<h1class="sectionedit1"id="brute_force_protection_addon">Brute Force Protection Addon</h1>
<divclass="level1">
<p>
bruteForceProtection plugin prevents brute force attack. Plugin DISABLED by default.
</p>
...
...
@@ -56,7 +59,9 @@ After three failed login attempts, user must wait (30 seconds by default) before
The aim of a brute force attack is to gain access to user accounts by repeatedly trying to guess the password of a user. If it is disabled, automated tools may submit thousands of password attempts in a matter of seconds.
<liclass="level1"><divclass="li"> Map the container port 80 to host port 80 (option -p)</div>
</li>
<liclass="level1"><divclass="li"> Add reload.example.com to /etc/hosts in the container (option –add-host)</div>
</li>
</ul>
<preclass="code">docker run -d --add-host reload.example.com:127.0.0.1 -p 80:80 coudot/lemonldap-ng</pre>
<preclass="code">docker run -d -p 80:80 coudot/lemonldap-ng</pre>
<p>
Then connect to <ahref="http://auth.example.com"class="urlextern"title="http://auth.example.com"rel="nofollow">http://auth.example.com</a> with your browser and log in with dwho/dwho.
@@ -231,22 +230,11 @@ Install the package <code>lemonldap-ng-conf</code> on all server which contains
<p>
By default, <abbrtitle="Domain Name System">DNS</abbr> domain is <code>example.com</code>. You can change it quick with a sed command. For example, we change it to <code>ow2.org</code>:
If you upgraded <abbrtitle="LemonLDAP::NG">LL::NG</abbr>, check all <ahref="upgrade.html"class="wikilink1"title="documentation:2.0:upgrade">upgrade notes</a>.
</p>
<p>
For apache configuration, you may have to remove the old symbolic link, if not done by the RPM:
The upgrade process will also have migrate old configuration files into <code>/etc/lemonldap-ng/lemonldap-ng.ini</code>. This includes the application list which is now set in the <code>applicationList</code> parameter from <code>[portal]</code> section, for example:
<spanclass="re1">applicationList</span><spanclass="sy0">=</span><spanclass="re2"><spanclass="br0">{</span> 'Menu' <spanclass="sy0">=</span>><spanclass="br0">{</span> type <spanclass="sy0">=</span>> 'category', 'Example' <spanclass="sy0">=</span>><spanclass="br0">{</span> type <spanclass="sy0">=</span>> 'category', 'test1' <spanclass="sy0">=</span>><spanclass="br0">{</span> type <spanclass="sy0">=</span>> 'application', options <spanclass="sy0">=</span>><spanclass="br0">{</span> name <spanclass="sy0">=</span>> 'Application Test 1', uri <spanclass="sy0">=</span>> 'http://test1.example.com/', description <spanclass="sy0">=</span>> 'A simple application displaying authenticated user', logo <spanclass="sy0">=</span>> 'wheels.png', display <spanclass="sy0">=</span>> 'auto', <spanclass="br0">}</span>, <spanclass="br0">}</span>,'test2' <spanclass="sy0">=</span>><spanclass="br0">{</span> type <spanclass="sy0">=</span>> 'application', options <spanclass="sy0">=</span>><spanclass="br0">{</span> name <spanclass="sy0">=</span>> 'Application Test 2', uri <spanclass="sy0">=</span>> 'http://test2.example.com/', description <spanclass="sy0">=</span>> 'The same simple application displaying authenticated user', logo <spanclass="sy0">=</span>> 'wheels.png', display <spanclass="sy0">=</span>> 'auto', <spanclass="br0">}</span>, <spanclass="br0">}</span>, <spanclass="br0">}</span>,'Administration' <spanclass="sy0">=</span>><spanclass="br0">{</span> type <spanclass="sy0">=</span>> 'category', 'manager' <spanclass="sy0">=</span>><spanclass="br0">{</span> type <spanclass="sy0">=</span>> 'application', options <spanclass="sy0">=</span>><spanclass="br0">{</span> name <spanclass="sy0">=</span>> 'WebSSO Manager', uri <spanclass="sy0">=</span>> 'http://manager.example.com/', description <spanclass="sy0">=</span>> 'Configure LemonLDAP::NG WebSSO', logo <spanclass="sy0">=</span>> 'tools.png', display <spanclass="sy0">=</span>> 'on', <spanclass="br0">}</span>, <spanclass="br0">}</span>,'sessions' <spanclass="sy0">=</span>><spanclass="br0">{</span> type <spanclass="sy0">=</span>> 'application', options <spanclass="sy0">=</span>><spanclass="br0">{</span> name <spanclass="sy0">=</span>> 'Sessions explorer', uri <spanclass="sy0">=</span>> 'http://manager.example.com/sessions.pl', description <spanclass="sy0">=</span>> 'Explore WebSSO sessions', logo <spanclass="sy0">=</span>> 'tools.png', display <spanclass="sy0">=</span>> 'on', <spanclass="br0">}</span>, <spanclass="br0">}</span>, <spanclass="br0">}</span>,'Documentation' <spanclass="sy0">=</span>><spanclass="br0">{</span> type <spanclass="sy0">=</span>> 'category', 'localdoc' <spanclass="sy0">=</span>><spanclass="br0">{</span> type <spanclass="sy0">=</span>> 'application', options <spanclass="sy0">=</span>><spanclass="br0">{</span> name <spanclass="sy0">=</span>> 'Local documentation', uri <spanclass="sy0">=</span>> 'http://manager.example.com/doc/', description <spanclass="sy0">=</span>> 'Documentation supplied with LemonLDAP::NG', logo <spanclass="sy0">=</span>> 'docs.png', display <spanclass="sy0">=</span>> 'on', <spanclass="br0">}</span>, <spanclass="br0">}</span>,'officialwebsite' <spanclass="sy0">=</span>><spanclass="br0">{</span> type <spanclass="sy0">=</span>> 'application', options <spanclass="sy0">=</span>><spanclass="br0">{</span> name <spanclass="sy0">=</span>> 'Offical Website', uri <spanclass="sy0">=</span>> 'http://wiki.lemonldap.objectweb.org/xwiki/bin/view/NG/Presentation', description <spanclass="sy0">=</span>> 'Official LemonLDAP::NG Website', logo <spanclass="sy0">=</span>> 'web.png', display <spanclass="sy0">=</span>> 'on', <spanclass="br0">}</span>, <spanclass="br0">}</span>, <spanclass="br0">}</span>, <spanclass="br0">}</span>, <spanclass="br0">}</span></span></pre>
<divclass="noteimportant">You should now use the Manager to configure all <ahref="portalmenu.html#categories_and_applications"class="wikilink1"title="documentation:2.0:portalmenu">applications and categories</a>, and then comment or remove the <code>applicationList</code> parameter from <code>/etc/lemonldap-ng/lemonldap-ng.ini</code>.
</div>
</div>
<!-- EDIT14 SECTION "Upgrade" [5817-8330] -->
<h3class="sectionedit15"id="dns">DNS</h3>
<divclass="level3">
<p>
Configure your <abbrtitle="Domain Name System">DNS</abbr> server to resolve names with your server <abbrtitle="Internet Protocol">IP</abbr>.
</p>
<divclass="notetip">For tests with <code>example.com</code>, launch the following :