 0 entries
00:00:00,695 User:System INFO [security.sync.ChainingUserRegistrySynchronizer]
Retrieving all users from user registry ‘ldap1′
00:00:00,711 User:System INFO [security.sync.ChainingUserRegistrySynchronizer]
ldap1 User Creation and Association: Commencing batch of 0 entries
00:00:00,711 User:System INFO [security.sync.ChainingUserRegistrySynchronizer]
ldap1 User Creation and Association: Completed batch of 0 entries
00:00:00,711 User:System INFO [security.sync.ChainingUserRegistrySynchronizer]
ldap1 Authority Deletion: Commencing batch of 0 entries
00:00:00,711 User:System INFO [security.sync.ChainingUserRegistrySynchronizer]
ldap1 Authority Deletion: Completed batch of 0 entries
00:00:00,711 User:System INFO [security.sync.ChainingUserRegistrySynchronizer]
Finished synchronizing users and groups with user registry ‘ldap1′
00:00:00,711 User:System INFO [security.sync.ChainingUserRegistrySynchronizer]
0 user(s) and 0 group(s) processed

i hope you can help me again.

regards.

glad you find this guide helpful. You basically need to change above queries to match your organization. You query LDAP for users and groups that you want in Alfresco. How to write LDAP queries is really beyond this article and I’m sure that there are great tutorials available on other sites which you could use, with my example queries, to write ones for your environment.

Regards

I want to thank you about this guide, it’s helping me a lot,’cause this is the first time that try to install alfresco, but i’ve some doubts about this lines:

# The query to select all objects that represent the groups to import.
ldap.synchronization.groupQuery=(&(objectclass\=group)(memberOf\=cn\=Alfresco Groups,ou\=user,dc\=domain,dc\=local))

# The query to select objects that represent the groups to import that have changed since a certain time.
ldap.synchronization.groupDifferentialQuery=(&(objectclass\=group)(memberOf\=cn\=Alfresco Groups,ou\=user,dc\=domain,dc\=local)(!(modifyTimestamp<\={0})))

# The query to select all objects that represent the users to import.
ldap.synchronization.personQuery=(&(objectclass\=user)(|(memberOf\=CN\=Developers,OU\=user,DC\=domain,DC\=local)(memberOf\=CN\=Sales,OU\=user,DC\=domain,DC\=local))(userAccountControl\:1.2.840.113556.1.4.803\:\=512))

# The query to select objects that represent the users to import that have changed since a certain time.
ldap.synchronization.personDifferentialQuery=(&(objectclass\=user)(|(memberOf\=CN\=Developers,OU\=user,DC\=domain,DC\=local)(memberOf\=CN\=Sales,OU\=user,DC\=domain,DC\=local))(userAccountControl\:1.2.840.113556.1.4.803\:\=512)(!(modifyTimestamp<\={0})))

i really don get wich values do i have to change by mines, so i'd apreciate the help
and i want to apologize (i know my english it's crappy).
thnx!

Hi Ivan
Thanks for the article. I followed the instruction I’m using alfresco 3.3.1 and it gave me this error “net.sf.acegisecurity.AuthenticationServiceException: Failed to open passthru auth session” can you please help me.

I’m preparing a new guide for version 3.3g and I’ll try to highlight those custom sections. New article will be more up to date and also simplify some stuff and have some corrections.

As for now, I can give you a quick list:
passthru.authentication.servers=DOMAIN\\192.168.0.1,192.168.0.1
passthru.authentication.defaultAdministratorUserNames=AD_usernames

ldap.authentication.java.naming.provider.url=ldap://domain.local:389
ldap.synchronization.java.naming.security.principal=user@domain.local
ldap.synchronization.java.naming.security.credentials=YourPass
ldap.synchronization.groupQuery=
ldap.synchronization.groupDifferentialQuery=
ldap.synchronization.personQuery=
ldap.synchronization.personDifferentialQuery=
ldap.synchronization.groupSearchBase=dc\=domain,dc\=local
ldap.synchronization.userSearchBase=dc\=domain,dc\=local

filesystem.domainMappings=DOMAIN
filesystem.domainMappings.value.DOMAIN.rangeFrom=192.168.0.0
filesystem.domainMappings.value.DOMAIN.rangeTo=192.168.0.255

cifs.localname=HOSTNAME
cifs.domain=DOMAIN
cifs.urlfile.prefix=http://hostname:8080/alfresco/

cifs.broadcast=192.168.0.255
cifs.bindto=192.168.0.123

I hope this helps!

In the examples you’ve provided above it would be helpful if I knew which settings needed to be set specifically for my domain. It’s obvious that some of the entries must be changed (IP addresses, etc.) but I’m uncertain about some of the others.

Can you give us (newbies) a little more info on the settings that are site-specific? Thanks in advance!