Uploaded image for project: 'AMQ Broker'
  1. AMQ Broker
  2. ENTMQBR-790

Add support for authentication to ldap via kerberos for ldapLoginModule

    XMLWordPrintable

Details

    • Story
    • Resolution: Done
    • Major
    • AMQ 7.0.3.GA
    • A-MQ 7.0.0.GA
    • None
    • Release Notes
    • Hide
      Previously, the broker could not connect to an LDAP provider using Kerberos credentials. In the 7.1 version of AMQ Broker, you can enable the broker to use Kerberos by adding configuration to the login.config configuration file. See the "Security" chapter of the product documentation titled Using AMQ Broker for more information.
      Show
      Previously, the broker could not connect to an LDAP provider using Kerberos credentials. In the 7.1 version of AMQ Broker, you can enable the broker to use Kerberos by adding configuration to the login.config configuration file. See the "Security" chapter of the product documentation titled Using AMQ Broker for more information.
    • Documented as Feature Request
    • AMQ Broker 7.1 Sprint 1

    Description

      This avoids the need to put private credentials in login.config for the ldap jaas login module to connect to LDAP.

      the credential used for the kerberos amqp acceptor can be reused and the login config scope can be configured

      Attachments

        Issue Links

          is blocked by

          Bug - A problem that impairs or prevents the functions of the product. ENTMQBR-948 GSSAPI IBM JDK - clients get authentication refused first time they connect to broker

          • Blocker - To be worked above all other priorities. This term is chosen when the severity of the issue is very high, has no workaround, or the effort for the change is comparatively low. Issues that may be very publicly visible and could generate significant media attention may also drive a higher priority.
          • Closed
          relates to

          Feature Request - Feature requests from customers and/or users AMQDOC-2210 REQ: Document " Implement a Kerberos Authentication Mechanism between clients and the broker"

          • Major - To be worked after higher priority work items are addressed. When the severity is high and the effort to change it is low to moderate, this term is chosen. Issues in this category likely have an existing workaround but implementation or execution may be non-trivial.
          • Closed

          Feature Request - Feature requests from customers and/or users AMQDOC-2674 REQ: Document LDAP role mapping of kerberos authenticated users

          • Major - To be worked after higher priority work items are addressed. When the severity is high and the effort to change it is low to moderate, this term is chosen. Issues in this category likely have an existing workaround but implementation or execution may be non-trivial.
          • Closed

          Story - Created by Jira Software - do not edit or delete. Issue type for a user story. ENTMQBR-789 Add support for Ldap role mapping of kerberos authenticated users

          • Major - To be worked after higher priority work items are addressed. When the severity is high and the effort to change it is low to moderate, this term is chosen. Issues in this category likely have an existing workaround but implementation or execution may be non-trivial.
          • Closed

          ARTEMIS-1372 Loading...

          Activity

            People

              rh-ee-ataylor Andy Taylor
              gtully@redhat.com Gary Tully
              Michal Toth Michal Toth
              Votes:
              0 Vote for this issue
              Watchers:
              5 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: