Basic Active Directory Integration - CUBA Platform. Developer’s Manual

8.1.6.1. Basic Active Directory Integration

If the cuba.web.externalAuthentication property is enabled, the LdapAuthProvider class is used by default. In this case, Spring LDAP library is used for user authentication.

The following Web Client application properties are used to setup:

cuba.web.ldap.urls – LDAP server URL.
cuba.web.ldap.base – base DN for user search.
cuba.web.ldap.user – the distinguished name of the user which has the right to read the information from the directory.
cuba.web.ldap.password – the password for the user defined in the cuba.web.ldap.user property.

Example of local.app.properties file for the Web Client block:

cuba.web.externalAuthentication = true
cuba.web.ldap.urls = ldap://192.168.1.1:389
cuba.web.ldap.base = ou=Employees,dc=mycompany,dc=com
cuba.web.ldap.user = cn=Some User,ou=Employees,dc=mycompany,dc=com
cuba.web.ldap.password = some_user_password

When creating users in the application, use their sAMAccountName without domain if you work with Active Directory.