smaller reset larger        English         

Main Menu

All times are in GMT -8 (DST) :: The time is now 7:09 pm.

Sub Menu

Article Data
Article Ref
6411-QSLZ-3603
Written By
Josh Olson
Date Created
Tue, 31st Jul 2007
 
(Lost?)

   Apache and LDAP Authentication

Question 

How can I set up CommuniGate Pro to support Apache authentication via LDAP?

Answer 

Here is how to setup Apache 2.0 authenticating (mod_auth_ldap) against CGatePro. If you enable "LDAP direct Provisioning", you will not need to copy passwords into the directory, and you can still use the A-crypt 2-way encryption method, keeping passwords more safe. Also, you can have Apache bind as either "mail=username@domain.com" or "uid=username,cn=domain.com". Here are the settings required: [WebAdmin: Users->Directory Integration] LDAP direct Provisioning: Enabled Here is an example .htaccess file you could use to restrict web directories via auth to CommuniGate Pro (note, you might want to create a special BindDN as below "ldap" to just allow these queries, or use postmaster): ### BEGIN .htaccess ### # this section is constant AuthType Basic AuthName "MyRealm" AuthLDAPEnabled on AuthLDAPAuthoritative on AuthLDAPBindDN "mail=ldap@domain.com" AuthLDAPBindPassword "mypassword" AuthLDAPURL: ldap://cgatepro.domain.com/cn=domain.com?uid??(|(employeeType=management)(employeeType=users)) require valid-user ### END .htaccess ### Also, this same configuration can be used to integrate other web applications such as ldap-enabled Wikis (DokuWiki comes to mind) directly with your CommuniGate Pro account.

How Useful Was This Article?      (Rating: 0    Votes: 1)  

Select a Rating

Article Comments 

There are currently no comments.