[rt-users] Active Directory/LDAP Auth

Kogami, Bruce bkogami at randmcnally.com
Tue May 11 11:23:00 EDT 2004


Stevo,

Here's a sample of our httpd.conf file.
We have Windows 2003 AD and I elected to create a ldap user to authenticate to the DC.

Ldap_auth version: 1.6.0
Apache version: 1.3.29 

Good luck,
Bruce

<VirtualHost 172.100.100.100:80>
    DocumentRoot /opt/rt3/share/html
    ServerName rtserver.subdomain.mydomain.com
    AddDefaultCharset UTF-8

    PerlModule Apache::DBI
    PerlRequire /opt/rt3/bin/webmux.pl
    ServerAdmin administrator at mydomain.com

    <Location />
       SetHandler perl-script
       PerlHandler RT::Mason
         Options Indexes FollowSymLinks
         AllowOverride None
         order allow,deny
         allow from all
         AuthName "Request Tracker"
         AuthType Basic
         AuthLDAPUrl ldap://dcserver.subdomin.mydomain.com:389/ou=our_ou,dc=subdomain,dc=mydomain,dc=com?sAMAccountName?sub?(objectclass=*)
         #AuthLDAPURL untName
         # need this account and setting because Active Directory
         # does not allow anonymous binding by default
         AuthLDAPBindDN "someldapuser at subdomain.mydomain.com"
         AuthLDAPBindPassword ldapuserpassword
         require valid-user
 
    </Location>
</VirtualHost>

> -----Original Message-----
> From: Stevo [mailto:checkpoint at ozbergs.com]
> Sent: Tuesday, May 11, 2004 7:16 AM
> To: Marco Marongiu; Steven Coutts
> Cc: rt-users at lists.bestpractical.com
> Subject: Re: [rt-users] Active Directory/LDAP Auth
> 
> I've been trying to get this setup on my RT install and haven't had any
> luck.  What LDAP module are you guys using and with that version of
> Apache??
> 
> Also, if anyone who has this working could post the relevant sections of
> your httpd.conf file that would be awesome!!!
> 
> Thanks
> 
> Stevo
> 
> ----- Original Message -----
> From: "Marco Marongiu" <bronto at tiscali.com>
> To: "Steven Coutts" <scoutts at bcs.org.uk>
> Cc: <rt-users at lists.bestpractical.com>
> Sent: Tuesday, May 11, 2004 6:18 AM
> Subject: Re: [rt-users] Active Directory/LDAP Auth
> 
> 
> >
> >
> > Steven Coutts wrote:
> > > Have searched and searched on google, can anyone give me a hint?
> >
> > I had the same problem. Besides restarting apache from the ground up
> > (i.e.: stop, then start; not restart), close all your browser windows
> > and restart it fresh.
> >
> > Let me know if it works.
> >
> > Cheers
> > --bronto
> >
> > --
> > Marco Marongiu - Int. IT Services      _|_  []              _   []
> > Email: mmarongiu at tiscali.com            |   _   __  __  __   |  _
> > Phone: +39 070 460 1684                 |    |  \  /    __|  |   |   _
> > Fax:   +39 070 460 9684                 |_| _|_ _\ \__ [__| _|_ _|_ [_]
> > _______________________________________________
> > http://lists.bestpractical.com/cgi-bin/mailman/listinfo/rt-users
> >
> > RT Developer and Administrator training is coming to LA, DC and
> Frankfurt
> this spring and summer.
> > http://bestpractical.com/services/training.html
> >
> > Sign up early, as class space is limited.
> 
> _______________________________________________
> http://lists.bestpractical.com/cgi-bin/mailman/listinfo/rt-users
> 
> RT Developer and Administrator training is coming to LA, DC and Frankfurt
> this spring and summer.
> http://bestpractical.com/services/training.html
> 
> Sign up early, as class space is limited.


***************************************************************
This E-mail is confidential.  It should not be read, copied, disclosed or used by any person other than the intended recipient.  Unauthorized use, disclosure or copying by whatever medium is strictly prohibited and may be unlawful.  If you have received this E-mail in error, please contact the sender immediately and delete the E-mail from your system.
***************************************************************



More information about the rt-users mailing list