Re: Authentication with Active Directory

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

The stock LDAP module works for me.

<Location /svn>
    DAV svn
    SVNPath /var/svn

    AuthType Basic
    AuthBasicProvider ldap
    AuthName ADS

    AuthLDAPBindDN          "CN=anaccount,OU=Accounts,DC=ads,DC=iu,DC=edu"
    AuthLDAPBindPassword    "apassword"
    AuthLDAPURL             "ldap://anADSDC.ADS.IU.Edu/ou=Accounts,DC=ads,DC=iu,DC=edu?CN?one"; STARTTLS
    AuthzLDAPAuthoritative  Off

    Require ldap-user user1 user2 user3
</Location>

The sAMAccountName attribute might be more universally appropriate
than CN, but CN works here.

The only quirky thing about using ADS this way is that ADS can be
configured to accept a null bind but return no results for any query
until a non-null bind is done (as it's been configured here )-:  The
resulting error message is remarkably unenlightening.

-- 
Mark H. Wood, Lead System Programmer   mwood@xxxxxxxxx
Typically when a software vendor says that a product is "intuitive" he
means the exact opposite.

Attachment: pgp1spusgrUt9.pgp
Description: PGP signature

[Index of Archives]     [Open SSH Users]     [Linux ACPI]     [Linux Kernel]     [Linux Laptop]     [Kernel Newbies]     [Security]     [Netfilter]     [Bugtraq]     [Squid]     [Yosemite News]     [MIPS Linux]     [ARM Linux]     [Linux Security]     [Linux RAID]     [Samba]     [Video 4 Linux]     [Device Mapper]

  Powered by Linux