Bishopsfield Road Fareham Hampshire PO14 1NH Tel: 01329 815200 Fax: 01329 822483 -------------------------------------------------------- The content of this e-mail is the sole responsibility of the sender - Fareham College accepts no responsibility for its accuracy or the views and opinions expressed herein, and also reserves the right to monitor all email sent/received on its business systems. -------------------------------------------------------- Hi Andi, I cannot turn off the auto-generated "signature" as it gets tags on by the college. I do appologise for forgetting to turn off the HTML. However there is no need for swear words (even though abbreviated). Anyway here is my query if you're still interested: I would like to set our DokuWiki to authenticate against our LDAP ComputerServices group and give all the ComputerSerivces Users the read/edit/upload permission and not anyone else. I have the following settings in the \conf\local.php: $conf['title'] = 'IT Services Wiki'; $conf['useacl'] = 1; $conf['superuser'] = '@admin, root'; $conf['authtype'] = 'ldap'; $conf['disableactions'] = 'register'; $conf['auth']['ldap']['server'] = 'gxxx'; $conf['auth']['ldap']['binddn'] = '%{user}@xxx'; $conf['auth']['ldap']['usertree'] = 'uid=%{user},OU=ComputerServices,DC=xxxx,DC=xx'; $conf['auth']['ldap']['userfilter'] = '(userPrincipalName=%{user}@xxxx.xx)'; $conf['auth']['ldap']['grouptree'] = 'OU=ComputerServices,DC=xxxx,DC=xx'; $conf['auth']['ldap']['groupfilter'] = '(&(cn=USR_*)(Member=%{dn})(ObjectCategory=group))'; After having these settings, no one except superuser i.e. root can read the pages. Also the User Manager plug-in has disappeared too. My current work-around is to manually put everyone as a superuser, then they could read it. Surely this isn't a proper way? Is there a way that I could authenticate against LDAP and only give read/edit/upload permission to users under Computer Services please? Thanks in advance Best regards, Constance Kan X183 -----Original Message----- From: dokuwiki-bounce@xxxxxxxxxxxxx [mailto:dokuwiki-bounce@xxxxxxxxxxxxx] On Behalf Of Andreas Gohr Sent: 29 March 2010 12:56 To: dokuwiki@xxxxxxxxxxxxx Subject: [dokuwiki] Re: LDAP authentication "disabled" User Manager plug-in? Normal users has no read permission either! ------------------------------------------------------------------------ -------- This email, which has been received from an external source, has been scanned by the College's anti-virus software. However, please remember that new viruses are released every day and therefore, continued vigilance is required. Never open an email received from a non-trusted source and do be wary of attachments that could harbour potentially harmful viruses, particularly .exe, .zip, .vbs, .cmd, & .bat. ------------------------------------------------------------------------ -------- On Mon, Mar 29, 2010 at 1:45 PM, Constance.Kan <constance.kan@xxxxxxxxxxxxx> wrote: > > Bishopsfield Road > Fareham > Hampshire > PO14 1NH > Tel: 01329 815200 > Fax: 01329 822483 > > ________________________________ > The content of this e-mail is the sole responsibility of the sender - Fareham College accepts no responsibility for its accuracy or the views and opinions expressed herein, and also reserves the right to monitor all email sent/received on its business systems. WTF? Are you really starting a mail with your signature? O_o Read the mailinglist rules and adhere to them or you will be banned. Andi -- splitbrain.org -- DokuWiki mailing list - more info at http://www.dokuwiki.org/mailinglist Email has been scanned for viruses by Altman Technologies' email management service - www.altman.co.uk/emailsystems -- DokuWiki mailing list - more info at http://www.dokuwiki.org/mailinglist