[Xerte] Re: Xerte Online Toolkit v1.9 - LDAP settings for a Novell network
David Perry
DPerry at hull-college.ac.uk
Wed Dec 19 16:55:51 GMT 2012
Ron
We were using our moodle ldap settings as a reference and that still didn't help.
When Steve gets in tomorrow, he's going to try a clean install on our moodle server (previously XOT has been on a separate one) which is an approach our line manager likes the sound of.
Dev team - The ldap documentation definitely needs work, ideally some real world examples (with passwords and actual usernames changed obviously).
And searching subcontexts is critical for us (and anywhere that has a large AD/eDirectory tree that has to be organised by department and user type due to complex network security on folders etc).
Dave
David Perry
eLearning Technologist, eLearning Team (L34 - Library)
Hull College Group
Wilberforce Drive, Queen's Gardens, Hull
HU1 3DG
Extension 2230 / Direct Dial 01482 381930
* * * Think about the environment - Do you really need to print this email?>>> "Ron Mitchell" <ronm at mitchellmedia.co.uk> 19/12/2012 16:41 >>>
Dave
to be honest these were just notes I made when installing on a college
server a while back. But a few thoughts/comments...
Yes I think curly brackets could be used previously but I'm not sure if that
has changed now that the settings are stored in a separate ldap table
I don't know what knownname is for either. That column in the database is
set to not allow nulls but I couldn't find where it is used. It didn't exist
in the sitedetails table where ldap details were stored previously.
The ldap code is now inside \library\Xerte\Authentication\Ldap.php so you
might find some pointers there but I would try different settings via
management.php before messing with that.
If you have your moodle working with ldap the settings you use there should
map directly to the xot ldap table. Alternatively you could always use
moodle for authentication? That's detailed in the readme in the root of the
zip.
Perhaps Pat or David from the dev team might comment further.
HTH
Ron
-----Original Message-----
From: xerte-bounces at lists.nottingham.ac.uk
[mailto:xerte-bounces at lists.nottingham.ac.uk] On Behalf Of David Perry
Sent: 19 December 2012 16:15
To: 'Xerte discussion list'
Subject: [Xerte] Re: Xerte Online Toolkit v1.9 - LDAP settings for a Novell
network
Ron
This is based on a clean install (the upgrade didn't completely work).
Your example is interesting, thanks.
We can't bind to a specific ou= because our users are scattered around them
based on which physical site and department they are in, all we can say is
'they are somewhere within o=hull_coll'. My colleague remember having used a
curly brackets notation previously to invoke sub-context searches, but not
sure here if you can just say '{cn=}'.
What does knownname mean? What should be there?
And is your example for hooking up to an AD system? Does it search
sub-contexts? If so we can try and get access to an AD server.
And what's this sAMAccount name for in ldap_filter_attr?
Thanks,
Dave
David Perry
eLearning Technologist, eLearning Team (L34 - Library) Hull College Group
Wilberforce Drive, Queen's Gardens, Hull
HU1 3DG
Extension 2230 / Direct Dial 01482 381930
* * * Think about the environment - Do you really need to print this
email?>>> "Ron Mitchell" <ronm at mitchellmedia.co.uk> 19/12/2012 15:58 >>> Did
you upgrade or create a new install?
If you upgraded run upgrade.php to transfer ldap details from the site
details table to the ldap table.
Then try different details via management.php with that open in one browser
and testing login in a different browser.
Check that the details are being stored in the ldap table.
I don't know the specifics of Netware but the doc attached might help with
the differences from 1.7 to 1.9.
HTH
Ron
-----Original Message-----
From: xerte-bounces at lists.nottingham.ac.uk
[mailto:xerte-bounces at lists.nottingham.ac.uk] On Behalf Of David Perry
Sent: 19 December 2012 15:32
To: xerte at lists.nottingham.ac.uk
Subject: [Xerte] Xerte Online Toolkit v1.9 - LDAP settings for a Novell
network
Hi all
Has anyone got a working set of LDAP settings for a Netware-based network?
We've left the bind password blank as we don't authenticate to our LDAP
servers, but not sure what to set the filter and other bind values for - we
use cn for username, knownAs for the full name, dn for their location within
the tree (e.g. cn=username,ou=admin,ou=site,o=hull-college) and have set the
basedn to be o=hull_coll (the same as we do for moodle).
This is for the latest version. The previous one we were running had the
LDAP code hacked to ignore the database settings for it, but it doesn't look
as straightforward to do this in the latest version.
Thanks,
Dave
David Perry
eLearning Technologist, eLearning Team (L34 - Library) Hull College Group
Wilberforce Drive, Queen's Gardens, Hull
HU1 3DG
Extension 2230 / Direct Dial 01482 381930
* * * Think about the environment - Do you really need to print this email?
**********************************************************************
This message is sent in confidence for the addressee only. It may contain
confidential or sensitive information. The contents are not to be disclosed
to anyone other than the addressee. Unauthorised recipients are requested
to preserve this confidentiality and to advise us of any errors in
transmission. Any views expressed in this message are solely the views of
the individual and do not represent the views of the College. Nothing in
this message should be construed as creating a contract.
Hull College owns the email infrastructure, including the contents.
Hull College is committed to sustainability, please reflect before printing
this email.
**********************************************************************
_______________________________________________
Xerte mailing list
Xerte at lists.nottingham.ac.uk
http://lists.nottingham.ac.uk/mailman/listinfo/xerte
This message and any attachment are intended solely for the addressee and
may contain confidential information. If you have received this message in
error, please send it back to me, and immediately delete it. Please do not
use, copy or disclose the information contained in this message or in any
attachment. Any views or opinions expressed by the author of this email do
not necessarily reflect the views of the University of Nottingham.
This message has been checked for viruses but the contents of an attachment
may still contain software viruses which could damage your computer system:
you are advised to perform your own checks. Email communications with the
University of Nottingham may be monitored as permitted by UK legislation.
This message and any attachment are intended solely for the addressee and
may contain confidential information. If you have received this message in
error, please send it back to me, and immediately delete it. Please do not
use, copy or disclose the information contained in this message or in any
attachment. Any views or opinions expressed by the author of this email do
not necessarily reflect the views of the University of Nottingham.
This message has been checked for viruses but the contents of an attachment
may still contain software viruses which could damage your computer system:
you are advised to perform your own checks. Email communications with the
University of Nottingham may be monitored as permitted by UK legislation.
_______________________________________________
Xerte mailing list
Xerte at lists.nottingham.ac.uk
http://lists.nottingham.ac.uk/mailman/listinfo/xerte
This message and any attachment are intended solely for the addressee and
may contain confidential information. If you have received this message in
error, please send it back to me, and immediately delete it. Please do not
use, copy or disclose the information contained in this message or in any
attachment. Any views or opinions expressed by the author of this email do
not necessarily reflect the views of the University of Nottingham.
This message has been checked for viruses but the contents of an attachment
may still contain software viruses which could damage your computer system:
you are advised to perform your own checks. Email communications with the
University of Nottingham may be monitored as permitted by UK legislation.
_______________________________________________
Xerte mailing list
Xerte at lists.nottingham.ac.uk
http://lists.nottingham.ac.uk/mailman/listinfo/xerte
This message and any attachment are intended solely for the addressee and may contain confidential information. If you have received this message in error, please send it back to me, and immediately delete it. Please do not use, copy or disclose the information contained in this message or in any attachment. Any views or opinions expressed by the author of this email do not necessarily reflect the views of the University of Nottingham.
This message has been checked for viruses but the contents of an attachment
may still contain software viruses which could damage your computer system:
you are advised to perform your own checks. Email communications with the
University of Nottingham may be monitored as permitted by UK legislation.
More information about the Xerte
mailing list