On Wed, Aug 17, 2016 at 11:52 AM, Dennis Liou <[email protected]> wrote: > [ldap] > host_url = ldap://ldapserver > host = ldap://ldapserver > basedn = dc=domain > bind_dn = cn=dn_user,ou=XX,dc=domain > bind_password = secret > cache_size = 100 > cache_ttl = 900 > enable = true > port = 389 > permattr = tracperm > permfilter = objectclass=* > search_filter = (&(objectClass=user)(sAMAccountName=%s) > store_bind = true > search_scope = subtree > uidattr = uid > user_class = posixAccount > user_name_attr = uid > user_rdn = ou=TAIWAN > anonymous_bind = true > groupmemberisdn = true > > ... > Should I need "bind_user"?
Thanks. According to https://trac-hacks.org/wiki/TracLdapAuthPlugin#Example: * "basedn" or "bind_dn" should be "base_dn" * "bind_user" should be added Also, make sure that your trac.ini has the following: [account-manager] password_store = LDAPStore > And how can I let password store become writing. Description of the plugin page says: It does not support listing users, changing passwords, or anything other than authenticating. The LDAPStore doesn't support `set_password` method to change passwords, but you can ignore the following log. The AccountManager component is actually not disabled. > Trac[web_ui] WARNING: AccountModule is disabled because the password store > does not support writing. -- Jun Omae <[email protected]> (大前 潤) -- You received this message because you are subscribed to the Google Groups "Trac Users" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To post to this group, send email to [email protected]. Visit this group at https://groups.google.com/group/trac-users. For more options, visit https://groups.google.com/d/optout.
