Versions Compared

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

How to configure multiple users and group bases ?

...

Yes, you can configure as many tenants as you want but they will all share the same . Each tenant can have its own LDAP configuration.

Can I connect to more than one LDAP Server ?

That is not supported. You can only Each tenant can connect to only one LDAP server.

How can I configure the Live Forms designers ?

Designer users should be set up on your LDAP server with the special frevvo.Designer groupYou can connect to different LDAP servers from each tenant.

LDAP Troubleshooting

If things are not working as you expected:

  1. The primary source of information is the  log file. In most cases, the LDAP connector will try to indicate what the problem is in the logs. In the log file, look for lines with LDAPSecurityManager or LdapDao.
  2. It is useful to have an LDAP browser at hand, for instance, the Apache Directory Studio. With the browser you can:
    1.  Check if the connection parameters that you configured in  are correct.
    2.  Run queries against LDAP and make sure that the expressions you configured in   are correct and returning what you expect.
  3. If you can't spot the problem and need to contact frevvo support:
    1. Stop 
    2. Go to <frevvo-home>/tomcat/logs/frevvo.log.
    3. Follow these steps to change the log level from INFO to DEBUG
    4. Restart 
    5. Execute the steps that is causing problems.
    6. Send the log file (zip) to Live Forms support (support@frevvo.com) with a description of the problem.
    7. Restore the log level to INFO.

...

This is can be a problem with the expression you configured in All Users Filter (for users) and/or All Groups Filter (for groups) on the LDAP configuration Edit Tenant screen.. Also verify that the search bases are correct in the Users Base (users) and Groups Base (groups) fields. The LDAP Browser is useful here. Execute a search directly on your LDAP server using the same expression and bases you configured in  and check if the result is correct.

...

  1. Login to your LDAP/AD Server.
  2. Make sure you have a group defined for the designer role and it is named FrevvoAdminsfrevvo.TenantAdmin.
  3. Make sure the user having the problem is a member of the FrevvoAdmins frevvo.TenantAdmin group. 

Another potential issue is case sensitivity. Please refer to the topic  Mixed or Upper case User Names.

...