I am configuring LDAP authentication for xwiki (10.11.8) over SSL.
I have added the below configuration in my xwiki.cfg file
xwiki.authentication.ldap=1
xwiki.authentication.authclass=org.xwiki.contrib.ldap.XWikiLDAPAuthServiceImpl
xwiki.authentication.ldap.trylocal=1
xwiki.authentication.ldap.server=
xwiki.authentication.ldap.port=636
xwiki.authentication.ldap.bind_DN=cn=user name who can access ldap
xwiki.authentication.ldap.bind_pass=password for the above user to access
xwiki.authentication.ldap.base_DN=dc=value,dc=value
xwiki.authentication.ldap.UID_attr=sAMAccountName
#Optional
xwiki.authentication.ldap.user_search_fmt=(sAMAccountName=value of xwiki.authentication.ldap.bind_DN)
xwiki.authentication.ldap.update_user=1
xwiki.authentication.ldap.ssl=1
xwiki.authentication.ldap.ssl.keystore=/path/to/my/cacerts
xwiki.authentication.ldap.ssl.secure_provider=com.sun.net.ssl.internal.ssl.Provider
xwiki.authentication.ldap.timeout=1000
Still I dont see it working. I have added LDAP extension from UI. There is no option to test the connectivity to LDAP unlike other tools. after all teh configuration when I try to login using AD details, It just fails. Please help.
From Apache access logs i see below.
10.107.29.163 - - [05/Jul/2019:13:59:13 +0200] “POST /xwiki/bin/loginsubmit/XWiki/XWikiLogin HTTP/1.1” 403 15074
Not able to get anything else from the logger side. Please assist
Thanks in advance
Devadakshith