Configure Wildfly-17 for LDAP Authentication failed to run with exception telling that properties tag not allowed under authentication which is not reasonable As the exception says that the only allowed tags under authentication are:
| jaas local truststore
| kerberos plug-in users
| ldap ***properties***
I tried to refresh the server then restart it, but still get the same exception here is my standalone-full.xml configuration file:
<security-realm name="ManagementRealm">
<authentication>
<local default-user="$local" skip-group-loading="true"/>
<ldap connection="EC2" base-dn="CN=Users,DC=mydc1,DC=mydc2,DC=org">
<username-filter attribute="sAMAccountName" />
</ldap>
<properties path="mgmt-users.properties" relative-to="jboss.server.config.dir"/>
</authentication>
<authorization map-groups-to-roles="false">
<properties path="mgmt-groups.properties" relative-to="jboss.server.config.dir"/>
</authorization>
</security-realm>
Here is the Exception message:
OPVDX001: Validation error in standalone-full.xml ------------------------------
|
| 50: <username-filter attribute="sAMAccountName" />
| 51: </ldap>
| 52: <properties path="mgmt-users.properties" relative-to="jboss.server.config.dir"/>
| ^^^^ 'properties' isn't an allowed element here
|
| Elements allowed here are:
| jaas local truststore
| kerberos plug-in users
| ldap properties
|
| 53: </authentication>
| 54: <authorization map-groups-to-roles="false">
| 55: <properties path="mgmt-groups.properties" relative-to="jboss.server.config.dir"/>
|
| 'properties' is allowed in elements:
| - server > management > security-realms > security-realm > authentication
| - server > management > security-realms > security-realm > authentication > plug-in
| - server > management > security-realms > security-realm > authorization
| - server > management > security-realms > security-realm > authorization > plug-in
| - server > management > outbound-connections > ldap
将属性元素放在第一位即可解决问题
The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.