Changes between Version 104 and Version 105 of TracModPython

Timestamp:

Apr 19, 2007, 2:38:04 AM (17 years ago)

Author:

hudsonfas@…

Comment:

Comment on Microsoft Windows 2003 Server Active Directory

TracModPython

@@ -95 +95 @@
   AuthBasicProvider "ldap"
   AuthLDAPURL "ldap://adserver.company.com:3268/DC=ad,DC=company,DC=com?sAMAccountName?sub?(objectClass=user)"
+  AuthLDAPBindDN       ldap-auth-user@company.com
+  AuthLDAPBindPassword "the_password"
   authzldapauthoritative Off
   # require valid-user
@@ -102 +104 @@
 
 Note 1: This is the case where the LDAP search will get around the multiple OUs, conecting to Global Catalog Server portion of AD (Notice the port is 3268, not the normal LDAP 389). The GCS is basically a "flattened" tree which allows searching for a user without knowing to which OU they belong.
-
-Note 2: The directive "require ldap-group ..."  specifies an AD group whose members are allowed access.
+Note 2: Active Directory requires an authenticating user/password to access records (AuthLDAPBindDN and AuthLDAPBindPassword).
+Note 3: The directive "require ldap-group ..."  specifies an AD group whose members are allowed access.