[pmwiki-users] ldap authentication & active directory
Michael Brenner
mik.admin at nurfuerspam.de
Wed Aug 23 01:59:42 CDT 2006
Hi Gregory,
Password required? Difficult thing to keep passwort secret and well protected.
If you are a bit familiar to PHP look at this page and figure out.
http://de2.php.net/manual/de/function.ldap-bind.php
I'm not much familiar with LDAP too, but what I see at first look is that you
don't hab something like >?uid<. This specifies what entry is looked up for
name in authform. Also uid should be default
Greetings
----
from http://www.pmwiki.org/wiki/Cookbook/AuthUser
$AuthUser['ldap'] = 'ldap://ldap.example.com/ou=People,o=example?uid';
http://httpd.apache.org/docs/2.2/mod/mod_authnz_ldap.html#examples
The next example is similar to the previous one, but it uses the common name
instead of the UID. Note that this could be problematical if multiple people
in the directory share the same cn, because a search on cn must return
exactly one entry. That's why this approach is not recommended: it's a better
idea to choose an attribute that is guaranteed unique in your directory, such
as uid.
AuthLDAPURL ldap://ldap.airius.com/ou=People, o=Airius?cn
require valid-user
Am Mittwoch, 23. August 2006 00:00 schrieb Gregory Martyn:
> Hi all,
>
> I'm new to ldap, so please forgive me.
>
>
>
> We're running active directory here at work. I can browse the directory
> using ldapadmin by pointing it to our active directory server. I tell it
> that Base is "CN=Users,DC=judicialtitle,DC=com", put in my email address
> and password and get a list of all the users. An anonymous bind doesn't
> work.
>
>
>
> How do I get pmwiki to use this?
>
>
>
> The information on AuthUser with the ldap:// example is a little bit
> over my head.
>
>
>
> Thanks.
>
>
>
> Gregory Martyn
>
> The Judicial Title Insurance Agency LLC
> 800 Westchester Avenue Ste S340
> Rye Brook, NY 10573
> (914) 381-6700 x420
>
> www.judicialtitle.com
>
>
>
>
>
> All email sent to or from The Judicial Title Insurance Agency LLC corporate
> email system is subject to archival, monitoring and/or review by The
> Judicial Title Insurance Agency LLC personnel. The information contained in
> this electronic transmission is legally privileged and confidential
> information intended only for the use of the individual or entity named
> above. If the reader of this transmission is not the intended recipient, or
> an authorized representative of the recipient, you are hereby notified that
> any dissemination, distribution or copying of this transmission is strictly
> prohibited. If you have received this transmission in error, please notify
> the sender immediately by return email and delete the message and any
> attachments from your system.
More information about the pmwiki-users
mailing list