LDAP Apache: Difference between revisions

No edit summary
Line 13: Line 13:


==Other Domains==
==Other Domains==
If you want that your customers authenticate with their email address, you just have to use the mail attribute.


I am not sure at this stage if you can allow users from multiple domains. Ideally the login would be the same form as Zimbra login - ie: "user@domain"
Example:
<Location "/service">
AuthLDAPEnabled on
AuthType Basic
AuthName "Service"
AuthLDAPURL ldap://127.0.0.1/?mail
require valid-user
</Location>
 
You can limit the access to certain users by adding
require user user@example.com


==Performance==
==Performance==

Revision as of 12:38, 26 April 2007

LDAP Apache

Very simple, install mod_auth_ldap, and then install a .htaccess file that looks like this:

   AuthType Basic
   AuthName DDInternal
   AuthLDAPURL ldap://yourzimbraserver/dc=zimbra,dc=yourdomain,dc=com,dc=au
   require valid-user

The first part "yourzimbraserver" is the address of your Zimbra server running LDAP.

The second part "dc=zimbra,dc=yourdomain,dc=com,dc=au" is the domain you would like to authenticate against.

Other Domains

If you want that your customers authenticate with their email address, you just have to use the mail attribute.

Example:

<Location "/service">
AuthLDAPEnabled on
AuthType Basic
AuthName "Service"
AuthLDAPURL ldap://127.0.0.1/?mail
require valid-user
</Location>

You can limit the access to certain users by adding

require user user@example.com

Performance

You may consider installing mod_ldap to cache your LDAP connections.

Single Login

You can then use [[1]Preauth] to do single sign on (sort of).


References

[[2]Apache mod_auth_ldap]

Jump to: navigation, search