A standards-based Access Management SDK for LDAPv3 compliant systems.

How do I start using Apache Fortress?

1. ApacheDS & Fortress Quickstart

Build Fortress Core, Web and Rest components from source and configure for usage with Apache Directory Server.

1. OpenLDAP & Fortress Quickstart

Build Fortress Core, Web and Rest components from source and configure for usage with OpenLDAP Directory Server.

3. README for Apache Fortress Core

Contains general instructions to download, install, test, and manage an LDAP server with Fortress Core.


What can I do with Fortress Core APIs?

Perform authentication, authorization, administration, audit and password policies. The most important package is org.apache.directory.fortress.core which contains the public APIs.

Fortress Manager APIs

  1. AccessMgr - This class performs runtime access control operations on objects that are provisioned RBAC entities that reside in LDAP directory.
  2. AdminMgr - This class performs administrative functions to provision Fortress RBAC entities into the LDAP directory.
  3. AuditMgr - This interface prescribes methods used to search OpenLDAP's slapd access log.
  4. DelAccessMgr - This interface prescribes the API for performing runtime delegated access control operations on objects that are provisioned Fortress ARBAC02 entities that reside in LDAP directory.
  5. DelAdminMgr - This class prescribes the ARBAC02 DelegatedAdminMgr interface for performing policy administration of Fortress ARBAC entities that reside in LDAP directory.
  6. DelReviewMgr - This class prescribes the ARBAC02 DelegatedReviewMgr interface for performing policy interrogation of provisioned Fortress ARBAC02 entities that reside in LDAP directory.
  7. PwPolicyMgr - This class adheres to IETF PW policy draft and is used to perform administrative and review functions on the PWPOLICIES and USERS data sets within Fortress.
  8. ReviewMgr - This interface prescribes the administrative review functions on already provisioned Fortress RBAC entities that reside in LDAP directory.
Error Handling
These APIs throw checked exceptions defined in SecurityException

What technologies are used?

This software runs on any platform that supports Java technology and LDAPv3 protocols but is tested with ApacheDS and OpenLDAP.


What are the conditions of use?

This software is released under Apache License, Version 2.0.