[MRBS-general] Error in MRBS Documentation
Brought to you by:
jberanek
From: Marc C. <mc...@ho...> - 2008-10-29 13:55:13
|
Found a few errors (well, some misleading info) in the MRBS documentation... http://mrbs.sourceforge.net/AUTHENTICATION.html +------+------------------------+-------------------+------------------- -----+ |ldap |Users validated using | | | | |LDAP directory services.| | | | | | - For corporate | - Does not work on the| | | | intranets using | Internet? | | | | LDAP directory | | | | | services. | | | | | | | +------+------------------------+-------------------+------------------- -----+ LDAP DOES work over the internet... snot just for intranets. Am using it quite happily on our install, and it works internally, externally etc. PHP needs to be compiled using -with-ldap thats the only bit of pre-emptive-config needed to get it up n running. Static routes need setting between AD Servers and the webserver to force comms to go internally And, further down same page... Multiple base distinguished names with the same user attribute for each base dn: # 'auth_ldap' configuration settings # Where is the LDAP server $ldap_host = "localhost"; # LDAP base distinguish names $ldap_base_dn[] = "ou=People, o=myCompany, c=US"; $ldap_base_dn[] = "ou=Administrators, o=myCompany, c=US"; # $ldap_user_attrib = "uid"; Could do with a bit stating that fallback can be used when referring to LDAP server that ISN'T local host... Eg: # Where is the LDAP server $ldap_host = "10.126.96.33 10.126.96.34 10.126.96.38"; A space-separated list of IPs or fqdns if the first is unreachable / fails, itll try the next, and the next and so on useful in a Forest with multiple Domain Controllers such as most RM-CC3 networks Marc A Coyles - Horbury School ICT Support Team Mbl: 07850 518106 Land: 01924 282740 ext 730 Helpdesk: 01924 282740 ext 2000 |