[Koha-devel] LDAP configuration in Koha3.0 on Linux

Library Guy library.guy.zero at gmail.com
Wed Jul 15 22:45:59 CEST 2009 

Chris, yes in Koha 3.0.1 my test users could authenticate against AD
using <auth_by_bind>, but Koha was not creating or updating their Koha
accounts despite <replicate> and <update> set to 1.  In addition, our
I.T. dept will not provide me an AD Admin account; only an alternate
domain account for doing queries only.  (userpassword is not exposed
for my use) This was my original reason for testing the newest
Auth_with_ldap.pm from the git repository, hoping that <replicate> and
<update> would now work, but now authentication no longer works.

James

2009/7/15 Christopher Curry <ccurry at amphilsoc.org>:
> Oops,
>
> That should have read:
>
> "<user>[Active Directory Distinguished Name of AD admin user]</user>"
>
> Cheers,
>
> Christopher Curry
> Assistant Technical Librarian / Assistant IT Officer
>
> American Philosophical Society
> 105 South Fifth Street
> Philadelphia, PA 19106-3386
> Tel. (215) 599-4299
>
> ccurry at amphilsoc.org
>
> For technical support, please use helpdesk at amphilsoc.org
> Main Library number: (215)440-3400
> APS website: http://www.amphilsoc.org
>
> Christopher Curry wrote:
>
> I haven't been following this thread in detail, but MS Active Directory LDAP
> is working with my instance of Koha 3.0.1, which is running on Debian Lenny.
>
> My configuration is as follows:
>
> <useldapserver>1</useldapserver>
>
>  <!--LDAP SERVER (optional) -->
> <ldapserver id="[server name]"  listenref="[server name]">
>  <hostname>[server IP]</hostname>
>  <base>[Active Directory Distinguished Name of Domain]</base>
>  <user>[Active Directory Distinguished Name of AT admin user]</user>
>  <pass>[PASSWORD]</pass>
>  <replicate>1</replicate>
>  <update>1</update>
>  <auth_by_bind>1</auth_by_bind>
>  <mapping>
>                 <firstname is="givenname"></firstname>
>                 <surname is="sn"></surname>
> 		  <address2 is="physicaldeliveryofficename"></address2>
>                 <userid is="samaccountname"></userid>
>                 <password is="userpassword"></password>
> 		  <email is="mail"></email>
> 		  <phonepro is="telephonenumber"></phonepro>
>  </mapping>
> </ldapserver>
>
> Hope this helps.
>
>
> Cheers,
>
> Christopher Curry
> Assistant Technical Librarian / Assistant IT Officer
>
> American Philosophical Society
> 105 South Fifth Street
> Philadelphia, PA 19106-3386
> Tel. (215) 599-4299
>
> ccurry at amphilsoc.org
>
> ________________________________
> _______________________________________________
> Koha-devel mailing list
> Koha-devel at lists.koha.org
> http://lists.koha.org/mailman/listinfo/koha-devel
>
>
> _______________________________________________
> Koha-devel mailing list
> Koha-devel at lists.koha.org
> http://lists.koha.org/mailman/listinfo/koha-devel
>
>

More information about the Koha-devel mailing list