Open Edition

Hello,

How do I get ldap users to show on business-central console's security management page. My goal is to add ldap users to the groups I created on this page. Is something like this possible ?

any help will be appreciated

It will depends how is your current setup. 

1. Are you deploying on wildfly ? What is your configuration / properies ?
2. Do you have setup the other security domain ?

This things can vary depending on what you are doing but usually setting up the security domain in wildfly is enough. Usually this depends more in the container that the Business central.

------------------------------
Enrique González Martínez

Original Message:
Sent: Fri August 04, 2023 10:01 AM
From: balamir kodak
Subject: user-group management

Hello,

How do I get ldap users to show on business-central console's security management page. My goal is to add ldap users to the groups I created on this page. Is something like this possible ?

any help will be appreciated

------------------------------
balamir kodak
------------------------------

Hello Enrique,

First off all thanks for response. 

1- its deployed on jboss Red Hat JBoss Enterprise Application Platform - Version 7.4.0.GA

2 - ı could not upload file on this page because of cross policy blocking. I attached my config file to this location : standalone_xml

Thanks 

------------------------------
balamir kodak

Original Message:
Sent: Mon August 07, 2023 03:04 AM
From: Enrique González Martínez
Subject: user-group management

It will depends how is your current setup. 

1. Are you deploying on wildfly ? What is your configuration / properies ?
2. Do you have setup the other security domain ?

This things can vary depending on what you are doing but usually setting up the security domain in wildfly is enough. Usually this depends more in the container that the Business central.

------------------------------
Enrique González Martínez

Original Message:
Sent: Fri August 04, 2023 10:01 AM
From: balamir kodak
Subject: user-group management

Hello,

How do I get ldap users to show on business-central console's security management page. My goal is to add ldap users to the groups I created on this page. Is something like this possible ?

any help will be appreciated

------------------------------
balamir kodak
------------------------------

Ok.

I can see in your file that you are using file system realm "ApplicationRealm"

            <filesystem-realm name="ApplicationRealm">
                    <file path="kie-fs-realm-users" relative-to="jboss.server.config.dir"/>
             </filesystem-realm>

pointing to the kie fs users which is the same used by the business central. please check that in business-central.war/WEB-IN/classes/security-management.properties you have the property org.uberfire.ext.security.management.api.userManagementServices=WildflyCLIUserManagementService

If this is the case  (looks by your configuration it is) If you want to change this, you need to go to wildfly documentation and setup LDAP for that realm instead using file system.

Hello Enrique,

First off all thanks for response. 

1- its deployed on jboss Red Hat JBoss Enterprise Application Platform - Version 7.4.0.GA

2 - ı could not upload file on this page because of cross policy blocking. I attached my config file to this location : standalone_xml

Thanks 

------------------------------
balamir kodak

Original Message:
Sent: Mon August 07, 2023 03:04 AM
From: Enrique González Martínez
Subject: user-group management

It will depends how is your current setup. 

1. Are you deploying on wildfly ? What is your configuration / properies ?
2. Do you have setup the other security domain ?

This things can vary depending on what you are doing but usually setting up the security domain in wildfly is enough. Usually this depends more in the container that the Business central.

------------------------------
Enrique González Martínez

Original Message:
Sent: Fri August 04, 2023 10:01 AM
From: balamir kodak
Subject: user-group management

Hello,

How do I get ldap users to show on business-central console's security management page. My goal is to add ldap users to the groups I created on this page. Is something like this possible ?

any help will be appreciated

------------------------------
balamir kodak
------------------------------

Hello,

We already configured LDAP realm and security domain. We can log in to the business-central application with LDAP users. However, as seen in the picture, we want the users in LDAP to be seen in the users section (marked area in pict attached) of business-central. Because we will use these users to assign tasks. pict

Thank You

Ok.

I can see in your file that you are using file system realm "ApplicationRealm"

            <filesystem-realm name="ApplicationRealm">
                    <file path="kie-fs-realm-users" relative-to="jboss.server.config.dir"/>
             </filesystem-realm>

pointing to the kie fs users which is the same used by the business central. please check that in business-central.war/WEB-IN/classes/security-management.properties you have the property org.uberfire.ext.security.management.api.userManagementServices=WildflyCLIUserManagementService

If this is the case  (looks by your configuration it is) If you want to change this, you need to go to wildfly documentation and setup LDAP for that realm instead using file system.

Hello Enrique,

First off all thanks for response. 

1- its deployed on jboss Red Hat JBoss Enterprise Application Platform - Version 7.4.0.GA

2 - ı could not upload file on this page because of cross policy blocking. I attached my config file to this location : standalone_xml

Thanks 

------------------------------
balamir kodak

Original Message:
Sent: Mon August 07, 2023 03:04 AM
From: Enrique González Martínez
Subject: user-group management

It will depends how is your current setup. 

1. Are you deploying on wildfly ? What is your configuration / properies ?
2. Do you have setup the other security domain ?

This things can vary depending on what you are doing but usually setting up the security domain in wildfly is enough. Usually this depends more in the container that the Business central.

------------------------------
Enrique González Martínez

Original Message:
Sent: Fri August 04, 2023 10:01 AM
From: balamir kodak
Subject: user-group management

Hello,

How do I get ldap users to show on business-central console's security management page. My goal is to add ldap users to the groups I created on this page. Is something like this possible ?

any help will be appreciated

------------------------------
balamir kodak
------------------------------

Hi Balamir, 

• Realm for login in Business Central and user managment works with two different set of properties.
• You need to check the property if it is set properly (already mentioned in my prior comment)  

  -Dorg.uberfire.ext.security.management.api.userManagementServices=WildflyUserManagementService

• you have here more details about this: https://github.com/kiegroup/appformer/blob/main/uberfire-extensions/uberfire-security/uberfire-security-management/uberfire-security-management-wildfly/README.md 
• Also check that uberfire-security-management-wildfly-<version>.jar is in your business-central.war/WEB-LIB/lib folder.

Please checkout that.

Hello,

We already configured LDAP realm and security domain. We can log in to the business-central application with LDAP users. However, as seen in the picture, we want the users in LDAP to be seen in the users section (marked area in pict attached) of business-central. Because we will use these users to assign tasks. pict

Thank You

Ok.

I can see in your file that you are using file system realm "ApplicationRealm"

            <filesystem-realm name="ApplicationRealm">
                    <file path="kie-fs-realm-users" relative-to="jboss.server.config.dir"/>
             </filesystem-realm>

pointing to the kie fs users which is the same used by the business central. please check that in business-central.war/WEB-IN/classes/security-management.properties you have the property org.uberfire.ext.security.management.api.userManagementServices=WildflyCLIUserManagementService

If this is the case  (looks by your configuration it is) If you want to change this, you need to go to wildfly documentation and setup LDAP for that realm instead using file system.

Hello Enrique,

First off all thanks for response. 

1- its deployed on jboss Red Hat JBoss Enterprise Application Platform - Version 7.4.0.GA

2 - ı could not upload file on this page because of cross policy blocking. I attached my config file to this location : standalone_xml

Thanks 

------------------------------
balamir kodak

Original Message:
Sent: Mon August 07, 2023 03:04 AM
From: Enrique González Martínez
Subject: user-group management

It will depends how is your current setup. 

1. Are you deploying on wildfly ? What is your configuration / properies ?
2. Do you have setup the other security domain ?

This things can vary depending on what you are doing but usually setting up the security domain in wildfly is enough. Usually this depends more in the container that the Business central.

------------------------------
Enrique González Martínez

Original Message:
Sent: Fri August 04, 2023 10:01 AM
From: balamir kodak
Subject: user-group management

Hello,

How do I get ldap users to show on business-central console's security management page. My goal is to add ldap users to the groups I created on this page. Is something like this possible ?

any help will be appreciated

------------------------------
balamir kodak
------------------------------