[racktables-users] Re: setting up LDAP authentication
- From: Johann Spies <jspies@xxxxxxxxx>
- To: racktables-users@xxxxxxxxxxxxx
- Date: Thu, 15 Jan 2009 08:36:50 +0200
Hallo Denis,
On Wed, Jan 14, 2009 at 05:44:13PM +0300, Denis Ovsienko wrote:
> > // This is only necessary for 'ldap' USER_AUTH_SRC
> > $ldap_server = 'stbldap01.sun.ac.z';
>
> There's a missing "a" in the hostname.
Thanks. I have already corrected that.
>
> > $ldap_domain = 'ou=users,O=SU';
>
> There are two ways to use LDAP. The first one is to set $ldap_domain,
> it works for Active Directory. Other LDAP implementations may assume
> mapping the presented username into internal ID. This is done with
> two (undocumented) options. Could you try the following?
>
> $ldap_server = 'stbldap01.sun.ac.za';
> $ldap_search_dn = 'ou=users,O=SU';
> $ldap_search_attr = 'uid';
>
Thanks! That did the job!
> > 3. Is LDAPS available? How?
>
> It may work, I presume, but nobody has looked into that yet. Do you have
> a patch?
Unfortunately not. I had very little exposure to LDAP. I recently set
up MediaWiki and saw that it had the following options in the config:
//The type of encryption you would like to use when connecting to the
LDAP server.
//Available options are "tls", "ssl", and "clear"
$wgLDAPEncryptionType = array(
"LDAP1"=>"ssl",
"LDAP2"=>"ssl"
);
Regards
Johann
--
Johann Spies Telefoon: 021-808 4036
Informasietegnologie, Universiteit van Stellenbosch
"For I know that my redeemer liveth, and that he shall
stand at the latter day upon the earth"
Job 19:25
Other related posts: