Confluence SharePoint Connector 1.2 : Configuring Confluence to use JCIFS for NTLM Authentication
This page last changed on May 27, 2010 by smaddox.
This page is an addendum to the installation guide for the Confluence SharePoint Connector. It has notes on configuring access to Confluence using Integrated Windows Authentication via JCIFS.
On this page: OverviewIn this configuration both SharePoint and client browsers are authenticated against Confluence using Windows authentication provided by JCIFS, a third-party implementation written in Java. If you have not already seen our guide to planning your environment, you can refer to it for information that will help you select the best configuration for your environment. About JCIFSJCIFS is an Open Source client library that implements the CIFS/SMB networking protocol in 100% Java. CIFS is the standard file-sharing protocol on the Microsoft Windows platform. The JCIFS library also includes a Servlet Filter that allows support for NTLM authentication over HTTP. For more information, visit the JCIFS website. Authentication MethodsJCIFS supports the following Windows authentication methods:
Feature DeprecationThis text is taken from the JCIFS website:
Installation NotesWe have tested JCIFS 1.3.14. 1. Download latest jar from http://jcifs.samba.org/src/ and place in Confluence (\confluence\WEB-INF\lib)2. Add the attached file named "customauth-0.4.jar" to Confluence (\confluence\WEB-INF\lib)
3. Configure Confluence with LDAP User ManagementSee the attached "atlassian-user.xml" for an example integration with Active Directory.
4. Test access to Confluence using current "Login" page with both Active Directory accounts and non-Active Directory accounts
5. Update \confluence\web-inf\web.xml to contain additional filter settings to support JCIFSSee JCIFS NTLM HTTP Authentication for more filter examples. 5a. Add the following filter as the last filter before <filter-mapping>You will need to change the values to match your specific environment. Filter <filter> <filter-name>NtlmHttpFilter</filter-name> <filter-class>jcifs.http.NtlmHttpFilter</filter-class> <init-param> <param-name>jcifs.http.domainController</param-name> <param-value>PLACE DOMAIN CONTROLLER IP ADDRESS HERE</param-value> </init-param> <!-- always needed for preauthentication / SMB signatures --> <init-param> <param-name>jcifs.smb.client.domain</param-name> <param-value>PLACE DOMAIN NAME HERE (e.g., mydomain.local)</param-value> </init-param> <init-param> <param-name>jcifs.smb.client.username</param-name> <param-value>PLACE DOMAIN ACCOUNT HERE (do not prefix with "<domain>\")</param-value> </init-param> <init-param> <param-name>jcifs.smb.client.password</param-name> <param-value>PLACE DOMAIN PASSWORD HERE</param-value> </init-param> </filter> 5b. Add the following filter-mapping just before the "login" filter-mappingFilter-Mapping <filter-mapping> <filter-name>NtlmHttpFilter</filter-name> <url-pattern>/*</url-pattern> </filter-mapping> 6. Set the <authenticator> in the "\confluence\WEB-INF\classes\seraph-config.xml" file to the following<authenticator class="com.pixelpark.seraph.SSOAuthenticator"/> RELATED TOPICS
|
![]() |
Document generated by Confluence on Jun 07, 2010 14:28 |