Preliminaries
When sipXecs is installed, the Openfire IM server gets configured with a default console administrator: admin/admin
When the Openfire IM server is configured to work with LDAP, the default admin/admin user cannot log into the administrative console.
This is because authentication is performed at LDAP level.
If LDAP authentication fails it does not fallback to database authentication. An login error message is displayed to the user instead. LDAP users are not copied in openfire database and LDAP directory is read-only, meaning that Openfire cannot create users in the configured LDAP directory
Given the above details, the only way to be able to connect to Openfire administrative console when LDAP is configured is to mark an existing LDAP user as an authorized admin
Functionality
In sipXecs, the existing user superadmin permission can be reused to offer Openfire Administrative Console administration support also
- Sipxecs marks as default Openfire Administrative Console admins the users: admin and superadmin
- When LDAP is configured, if you create in ldap a user called admin it will automatically be Openfire Administrative Console admin
- When LDAP is not configured superadmin becomes Openfire Administrative Console admin when is set as IM ID. Also the default Openfire administrator: admin/admin is functional
- No matter if LDAP is configured or not, any other user that is made sipxecs admin becomes Openfire Administrative Console admin as well