Do not input private or sensitive data. View Qlik Privacy & Cookie Policy.
Skip to main content

cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Announcements
Join us in Bucharest on Sept 18th for Qlik's AI Reality Tour! Register Now
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Anonymous
Not applicable
‎2016-02-09 10:47 AM

Authenitcation using LDAP on Open Studio ESB Runtime

Does anyone know if it is possible (if so, then how) to use LDAP as the authentication source for the Talend Open Studio for ESB Runtime? By default the user names   and passwords are stored in the {talend runtime path}/container/etc/users.properties file. This authentication works fine, however, I would like to use our LDAP system instead.
Labels (2)
Labels
331 Views
0 Likes
3 Replies
Anonymous
Not applicable
‎2016-02-09 01:34 PM
Author

I read this post, but don't understand it.
https://community.talend.com/t5/Design-and-Development/Configuration-override-and-use-of-the-rank-at...
331 Views
0 Likes
Anonymous
Not applicable
‎2016-02-09 03:32 PM
Author

I found this documentation, (https://help.talend.com/pages/viewpage.action?pageId=264277434) but don't understand it. Does anyone know where I could find the jaas config file that they reference in the documentation?
331 Views
0 Likes
Anonymous
Not applicable
‎2016-02-10 09:37 AM
Author

I figured it out. To enable LDAP as the authentication mechanism for the karaf realm, you need to ...

1. Create a Blueprint configuration file called ldap-module.xml
2. Copy the example XML into the ldap-module.xml file
3. Modify the jaas module element content accordingly (e.g.: connection.url=ldap://my-ldap-server:389)
4. Move the ldap-module.xml file into the container deploy directory on the Talend server - {talend runtime install path}/container/deploy
5. Update the system.property file - {talend runtime install path}/container/etc}
    i. add line karaf.admin.role=unique-ldap-group-name
6. Restart the container - {talend runtime install path}/container/bin/trun.bat or Windows Service made by the wrapper (e.g.: TALEND-RUNTIME)

Here are some research links that I used:
https://help.talend.com/pages/viewpage.action?pageId=264277434
https://karaf.apache.org/manual/latest-2.2.x/developers-guide/security-framework.html
https://karaf.apache.org/manual/latest/users-guide/security.html
http://docs.huihoo.com/talend/5/esb/Talend_ESB_Container_AG_5.2.1_EN.pdf
http://stackoverflow.com/questions/29966365/how-to-activate-ldaploginmodule-in-apache-karaf-3-0-3
http://owulff.blogspot.com/2011/10/configure-ldap-directory-for-cxf-sts.html
http://coheigea.blogspot.com/2014/10/using-jaas-with-apache-cxf.html
https://community.talend.com/t5/Design-and-Development/Authenitcation-using-LDAP-on-Open-Studio-ESB-...
http://duncandoyle.blogspot.com/2014/12/securing-jboss-mq-management-interfaces.html
331 Views
0 Likes