Revision 8573
Added by ben leinfelder about 10 years ago
| configuration.rst | ||
|---|---|---|
| 45 | 45 |
algorithm to locate it. If Metacat cannot identify a backup directory, you will |
| 46 | 46 |
see the Backup Directory Configuration screen. |
| 47 | 47 |
|
| 48 |
NOTE: If the metacat.properties file has many custom settings, it should be manually |
|
| 49 |
backed up before any Metacat upgrade as deploying a new Metacat war file will overwrite |
|
| 50 |
the existing file. |
|
| 48 |
.. Note:: |
|
| 49 |
|
|
| 50 |
If the metacat.properties file has many custom settings, it should be manually |
|
| 51 |
backed up before any Metacat upgrade as deploying a new Metacat war file will overwrite |
|
| 52 |
the existing file. |
|
| 51 | 53 |
|
| 52 | 54 |
.. figure:: images/screenshots/image011.png |
| 53 | 55 |
:align: center |
| ... | ... | |
| 62 | 64 |
|
| 63 | 65 |
http://<your_context_url>/admin |
| 64 | 66 |
|
| 65 |
Metacat uses either an internal password file or LDAP as its primary authentication mechanism.
|
|
| 67 |
Metacat uses either an internal password file or LDAP as its authentication mechanism. |
|
| 66 | 68 |
You can choose the authentication mechanism by selecting either AuthFile or AuthLdap class. |
| 67 |
We will only allow the trusted partners to access the NCEAS LDAP Server.
|
|
| 69 |
We will only allow trusted partners to access the NCEAS LDAP server to ensure the security of our user base.
|
|
| 68 | 70 |
If you are not in the trusted partner list, you may choose the internal password file authentication |
| 69 | 71 |
or set up your own LDAP server. You also can define your own authentication mechanism by creating a Java |
| 70 | 72 |
class that implements ``AuthInterface``. |
| 71 | 73 |
|
| 72 | 74 |
Required configuration values for the password file authentication are: |
| 73 |
Authentication Class, Metacat Administrators, Users Management URL and Password File Path. |
|
| 74 | 75 |
|
| 75 |
Required configuration values for LDAP authentication are: Authentication Class, |
|
| 76 |
Metacat Administrators, Users Management URL, Authentication URL, and Authentication Secure URL. |
|
| 76 |
:: |
|
| 77 |
|
|
| 78 |
Authentication Class |
|
| 79 |
Metacat Administrators |
|
| 80 |
Users Management URL |
|
| 81 |
Password File Path. |
|
| 77 | 82 |
|
| 83 |
Required configuration values for LDAP authentication are: |
|
| 84 |
|
|
| 85 |
:: |
|
| 86 |
|
|
| 87 |
Authentication Class |
|
| 88 |
Metacat Administrators |
|
| 89 |
Users Management URL |
|
| 90 |
Authentication URL |
|
| 91 |
Authentication Secure URL. |
|
| 92 |
|
|
| 93 |
|
|
| 78 | 94 |
Make sure that your user account information is entered into the Metacat |
| 79 | 95 |
Administrators field (e.g., uid=daigle,o=nceas,dc=ecoinformatics,dc=org). You |
| 80 |
will not be allowed to continue with configuration if this is missing. |
|
| 96 |
will not be allowed to continue with configuration if this is missing. Multiple |
|
| 97 |
accounts can be entered, separated by the colon (:) character. |
|
| 81 | 98 |
|
| 82 |
NOTE: |
|
| 99 |
.. Note:: |
|
| 100 |
|
|
| 101 |
To create an account on the password file, please see the section called :doc:`authinterface`. |
|
| 102 |
To create an LDAP account on the KNB LDAP server (specified as the default LDAP server), |
|
| 103 |
go to https://identity.nceas.ucsb.edu and select the "create a new user account" link. |
|
| 83 | 104 |
|
| 84 |
1. To create an account on the password file, please see the section called :doc:`authinterface`. |
|
| 85 |
|
|
| 86 |
2. To create an LDAP account on the KNB LDAP server (specified as the default LDAP server), go to https://identity.nceas.ucsb.edu and select the "create a new user account" link. |
|
| 87 |
|
|
| 88 | 105 |
If you make changes to the authentication settings, you must restart Tomcat to |
| 89 | 106 |
put them into effect. |
| 90 | 107 |
|
Also available in: Unified diff
Minor edits on the new AuthFile features.