nicolasdiogo Posted June 16, 2011 Share Posted June 16, 2011 Code:hello folks i would like to inquire about how LDAP authentication.we have setup a community version of JasperServer and connected to our MS Active Directory using instructions provide by Jasper documentation.very straight forward.however, we are not able to limit the users able to login into the system, it seems that anyone with a valid account in AD can login.how can we limit the users able to login? could we create a certain AD group as a requirement for successful login?we are also puzzled as to how Jasper understands AD groups.is there some strategy for managing AS accounts in Jasper - is there some documentation about this subject?could we create local Jasper Roles and map these to AD groups?or could any of these features be part of the supported version of Jasper? with a paid for subscription?thanks a lot in advance.please let me know if you would like further clarification.NicolasCode:[code]hello folks i would like to inquire about how LDAP authentication.we have setup a community version of JasperServer and connected to our MS Active Directory using instructions provide by Jasper documentation.very straight forward.however, we are not able to limit the users able to login into the system, it seems that anyone with a valid account in AD can login.how can we limit the users able to login? could we create a certain AD group as a requirement for successful login?we are also puzzled as to how Jasper understands AD groups.is there some strategy for managing AS accounts in Jasper - is there some documentation about this subject?could we create local Jasper Roles and map these to AD groups?or could any of these features be part of the supported version of Jasper? with a paid for subscription?thanks a lot in advance.please let me know if you would like further clarification.NicolasNOTE: there was no message input box when trying to post this message (this is why it is in the CODE instead - tried with IE8 and FF4 on winXP ) Post Edited by nicolasdiogo at 06/16/2011 10:01 Link to comment Share on other sites More sharing options...
oboichuk Posted June 16, 2011 Share Posted June 16, 2011 For example, you can revoke permissions on your report folder from ROLE_USER and grant permissions to AD Group. Link to comment Share on other sites More sharing options...
nicolasdiogo Posted June 19, 2011 Author Share Posted June 19, 2011 thanks but should there not be something that would enable filter users to just a portion of the AD treeor to force users to belong to a given group to be able to login? thus stopping everyone login in? thanks Link to comment Share on other sites More sharing options...
Recommended Posts
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now