Menu
▾
▴
Re: [Unity-idm-discuss] Using UNICORE with Unity
|
From: Bernd S. <b.s...@fz...> - 2015-11-30 08:59:18
|
hi, did you add the LDAP authenticator to the unicore-soapidp endpoint? If yes, try debug logging on Unity and/or UNICORE/X to find out more... Best regards, Bernd. On 30.11.2015 09:51, Alvaro Aguilera wrote: > Hello, > > I'm trying to get Unicore use Unity to validate users using our LDAP > server and could use a little help from someone with experience on this. > Until now I have set up a Unity server and created a simple > authenticator for LDAP (code below), as well as the corresponding > translation profile (also below). > The dry test of the TP seems to be working well > > I also added the certificate of the Unity server to Unicore's assertion > issuers and granted access to the LDAP users in the XUUDB. > > However, I'm still unable to login to Unicore using the rich client with > the Unity option. > > Any hints about what I'm missing or doing wrong? > > Thanks! > Alvaro > > > ------------------------------ > > > *wsrflite.xml (both for registry & unicore/x) > > *<property name="container.security.trustedAssertionIssuers.type" > value="directory" /> > <property > name="container.security.trustedAssertionIssuers.directoryLocations.1" > value="/home/somepath.../unity..pem" /> > > > *uas.conf* > > container.security.rest.authentication.order=FILE UNITY > container.security.rest.authentication.UNITY.class=eu.unicore.services.rest.security.UnitySAMLAuthenticator > container.security.rest.authentication.UNITY.address=https://unity.zih.tu-dresden.de:2443/unicore-soapidp/saml2unicoreidp-soap/AuthenticationService > container.security.rest.authentication.UNITY.validate=true > > > *Authenticator* [...] > > > *Translation Profile (LDAP-Test)* > [...] ------------------------------------------------------------------------------------------------ ------------------------------------------------------------------------------------------------ Forschungszentrum Juelich GmbH 52425 Juelich Sitz der Gesellschaft: Juelich Eingetragen im Handelsregister des Amtsgerichts Dueren Nr. HR B 3498 Vorsitzender des Aufsichtsrats: MinDir Dr. Karl Eugen Huthmacher Geschaeftsfuehrung: Prof. Dr.-Ing. Wolfgang Marquardt (Vorsitzender), Karsten Beneke (stellv. Vorsitzender), Prof. Dr.-Ing. Harald Bolt, Prof. Dr. Sebastian M. Schmidt ------------------------------------------------------------------------------------------------ ------------------------------------------------------------------------------------------------ |
