Integration with MS Active Directory

I have Jaspersoft Server version 5.6.0 running on a windows 2008 machine. I have followed the cookbook here

I am struggling to understand a few things.

  1. There is a lot of talk about applicationContxt-externalAuth-LDAP.xml this is where I have made my modifications. Do I need to update applicationContext-security.xml too some way? I would seem this was where all the LDAP/AD config was a few version ago.
  2. My server starts up with no issues, but I am not getting any auth from LDAP. I have created a new security group called JasperAdmins (CN=JasperAdmins,CN=Users,DC=lwr,DC=local). Where do I need to put this, I cant for the life of me find it.

Any advice would really help me out.



chris_16's picture
Joined: Dec 5 2013 - 6:50pm
Last seen: 8 years 11 months ago

1 Answer:

As of 5.1, we have modified the external authentication to keep all modifications in a single applicationContext-externalAuth-xxx file. Migrating your old files instead of using the new file might work, but is definitely deprecated.


This is not going to be perfect, but maybe I can point in a direction to look. I think you want to configure this bean:

<bean id="userSearch"
<constructor-arg index="0"><value>cn=JasperAdmins,cn=Users</value></constructor-arg>
<constructor-arg index="1"><value>(sAMAccountName={0})</value></constructor-arg>
<constructor-arg index="2"><ref local="ldapContextSource"/></constructor-arg>
<property name="searchSubtree"><value>true</value></property>
Note that since you already set up the domain components (dc) in the connection parameters part of the file, you don't need it in this bean.

If you want to assign permissions to the JasperAdmins, you should map the roles in your LDAP to roles in JRS. See the "Mapping Roles to System Roles" section for more information.

elizam's picture
Joined: Mar 5 2012 - 9:19am
Last seen: 3 years 1 month ago

OK that makes a bit more sense. I have made this change. What about this bean?

<bean class="">
<constructor-arg index="0"><ref local="ldapContextSource"/></constructor-arg>
<constructor-arg index="1"><value>CN=JasperAdmins,OU=Groups,DC=lwr,DC=local</value></constructor-arg>
<property name="groupRoleAttribute"><value>cn</value></property>
<property name="searchSubtree"><value>true</value></property>
<property name="defaultRole" value="ROLE_USER"/>
<!-- Can setup additional external default roles here <property name="defaultRole" value="LDAP"/> -->

chris_16 - 8 years 11 months ago