Any suggestions are more useful for me. This is Microsoft AD server, which does not have ssl. These are the configuration details i have given. But still its easily logging into forum site with out validating.
Kindly please suggest me. any configuration changes or need to add any more properties..
# #######
# LDAP
# #######
# Security protocol to use, e.g: "ssl"
# Leave it empty (default) to let the provider figure it out
ldap.security.protocol =LDAP v3
# Security authentication to use. Possible values: "none", "simple", "strong",
# "EXTERNAL" (SASL). Leave empty (default) to let the provider figure it out
ldap.authentication =EXTERNAL
# Class that provides a LDAP factory
ldap.factory = com.sun.jndi.ldap.LdapCtxFactory
# The prefix your LDAP server requires. e.g 'uid='
# The username supplied gets inserted just after the prefix,
# e.g: 'uid=username' so adjust the prefix properly
ldap.login.prefix =CN=
# The suffix your LDAP server requires.
# e.g 'ou=Users,dc=department,dc=company,dc=com'
ldap.login.suffix =OU=Users,OU=HST,OU=HYY,OU=INDIA,DC=company,DC=ad
# The url of your LDAP server.
# Notice that if your LDAP server uses SSL you will need to configure your
# server certificate so that Java Secure Sockets Extension (JSSE) will accept it.
# Read
http://java.sun.com/products/jndi/tutorial/ldap/security/ssl.html
ldap.server.url =
ldap://xxx.xx.xx.xxx
# Field that holds the user's email
ldap.field.email = mail
# ActiveDirectory
# To configure LDAPAuthenticator integrating with Microsoft Active Directory. The following two keys should be necessary.
# They are similar to ldap.login.prefix and ldap.login.suffix , but it's used when looking up user infomation
# rather than authentication. It's used when the login Distinguished Name (DN) is formatted differently from the lookup
# DN on some LDAP servers, for example, Microsoft Active Directory. If it's the case,
you should add these keys in additional
# to ldap.login.prefix and ldap.login.suffix .
#
# The following example is for configuring on Microsoft Active Directory:
# ===========================
# ldap.login.prefix=CN=
# ldap.login.suffix=CN=Users,DC=jform,DC=net
# ldap.lookup.suffix=CN=Users
# ===========================
ldap.lookup.prefix =CN=
ldap.lookup.suffix =OU=Users,OU=HST,OU=HYY,OU=INDIA,DC=company,DC=ad
Regards,
Veera