Configure Nuxeo EP to use a LDAP or Active Directory server

Nuxeo EP uses an internal SQL database by default to manage users and groups. However Nuxeo EP comes with an LDAP connector by default. To enable instead of the internal SQL database please copy the following files to your $JBOSS_HOME/server/default/nuxeo.ear/config/ folder, adapt the settings and restart JBoss.

You can find additional info on those settings in the documentation for LDAPDirectory extension point.

The ldaptools/ folder of the nuxeo-platform-directory-ldap module further provides sample ldiff files and OpenLDAP configuration file to help you setup a sample OpenLDAP server you can use as a base config to build your corporate directory.

The detailed architecture of the authentication and user management modules of Nuxeo EP can be found in the user authentication and directories (to be written) chapters of the reference guide.

Active Directory users are advised to use the aggregated global catalog port number (3268 by default) instead of the default LDAP port (389) in order to avoid getting referrals request to sub directories blocked by corporate firewalls.