• » SwiftMQ.COM
• » Products
• » Kernel Swiftlets
• » LDAP Authentication Swiftlet

Search

Installation

You must stop the router before you install this Kernel Swiftlet. Then copy the content of the "deploy" subdirectory of this Kernel Swiftlet distribution into the directory "kernel/sys$authentication".

Configuration

The configuration of the LDAP Authentication Swiftlet is defined within the element

      <swiftlet name="sys$authentication" .../>

of the router's configuration file. One can use the SwiftMQ Exlorer or CLI for configuration as well. They both save into that file.

Attributes of Element "swiftlet"

Definition

Attribute	Type	Mandatory	Description
authentication-enabled	java.lang.Boolean	No	Enabes/Disables Authentication

Values

Attribute	Values
authentication-enabled	Default: false

Element "ldap-connection", Parent Element: "swiftlet"

LDAP Connection.

Definition

Attribute	Type	Mandatory	Description
initial-context-factory	java.lang.String	Yes	Initial Context Factory
provider-url	java.lang.String	No	Provider URL
security-authentication	java.lang.String	No	Authentication Method
security-principal	java.lang.String	No	Security Principal (User Name)
security-credentials	java.lang.String	No	Security Credentials (Password)

Values

Attribute	Values
initial-context-factory	Default: com.sun.jndi.ldap.LdapCtxFactory
provider-url	Default: ldap://localhost:389
security-authentication	Default: simple
security-principal	Default: cn=Directory Manager
security-credentials	Default: secret

Element "ldap-base-dn", Parent Element: "swiftlet"

LDAP Base DN Mappings.

Definition

Attribute	Type	Mandatory	Description
users	java.lang.String	Yes	Base DN Users
resource-limit-groups	java.lang.String	Yes	Base DN Resource Limit Groups
authentication-groups	java.lang.String	Yes	Base DN Authentication Groups
queue-grants	java.lang.String	Yes	Relative DN Queue Grants
topic-grants	java.lang.String	Yes	Relative DN Topic Grants

Values

Attribute	Values
users	Default: ou=Users,ou=AuthenticationSwiftlet,o=SwiftMQ
resource-limit-groups	Default: ou=Resource Limit Groups,ou=AuthenticationSwiftlet,o=SwiftMQ
authentication-groups	Default: ou=Groups,ou=AuthenticationSwiftlet,o=SwiftMQ
queue-grants	Default: ou=Queue Grants
topic-grants	Default: ou=Topic Grants

Element "ldap-attributes", Parent Element: "swiftlet"

LDAP Attribute Mappings.

Element "user", Parent Element: "ldap-attributes"

User Attribute Mappings.

Definition

Attribute	Type	Mandatory	Description
rdn	java.lang.String	Yes	User RDN Attribute Name
host	java.lang.String	Yes	Host Attribute Name
password	java.lang.String	Yes	Password Attribute Name
authentication-group-name	java.lang.String	Yes	Authentication Group Name Attribute Name
resource-limit-group-name	java.lang.String	Yes	Resource Limit Group Attribute Name

Values

Attribute	Values
rdn	Default: uid
host	Default: smqHost
password	Default: smqPassword
authentication-group-name	Default: smqAuthenticationGroupName
resource-limit-group-name	Default: smqResourceLimitGroupName

Element "authentication-group", Parent Element: "ldap-attributes"

Authentication Attribute Mappings.

Definition

Attribute	Type	Mandatory	Description
rdn	java.lang.String	Yes	RDN Attribute Name

Values

Attribute	Values
rdn	Default: ou

Element "resource-limit-group", Parent Element: "ldap-attributes"

Resource Limit Group Attribute Mappings.

Definition

Attribute	Type	Mandatory	Description
rdn	java.lang.String	Yes	RDN Attribute Name
max-connections	java.lang.String	Yes	Max Connections Attribute Name
max-consumers	java.lang.String	Yes	Max Consumers Attribute Name
max-producers	java.lang.String	Yes	Max Producers Attribute Name
max-sessions	java.lang.String	Yes	Max Sessions Attribute Name
max-temp-queues	java.lang.String	Yes	Max Temp Queues Attribute Name

Values

Attribute	Values
rdn	Default: cn
max-connections	Default: smqMaxConnections
max-consumers	Default: smqMaxConsumers
max-producers	Default: smqMaxProducers
max-sessions	Default: smqMaxSessions
max-temp-queues	Default: smqMaxTempQueues

Element "topic-grant", Parent Element: "ldap-attributes"

Topic Grants Attribute Mappings.

Definition

Attribute	Type	Mandatory	Description
rdn	java.lang.String	Yes	RDN Attribute Name
durable-grant	java.lang.String	Yes	Durable Grant Attribute Name
publish-grant	java.lang.String	Yes	Publish Grant Attribute Name
subscribe-grant	java.lang.String	Yes	Subscribe Grant Attribute Name

Values

Attribute	Values
rdn	Default: cn
durable-grant	Default: smqDurableGrant
publish-grant	Default: smqPublishGrant
subscribe-grant	Default: smqSubscribeGrant

Element "queue-grant", Parent Element: "ldap-attributes"

Queue Grants Attribute Mappings.

Definition

Attribute	Type	Mandatory	Description
rdn	java.lang.String	Yes	RDN Attribute Name
browse-grant	java.lang.String	Yes	Browse Grant Attribute Name
receive-grant	java.lang.String	Yes	Receive Grant Attribute Name
send-grant	java.lang.String	Yes	Subscribe Grant Attribute Name

Values

Attribute	Values
rdn	Default: cn
browse-grant	Default: smqBrowseGrant
receive-grant	Default: smqReceiveGrant
send-grant	Default: smqSendGrant

Element "cache", Parent Element: "swiftlet"

Cache.

Definition

Attribute	Type	Mandatory	Description
enabled	java.lang.Boolean	No	Enabes/Disables Caching
expiration	java.lang.Long	No	A cached Entity expires after this time (ms)

Values

Attribute	Values
enabled	Default: true
expiration	Min: 1000 Default: 300000

© Copyright 2000-2008 IIT GmbH, Bremen/Germany. All rights reserved. SwiftMQ and Swiftlet are registered trademarks of IIT GmbH. All other product names mentioned herein are trademarks of their respective owners.