[MRBS-general] trying to get LDAP auth to work on MRBS 1.4.10.
Brought to you by:
jberanek
From: Peter S. <sum...@tr...> - 2015-12-04 01:35:11
|
Hello, I have several copies of MRBS running on a Centos 6.4 linux server (x64) and up until now have been using MAPI authentication to get my users authenticated. With a recent move for some users to office365 that has now broken my otherwise fool proof MRBS systems. Our LDAP is Active Directory on Windows Server 2012 R2. I have MRBS 1.4.10 installed, PHP is 5.3.3 and web server is Apache. I have followed the documentation to enable LDAP and when that did not get me anywhere have searched for any number of other posts on the subject and now an completely confused as to what my config should read like. I used YUM to load php-ldap (yum install php-ldap) and see it has put an include file into /etc/php.d so I am assuming there is no need to edit any PHP config files? The essence of my config is as follows ############################################### # Authentication settings - read AUTHENTICATION ############################################### $auth["session"] = "php"; # How to get and keep the user ID. One of $auth["type"] = "ldap"; # How to validate the user/password. One of "none" $auth["realm"] = "mrbs"; # LDAP # $ldap_host = "172.16.1.2"; # $ldap_v3 = true; # $ldap_tls = false; # $ldap_base_dn = "ou=users,ou=locations,dc=trinity,dc=private"; # $ldap_user_attrib = "cn"; $ldap_dn_search_attrib = "SAMAccountName"; # $ldap_dn_search_dn = "cn=mrbs,cn=users,dc=trinity,dc=private"; $ldap_dn_search_password = "not-really-password"; # $ldap_debug = true; # MRBS has been a great system for us and this is the first major hurdle I have not been able to solve. Regards, Peter Sumner Disclaimer: This e-mail and any files transmitted with it are confidential and intended solely for the use of the individual or entity to which they are addressed. If you have received this email in error please notify the sender or system administrator. This email message has been checked for the presence of computer viruses. Trinity College Gawler Inc. reserves the right to filter and delete inappropriate, offensive or unsolicited e-mail. |