Revision 8573
Added by ben leinfelder about 10 years ago
configuration.rst | ||
---|---|---|
45 | 45 |
algorithm to locate it. If Metacat cannot identify a backup directory, you will |
46 | 46 |
see the Backup Directory Configuration screen. |
47 | 47 |
|
48 |
NOTE: If the metacat.properties file has many custom settings, it should be manually |
|
49 |
backed up before any Metacat upgrade as deploying a new Metacat war file will overwrite |
|
50 |
the existing file. |
|
48 |
.. Note:: |
|
49 |
|
|
50 |
If the metacat.properties file has many custom settings, it should be manually |
|
51 |
backed up before any Metacat upgrade as deploying a new Metacat war file will overwrite |
|
52 |
the existing file. |
|
51 | 53 |
|
52 | 54 |
.. figure:: images/screenshots/image011.png |
53 | 55 |
:align: center |
... | ... | |
62 | 64 |
|
63 | 65 |
http://<your_context_url>/admin |
64 | 66 |
|
65 |
Metacat uses either an internal password file or LDAP as its primary authentication mechanism.
|
|
67 |
Metacat uses either an internal password file or LDAP as its authentication mechanism. |
|
66 | 68 |
You can choose the authentication mechanism by selecting either AuthFile or AuthLdap class. |
67 |
We will only allow the trusted partners to access the NCEAS LDAP Server.
|
|
69 |
We will only allow trusted partners to access the NCEAS LDAP server to ensure the security of our user base.
|
|
68 | 70 |
If you are not in the trusted partner list, you may choose the internal password file authentication |
69 | 71 |
or set up your own LDAP server. You also can define your own authentication mechanism by creating a Java |
70 | 72 |
class that implements ``AuthInterface``. |
71 | 73 |
|
72 | 74 |
Required configuration values for the password file authentication are: |
73 |
Authentication Class, Metacat Administrators, Users Management URL and Password File Path. |
|
74 | 75 |
|
75 |
Required configuration values for LDAP authentication are: Authentication Class, |
|
76 |
Metacat Administrators, Users Management URL, Authentication URL, and Authentication Secure URL. |
|
76 |
:: |
|
77 |
|
|
78 |
Authentication Class |
|
79 |
Metacat Administrators |
|
80 |
Users Management URL |
|
81 |
Password File Path. |
|
77 | 82 |
|
83 |
Required configuration values for LDAP authentication are: |
|
84 |
|
|
85 |
:: |
|
86 |
|
|
87 |
Authentication Class |
|
88 |
Metacat Administrators |
|
89 |
Users Management URL |
|
90 |
Authentication URL |
|
91 |
Authentication Secure URL. |
|
92 |
|
|
93 |
|
|
78 | 94 |
Make sure that your user account information is entered into the Metacat |
79 | 95 |
Administrators field (e.g., uid=daigle,o=nceas,dc=ecoinformatics,dc=org). You |
80 |
will not be allowed to continue with configuration if this is missing. |
|
96 |
will not be allowed to continue with configuration if this is missing. Multiple |
|
97 |
accounts can be entered, separated by the colon (:) character. |
|
81 | 98 |
|
82 |
NOTE: |
|
99 |
.. Note:: |
|
100 |
|
|
101 |
To create an account on the password file, please see the section called :doc:`authinterface`. |
|
102 |
To create an LDAP account on the KNB LDAP server (specified as the default LDAP server), |
|
103 |
go to https://identity.nceas.ucsb.edu and select the "create a new user account" link. |
|
83 | 104 |
|
84 |
1. To create an account on the password file, please see the section called :doc:`authinterface`. |
|
85 |
|
|
86 |
2. To create an LDAP account on the KNB LDAP server (specified as the default LDAP server), go to https://identity.nceas.ucsb.edu and select the "create a new user account" link. |
|
87 |
|
|
88 | 105 |
If you make changes to the authentication settings, you must restart Tomcat to |
89 | 106 |
put them into effect. |
90 | 107 |
|
Also available in: Unified diff
Minor edits on the new AuthFile features.