What about mod_auth_ldap? You control it at the apache level? On Thu, May 6, 2010 at 9:10 AM, Ernest Shaffer <ernest.shaffer@xxxxxxxxx>wrote: > I'm trying to migrate from local users in RackTables to using Active > Directory to cut down on user management/password. > > I have my secret.php file setup pointing to my windows server and I can > login using my AD username, with this in permissions allow {$username_ernie} > > But is there a similar syntax that will allow me to define access based on > AD groups? > > Something like allow {$group_Domain Admins}? > > Thanks, > Ernie >