shadebryansk
Newbie | Редактировать | Профиль | Сообщение | Цитировать | Сообщить модератору
Друзья помогите пожалуйста разобраться с OPENFIRE и PANDION не как не могу настроить Авторизацию в Windows. Что вам нужно выслать от, чтобы вы могли мне помощь?
Системные настройки:
admin.authorizedJIDs knight@winserver
ldap.adminDN knight@turizm.local
ldap.adminPassword hidden
ldap.autoFollowAliasReferrals true
ldap.autoFollowReferrals false
ldap.baseDN dc=turizm, dc=local
ldap.connectionPoolEnabled true
ldap.debugEnabled false
ldap.emailField mail
ldap.encloseDNs true
ldap.groupDescriptionField description
ldap.groupMemberField member
ldap.groupNameField cn
ldap.groupSearchFilter (objectClass=group)
ldap.host winserver
ldap.ldapDebugEnabled false
ldap.nameField cn
ldap.override.avatar false
ldap.port 389
ldap.posixMode false
ldap.searchFilter (&(objectClass=organizationalPerson)(memberOf=cn=IM,cn=Users,dc=turizm,dc=local))(&(objectClass=user)(!(objectClass=computer))(!(userAccountControl=514))(!(userAccountControl=546))(!(userAccountControl=66050)))
ldap.sslEnabled false
ldap.usernameField sAMAccountName
ldap.vcard-mapping
<N>
<GIVEN>{cn}</GIVEN>
</N>
<EMAIL>
<INTERNET/>
<USERID>{mail}</USERID>
</EMAIL>
<FN>{displayName}</FN>
<ADR>
<HOME/>
<STREET>{homePostalAddress}</STREET>
<PCODE>{homeZip}</PCODE>
<CTRY>{co}</CTRY>
</ADR>
<ADR>
<WORK/>
<STREET>{streetAddress}</STREET>
<LOCALITY>{l}</LOCALITY>
<REGION>{st}</REGION>
<PCODE>{postalCode}</PCODE>
<CTRY>{co}</CTRY>
</ADR>
<TEL>
<HOME/>
<VOICE/>
<NUMBER>{homePhone}</NUMBER>
</TEL>
<TEL>
<HOME/>
<CELL/>
<NUMBER>{mobile}</NUMBER>
</TEL>
<TEL>
<WORK/>
<VOICE/>
<NUMBER>{telephoneNumber}</NUMBER>
</TEL>
<TEL>
<WORK/>
<CELL/>
<NUMBER>{mobile}</NUMBER>
</TEL>
<TEL>
<WORK/>
<FAX/>
<NUMBER>{facsimileTelephoneNumber}</NUMBER>
</TEL>
<TEL>
<WORK/>
<PAGER/>
<NUMBER>{pager}</NUMBER>
</TEL>
<TITLE>{title}</TITLE>
<ORG>
<ORGUNIT>{department}</ORGUNIT>
</ORG>
</vCard>]]>"><![CDATA[
<vCard xmlns="vcard-temp">
<N>
<GIVEN>{cn}</GIVEN>
</N>
<EMAIL>
<INTERNET/>
<USERID>{mail}</USERID>
</EMAIL>
<FN>{displayName}</FN>
<ADR>
<HOME/>
<STREET>{homePostalAddress}</STREET>
<PCODE>{homeZip}</PCODE>
<CTRY>{co}</CTRY>
</ADR>
<ADR>
<WORK/>
<STREET>{streetAddress}</STREET>
<LOCALITY>{l}</LOCALITY>
<REGION>{st}</REGION>
<PCODE>{postalCode}</PCODE>
<CTRY>{co}</CTRY>
</ADR>
<TEL>
<HOME/>
<VOICE/>
<NUMBER>{homePhone}</NUMBER>
</TEL>
<TEL>
<HOME/>
<CELL/>
<NUMBER>{mobile}</NUMBER>
</TEL>
<TEL>
<WORK/>
<VOICE/>
<NUMBER>{telephoneNumber}</NUMBER>
</TEL>
<TEL>
<WORK/>
<CELL/>
<NUMBER>{mobile}</NUMBER>
</TEL>
<TEL>
<WORK/>
<FAX/>
<NUMBER>{facsimileTelephoneNumber}</NUMBER>
</TEL>
<TEL>
<WORK/>
<PAGER/>
<NUMBER>{pager}</NUMBER>
</TEL>
<TITLE>{title}</TITLE>
<ORG>
<ORGUNIT>{department}</ORGUNIT>
</ORG>
</vCard>]]>
locale.timeZone Europe/Moscow
passwordKey hidden
provider.admin.className org.jivesoftware.openfire.admin.DefaultAdminProvider
provider.auth.className org.jivesoftware.openfire.ldap.LdapAuthProvider
provider.authorization.classList org.jivesoftware.openfire.sasl.StrictAuthorizationPolicy org.jivesoftware.openfire.sasl.DefaultAuthorizationPolicy
provider.group.className org.jivesoftware.openfire.ldap.LdapGroupProvider
provider.lockout.className org.jivesoftware.openfire.lockout.DefaultLockOutProvider
provider.securityAudit.className org.jivesoftware.openfire.security.DefaultSecurityAuditProvider
provider.user.className org.jivesoftware.openfire.ldap.LdapUserProvider
provider.vcard.className org.jivesoftware.openfire.ldap.LdapVCardProvider
register.inband false
register.password hidden
sasl.approvedRealms winserver
sasl.mechs ANONYMOUS,PLAIN,NTLM
sasl.realm winserver
update.lastCheck 1306842792609
update.notify-admins true
update.proxy.port -1
update.service-enabled false
xmpp.auth.anonymous true
xmpp.auth.sharedSecretEnabled true
xmpp.client.idle 360000
xmpp.client.idle.ping true
xmpp.client.tls.policy disabled
xmpp.domain winserver
xmpp.filetransfer.enabled true
xmpp.offline.quota 102400
xmpp.offline.type store
xmpp.proxy.enabled false
xmpp.server.certificate.accept-selfsigned false
xmpp.server.dialback.enabled false
xmpp.server.socket.active false
xmpp.server.tls.enabled false
xmpp.session.conflict-limit 0
xmpp.socket.ssl.active true
Информация Сервера
Свойства Сервера
Сервер работает\: 47 Минуты -- started 08.06.2011 16:52:15
Версия\: Открытый огонь 3.7.0
Директория Сервера\: C:\Program Files\Openfire
Имя Сервера\: winserver
Среда разработки
Версия Java\: 1.6.0_18 Sun Microsystems Inc. -- Java HotSpot(TM) Client VM
Сервер Приложения.: jetty/7.0.2-SNAPSHOT
Имя хоста\: winserver
АППАРАТНЫЕ средства OS /: Windows 2003 / x86
Город / Временная зона\: ru_RU / Moscow Standard Time (3 GMT)
Использовано памяти Java
13,95 MB of 239,75 MB (5,8%) used
openfire.xml
<?xml version="1.0" encoding="UTF-8"?>
<!--
This file stores bootstrap properties needed by Openfire.
Property names must be in the format: "prop.name.is.blah=value"
That will be stored as:
<prop>
<name>
<is>
<blah>value</blah>
</is>
</name>
</prop>
Most properties are stored in the Openfire database. A
property viewer and editor is included in the admin console.
-->
<!-- root element, all properties must be under this element -->
<jive>
<sasl>
<!-- pick one of the following -->
<!-- or if you have more than one domain: -->
</sasl>
<provider>
<!--
If you're using an external authentication provider like LDAP, or Custom Database,
then you will already have a <provider> section. Make sure this is added to it.
Do not remove the existing <auth> section as that is still required.
-->
<authorization>
<classList>org.jivesoftware.openfire.sasl.StrictAuthorizationPolicy org.jivesoftware.openfire.ldap.LdapAuthorizationProvider</classList>
<!-- other options: null, LdapAuthorizationProvider, UnixK5LoginProvider, Strict and Lazy-->
</authorization>
</provider>
<adminConsole>
<!-- Disable either port by setting the value to -1 -->
<port>9090</port>
<securePort>9091</securePort>
</adminConsole>
<locale>ru_RU</locale>
<!-- Network settings. By default, Openfire will bind to all network interfaces.
Alternatively, you can specify a specific network interfaces that the server
will listen on. For example, 127.0.0.1. This setting is generally only useful
on multi-homed servers. -->
<!--
<network>
<interface></interface>
</network>
-->
<connectionProvider>
<className>org.jivesoftware.database.EmbeddedConnectionProvider</className>
</connectionProvider>
<setup>true</setup>
</jive>
java.security
# List of providers and their preference orders (see above):
#
security.provider.1=sun.security.provider.Sun
security.provider.2=sun.security.rsa.SunRsaSign
security.provider.3=com.sun.net.ssl.internal.ssl.Provider
security.provider.4=com.sun.crypto.provider.SunJCE
security.provider.5=sun.security.jgss.SunProvider
security.provider.6=com.sun.security.sasl.Provider
security.provider.7=org.jcp.xml.dsig.internal.dom.XMLDSigRI
security.provider.8=sun.security.smartcardio.SunPCSC
security.provider.9=sun.security.mscapi.SunMSCAPI
security.provider.10=net.za.darkskies.security.sasl.SSPIProvider
Это все что я могу выслать, так как тут я изменял настройки и пытался настроить, результат один входит по имени и паролю, а автоматически ни как. |
