RE: [dl-ticket-service] AD authentification

Wed, 23 Jun 2010 07:55:37 -0700 

Great !!! 
It's working.

This is my file configuration.

Thanks a lot.




Alias /dl "/var/www/html/htdocs/"

<Directory /var/www/html/htdocs>
        <Files admin.php>
                Order deny,allow
                Deny from All
                AuthType Basic
                AuthName "DL Web Site: Login with user id"
                AuthBasicProvider ldap
                AuthzLDAPAuthoritative off
                AuthLDAPURL 
ldap://XXXXXX:XXXX/ou=XXXX,dc=XXXX,dc=XXX?sAMAccountName?sub?(objectClass=*)
                AuthLDAPBindDN "cn=XXXX,ou=XXXXX,dc=XXX,dc=XXX"
                AuthLDAPBindPassword "XXXXX"
                require valid-user
                Satisfy any
        </Files>
</Directory>








 

-----Message d'origine-----
De : Yuri D'Elia [mailto:[email protected]] 
Envoyé : mercredi 23 juin 2010 16:29
À : Download Ticket Service
Cc : MOKRANI Rachid
Objet : Re: [dl-ticket-service] AD authentification

On Wed, 23 Jun 2010 15:09:48 +0200
"MOKRANI Rachid" <[email protected]> wrote:

> Dl is installed on linux Redhat (CentOS) (2.6.18 x86_64) with apache
> 2.2.3 With my apache configuration I can use my ldap authentification
> (running on MS 2003 server)

Thanks, this is vital information I needed to know.

Simply use the suggested configuration:

<Directory /path>
        <Files admin.php>
                Order deny,allow
                Deny from All
                AuthType Basic
                AuthName "DL Web Site: Login with user id"
                AuthBasicProvider ldap
                ... (add here your ldap config)
        </Files>
</Directory>

You can also use

<Location /dl/admin.php> instead of Directory+File, but you need to
ensure that apache's "MultiViews" is Off.

Note that you just need to protect the "admin.php" file, otherwise
people outside your department will not be able to download tickets
(unless this is what you want).

> Now it will be very very useful, if we can use internal AD for user
> access in place of "the Minimal setup"

Your original configuration should also work. Did you try to access the
page? You should be prompted for your AD user/password.

You don't need to complete the minimal user setup with this
configuration.

Let me know.

Thanks
__________________________

Ce message (et toutes ses pièces jointes éventuelles) est confidentiel et 
établi à l'intention exclusive de ses destinataires. Toute utilisation de ce 
message non conforme à sa destination, toute diffusion ou toute publication, 
totale ou partielle, est interdite, sauf autorisation expresse. L'IFP décline 
toute responsabilité au titre de ce message.

This message and any attachments (the message) are confidential and intended 
solely for the addressees. Any unauthorised use or dissemination is prohibited. 
IFP should not be liable for this message.

Visitez notre site Web / Visit our web site : http://www.ifp.fr
__________________________

Reply via email to