Skip to Content.
Sympa Menu

grouper-users - [grouper-users] RE: LDAP auth and the wheel group?

Subject: Grouper Users - Open Discussion List

List archive

[grouper-users] RE: LDAP auth and the wheel group?


Chronological Thread 
  • From: Chris Hyzer <>
  • To: Michael White <>, "" <>
  • Subject: [grouper-users] RE: LDAP auth and the wheel group?
  • Date: Tue, 20 Jan 2015 06:34:52 +0000
  • Accept-language: en-US

Can you please try upgrading to 2.2.1 including patches and let me know if
you still have the problem? You should be able to do this with the grouper
upgrader.

Thanks,
Chris

-----Original Message-----
From:


[mailto:]
On Behalf Of Michael White
Sent: Monday, January 19, 2015 11:31 AM
To:

Subject: [grouper-users] LDAP auth and the wheel group?

Hi,

I'm still in the early stages of playing and learning with Grouper v2.2.0.
I've got a basic folder/group hierarchy set up, subjects coming from AD, and
a number of groups being successfully populated via the Loader :-).

I'm now trying to switch to using our AD for authentication by switching to a
JNDIRealm in Tomcat's server.xml - of course this means that I can no longer
log on using the GrouperSystem account, so I've been trying to enable my AD
account to be an admin account in Grouper by adding it to my "wheel" group .
. .

I've added:

groups.wheel.use = true

- to "grouper.properties", and I note:

groups.wheel.group = etc:sysadmingroup

- in "grouper.base.properties".

I created "etc:sysadmingroup" (as the Grouper System user) and added myself
to it, however this doesn't appear to be working as hoped/expected.

If I log on using my AD username, authentication appears to work and I arrive
at the Grouper (new) UI and I'm correctly identified as me in the "Logged in
as" line, but in the "Browse Folders" panel, it just shows "Error", which is
reflected in the logs (appropriate snippet attached).

If I switch to the old UI, I can browse the folder hierarchy, but I can only
see groups that I have been granted explicit permissions for (i.e. still not
behaving as an admin user).

Have I misunderstood how this is supposed to work? or am I missing something
obvious (or done something stupid!)?

Any thoughts, observations, or pointers would be most welcome as I'm not sure
what to try next.

Cheers,

Mike

Michael White
eLearning Liaison and Development (eLD)
Information Services
S8, Library
University of Stirling
Stirling SCOTLAND
FK9 4LA
Email:


Tel: +44 (0) 1786 466877
Fax: +44 (0) 1786 466880
http://www.stir.ac.uk/is/staff/about/teams/aldt/#eld



--
The University of Stirling has been ranked in the top 12 of UK universities
for graduate employment*.
94% of our 2012 graduates were in work and/or further study within six months
of graduation.
*The Telegraph
The University of Stirling is a charity registered in Scotland, number SC
011159.




Archive powered by MHonArc 2.6.16.

Top of Page