-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Hi Mourik Jan,
On 19.07.2013 12:18, mourik jan c heupink wrote:
> -- first: First enhancement request: would it be possible to allow
> specific ldap accounts and/or groups access to the 'lam
> configuration'..? That way the specific lam master password would
> only be required when regular ldap access is down..? (as an
> 'rescue/emergency' logon option)
this is a problem because the configuration specifies the LDAP server.
So it is not possible to use it as authentication method.
LAM may also manage multiple different LDAP servers.
> -- second: So, second request: would it be possible to authenticate
> first, immediately after clicking 'lam configuration' from the main
> menu, and only THEN see the three menu options, and be able to
> click them without logging on again.
good point, I will think about saving the authentication after the
first login. The server profiles have independent passwords but a
similar mechanism could be used.
> -- third: Combination of the two above: when a lam ('valid user')
> logs on, and this person is also listed as a 'master configuration
> user', create an extra top menu called 'lam master configuration'.
> This way, everything you are allowed to do in lam would be
> available under a single logon.
This will be hard to implement. Are you changing the configuration
very often? If yes, what kind of data do you change?
The server profiles should be very static. If there are lots of
changes required then maybe something should be changed to require
less changes.
> -- fourth: (and last...) Is it possible to run the 'self service'
> on a different port..? That way only that specific port would have
> be opened from outside, and the rest could be safe behind our
> firewall.
This is not directly a LAM issue but you can try an Apache proxy for
this. The proxy can be located in your DMZ and provide the required
pages to the public. You will need to proxy the following paths:
tmp
sess
templates/lib
templates/selfService
style
graphics
This way users cannot access the admin pages.
- --
Best regards
Roland
LDAP Account Manager
http://www.ldap-account-manager.org/
Want more? Get LDAP Account Manager Pro!
https://www.ldap-account-manager.org/lamcms/lamPro
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (GNU/Linux)
Comment: Using GnuPG with Icedove - http://www.enigmail.net/
iEYEARECAAYFAlHqoiIACgkQq/ywNCsrGZ5xOACfUu5aIRZH2LJ/lz5WR7j7dcnO
wmcAnRf1hZgzqMb6hrWp2uU/mSxfshe8
=hsAi
-----END PGP SIGNATURE-----
------------------------------------------------------------------------------
See everything from the browser to the database with AppDynamics
Get end-to-end visibility with application monitoring from AppDynamics
Isolate bottlenecks and diagnose root cause in seconds.
Start your free trial of AppDynamics Pro today!
http://pubads.g.doubleclick.net/gampad/clk?id=48808831&iu=/4140/ostg.clktrk
_______________________________________________
Lam-public mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/lam-public
