Using Indirect LDAP authentication in Talend MDM 5.6 and earlier versions - 6.3

How to configure Talend MDM with LDAP authentication if LdapDirect is set to false

EnrichVersion
6.3
task
Installation and Upgrade
EnrichPlatform
Talend MDM Server

Procedure

  1. Open a LDAP connection and make sure that users exist under the LDAP server repository tree.

    In this example, the free open source version of JXplorer is used as the LDAP browser and editor, and there are two users aiming and hacker under ou=People,dc=my-domain, dc=com.

  2. Open the file login-config.xml_LDAP under the directory <$INSTALLDIR>\jboss-4.2.2.GA\server\default\conf where INSTALLDIR indicates your Talend MDM installation directory.
  3. In the configuration file, replace the default URL specified by java.naming.provider.url with the URL to connect to the LDAP server.
    <module-option name="java.naming.provider.url">ldap://localhost:389</module-option>
  4. Set the LdapDirect option to false.
    <module-option name="LdapDirect">false</module-option>
  5. Add the information required for LDAP authentication following the module option LdapDirect:
    <!--InLDAP Direct-->
           <!-- LdapAdminDN -->
     
            <module-option name="LdapAdminDN">cn=Manager,dc=my-domain,dc=com</module-option>
     
            <!--LdapAdminPassword-->
     
            <module-option name="LdapAdminPassword">secret</module-option>
     
            <module-option name="searchBase">ou=People,dc=my-domain,dc=com</module-option>
         
            <module-option name="searchFilter">(&amp;(objectClass=*)&amp;(uid={0}))</module-option>
  6. After the configuration is done, save the file login-config.xml_LDAP and rename it to login-config.xml. If needed, save a backup copy of the original login-config.xml file first.
  7. Restart the Talend MDM Server for the configuration to take effect.
  8. In Talend Studio, add two LDAP users aiming and hacker to the PROVISIONING database.
  9. Log in to Talend MDM Web UI as an LDAP authorized user, and check that the user login is successful.
    For example, enter aiming/OneTwo2013 (which are the uid/password in LDAP).