Migrated Authentication Provider Properties
Reference LDAP and Crowd authentication provider properties migrated from artifactory.system.properties to Access YAML.
As part of enhancements to the JFrog Access Service to make it the primary service for authentication providers, from Artifactory version 7.71.2, custom authentication provider properties have been migrated to the Access YAML Configuration. Configure authentication providers in the Access YAML Configuration instead of using system properties in the artifactory.system.properties file.
LDAP
From Artifactory version 7.71.2, the following Artifactory system properties for LDAP configuration are replaced with Access YAML configuration properties:
Artifactory System Properties | Access YAML Configuration Properties |
|---|---|
artifactory.security.ldap.forceGroupMemberAttFullDN | security.authentication.ldap.force-group-member-att-full-dn |
artifactory.security.ldap.disable.group.search.attributes.limitation | security.authentication.ldap.group.disable-attributes-limitation |
artifactory.security.ldap.group.policy.cleanOnFail | security.authentication.ldap.group.clean-on-fail |
artifactory.security.ldap.group.search.filterThreshold | security.authentication.ldap.group.search.filter-threshold |
artifactory.ldap.max.page.size | security.authentication.ldap.paging.max-page-size |
artifactory.ldap.apply.headless.validation | security.authentication.ldap.apply-headless-validation |
artifactory.security.ldap.referralStrategy | security.authentication.ldap.referral-strategy |
artifactory.security.ldap.connect.timeoutMillis | security.authentication.ldap.connect-timeout-millis |
artifactory.security.ldap.socket.timeoutMillis | security.authentication.ldap.read-timeout-millis |
artifactory.security.ldap.pool.timeoutMillis | security.authentication.ldap.pool-timeout-millis |
Crowd
From Artifactory version 7.71.2, the following Artifactory system properties for Crowd are replaced with Access YAML configuration properties:
Artifactory System Properties | Access YAML Configuration Properties |
|---|---|
artifactory.security.authentication.crowd.group.startIndex | security.authentication.crowd.group-batch-size |
Frequently Asked Questions
Q: When were LDAP and Crowd authentication properties moved from artifactory.system.properties to Access YAML?
artifactory.system.properties to Access YAML?A: Starting with Artifactory version 7.71.2, custom LDAP and Crowd authentication provider properties were migrated to the Access YAML Configuration. Configure these providers in access.config.latest.yml instead of artifactory.system.properties.
Q: What is the Access YAML equivalent for the artifactory.security.ldap.referralStrategy system property?
artifactory.security.ldap.referralStrategy system property?A: The equivalent property in Access YAML is security.authentication.ldap.referral-strategy, which accepts the values follow, ignore, or throw, with follow as the default.
Q: How do I control the batch size for LDAP group fetching in Access YAML?
A: Set security.authentication.ldap.paging.max-page-size in the Access YAML configuration. This replaces the legacy artifactory.ldap.max.page.size system property and defaults to 1000.
Q: Which Access YAML property replaces the artifactory.security.ldap.connect.timeoutMillis system property?
artifactory.security.ldap.connect.timeoutMillis system property?A: The replacement property is security.authentication.ldap.connect-timeout-millis, which sets the time in milliseconds to wait before giving up when trying to reach the LDAP server. See the Supported Access Configurations reference for the full parameter list.
Updated 4 days ago