Weblog entry #1 for incorrect
See all weblog entries made by incorrect.
#1
apache ldap integration with active directory
Posted by incorrect on Wed 31 May 2006 at 13:36
Debian Sarge
Apache 2.0.54 sarge standard build
mods enabled auth_ldap
Windows Server 2003
Active Directory
Apache Config:
AuthLDAPAuthoritative on
AuthLDAPEnabled on
AuthLDAPRemoteUserIsDN on
AuthType Basic
AuthName "my message"
AuthLDAPBindDN "UserName@FQDN" # ie me@you.com
AuthLDAPBindPassword
AuthLDAPURL "ldap://x.x.x.x:3268/dc=you,dc=com?sAMAccountName?sub?(objectClass=*)";
require valid-user
Things to note over other examples that have been given on the net.
ldap port number, on active directory 389 is not a true ldap server, so im told!
additionally there is no cn=User, if this is included like other examples you only get users from the builtin group.
This might not be the way most people want it.
Apache 2.0.54 sarge standard build
mods enabled auth_ldap
Windows Server 2003
Active Directory
Apache Config:
AuthLDAPAuthoritative on
AuthLDAPEnabled on
AuthLDAPRemoteUserIsDN on
AuthType Basic
AuthName "my message"
AuthLDAPBindDN "UserName@FQDN" # ie me@you.com
AuthLDAPBindPassword
AuthLDAPURL "ldap://x.x.x.x:3268/dc=you,dc=com?sAMAccountName?sub?(objectClass=*)";
require valid-user
Things to note over other examples that have been given on the net.
ldap port number, on active directory 389 is not a true ldap server, so im told!
additionally there is no cn=User, if this is included like other examples you only get users from the builtin group.
This might not be the way most people want it.