[Xerte] Re: LDAP configuration for XOT 2.0

robb robb at interlin.nl
Sun Apr 28 23:06:59 BST 2013 

 I received some help from an ldap expert @ zentyal community. I just want to post back the settings that did the trick:

 

when you go to http://<your xerte location>/management.php you find a block ldap settings


The ldap host is

127.0.0.1 (in my case ldap is hosted on the same server as xerte)

 

The ldap port is

390 (Zentyal 3 uses a different port than standard. For Standard openldap this is 389)

 

The ldap password is

fill in your ldap user password. In the case of Zentyal there is a readonly user and a user that has read/write priviledges. Read only is sufficient here.

 

The ldap base is

dc=domain,dc=tld (fill in here the domain you use for your ldap users)

 

The ldap bind is

cn=zentyalro,dc=domain,dc=tld (this is the account that will be used to access ldap)

 

The LDAP main filter is

uid (since Zentyal uses OpenLDAP and not Active Directory, uid is used to define the attributes used)

 

The LDAP second filter is

leave empty

 

After this, I could authenticate using ldap accounts.

 

Hope this is of use.

 

Regards,

robb

 
-----Original message-----
To:Xerte discussion list <xerte at lists.nottingham.ac.uk>; 
From:Tom Reijnders <reijnders at tor.nl>
Sent:Sat 27-04-2013 13:43
Subject:[Xerte] Re: LDAP configuration for XOT 2.0
Attachment:inline.txt
I don't have all your answers for you, because that really depends on your installation:

LDAP host, I suspect that should be localhost, anyway, it is the FQDN of the host.

LDAP base, probably you have to add ou=Users, so ou=Users,dc=domain,dc=tld

LDAP bind is a user, for example cn=root,dc=domain,dc=tld

LDAP main filter is in my case 'sAMAccountName'

and indeed I have 'cn=' for the second filter.

Tom


Op 27-4-2013 13:18, robb schreef:


I have problems getting LDAP authentication configured. I think I have all the necessary info to fill in the configuration, but since I am an absolute newb on LDAP, I just don't know what to fill in where.
I have installed xot on a Ubuntu 12.04 x64 server and using openldap.

In an earlier post to this list I was already pointed to the file in /xertedir/auth_config.php

There I am able to change the way xot authenticates and set it to authenticate through LDAP

in website/management.php I set the following:

LDAP host =
domain.tld

LDAP port =
390 (my server uses a non standard LDAP port since also Samba4 is installed that uses 389 for it's own LDAP port)

LDAP password =
************* (this is the read/write password)

LDAP base =
dc=domain,dc=tld

LDAP bind =
I think this should be something like: ou=Users,dc=domain,dc=tld am I right? Where ou=Users is the location where the LDAP users are stored.

The LDAP main filter = 
sAMAccountName 
I am not sure about this one, because I read all about this in Active Directory situations and since I use OpenLDAP, I don't know if this is correct.

The LDAP 2nd Filter =
? I have no clue what to put here. Just a plain cn= ?
 
I hope someone can give me some pointers on how to connect to my LDAP server for authentication to XOT.
btw, Xot and LDAP are installed on the same server. XOT is installed in an Apache vhost on a subdomain of the server (xerte.domain.tld)
 
thank you for helping out
 
Robb






_______________________________________________ Xerte mailing list Xerte at lists.nottingham.ac.uk http://lists.nottingham.ac.uk/mailman/listinfo/xerte 


-- -- Tom Reijnders TOR Informatica Chopinlaan 27 5242HM Rosmalen Tel: 073 5226191 Fax: 073 5226196 


 
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.nottingham.ac.uk/pipermail/xerte/attachments/20130429/0346f960/attachment.html>

More information about the Xerte mailing list