[Xerte] RE: LDAP/AD 2003 with techdis/infolio system

Andy Jackson ajackson at rnibcollege.ac.uk
Thu Nov 11 10:03:27 GMT 2010


I've been reading the Xerte install guide and the LDAP sections are a
little confusing...
LDAP password applies that the LDAP bind must contain a user string
(CN=etc...) , but LDAP bind also sets the search context, so in order to
search the whole of Active Directory, does this user have to exist at
the root of AD, and can the search work with OUs underneath?
LDAP base implies the DN of the domain controller (host), in our system
the DCs are in their own OU , how is this used 'to run an LDAP query'
What is the relationship between the LDAP base running a query and LDAP
bind searching for a valid user? 

Cheers
AJ


-----Original Message-----
From: xerte-bounces at lists.nottingham.ac.uk
[mailto:xerte-bounces at lists.nottingham.ac.uk] On Behalf Of Andy Jackson
Sent: 11 November 2010 08:47
To: Xerte discussion list
Subject: RE: [Xerte] RE: LDAP/AD 2003 with techdis/infolio system

Sorry Patrick, those settings still don't work I've tried with our other
domain controller (both MS server 2003) and using IP addresses

AJ

-----Original Message-----
From: xerte-bounces at lists.nottingham.ac.uk
[mailto:xerte-bounces at lists.nottingham.ac.uk] On Behalf Of Patrick
Lockley
Sent: 10 November 2010 15:54
To: Xerte discussion list
Subject: RE: [Xerte] RE: LDAP/AD 2003 with techdis/infolio system

Looking at these

Ldap_host : technical.rnibvocoll.ac.uk
Ldap port : 389
Ldap_bind_dn : CN=xerteadmin,CN=Users,DC=rnibvocoll,DC=ac,DC=uk
Ldap_password : ......
Ldap_base_dn: OU=Technical,DC=rnibvocoll,DC=ac,DC=uk

Only enter one base_dn for now

Try this

Let me know

-----Original Message-----
From: xerte-bounces at lists.nottingham.ac.uk
[mailto:xerte-bounces at lists.nottingham.ac.uk] On Behalf Of Andy Jackson
Sent: 10 November 2010 14:27
To: Xerte discussion list
Subject: RE: [Xerte] RE: LDAP/AD 2003 with techdis/infolio system

OK Patrick here are the ones I use:
Moodle settings

LDAP server settings  
Host URL:     ldap://technical.rnibvocoll.ac.uk
Version :   3
LDAP encoding:  utf-8

Bind settings : 
Distinguished Name:   CN=xerteadmin,CN=Users,DC=rnibvocoll,DC=ac,DC=uk
Password :  Password for bind-user.  

User lookup settings  
Contexts   OU=Technical,DC=rnibvocoll,DC=ac,DC=uk;OU=Non
Technical,DC=rnibvocoll,DC=ac,DC=uk
Search subcontexts   Yes 

I did  get authentication to work using the moodle patch mentioned in
the list.. but it's a bit clunky and gives me problems with  Xerte
management.php 

Cheers
AJ

-----Original Message-----
From: xerte-bounces at lists.nottingham.ac.uk
[mailto:xerte-bounces at lists.nottingham.ac.uk] On Behalf Of Patrick
Lockley
Sent: 10 November 2010 13:42
To: Xerte discussion list
Subject: [Xerte] RE: LDAP/AD 2003 with techdis/infolio system

Ldap bind is usually the root of your AD, something like
dc=rnibcollege,dc=ac,dc=uk the password is usually used if you put an
LDAP string into the ldap bind.

If you post up your moodle settings, or send them to me, i can tell you
what to put where.

________________________________________
From: xerte-bounces at lists.nottingham.ac.uk
[xerte-bounces at lists.nottingham.ac.uk] On Behalf Of Andy Jackson
[ajackson at rnibcollege.ac.uk]
Sent: Wednesday, November 10, 2010 9:32 AM
To: xerte at lists.nottingham.ac.uk
Subject: [Xerte] LDAP/AD 2003 with techdis/infolio system

I'm not sure if you will have the answer to this, however.....
We've just received an Ubuntu-based server as part of the In-folio
project, and it has Xerte toolkits installed I'm trying to set up LDAP
authentication.. it seems fairly straight forward using management.php
BTW I've got LDAP/AD working in Moodle and on other Ubuntu servers with
Drupal and Moodle)

However, I can't log into the Xerte system with LDAP/Active directory
accounts Looking at recents posts to the list, I'm still confused about
the LDAP bind option Is this a user that needs basic read access to
Active directory, and should this have the corresponding password set in
'LDAP password' ?
Do I need to set up LDAP in another area of Xerte?

Cheers
Andy Jackson
RNIB College Loughborough
_______________________________________________
Xerte mailing list
Xerte at lists.nottingham.ac.uk
http://lists.nottingham.ac.uk/mailman/listinfo/xerte____________________
___________________________
Xerte mailing list
Xerte at lists.nottingham.ac.uk
http://lists.nottingham.ac.uk/mailman/listinfo/xerte
This message and any attachment are intended solely for the addressee
and may contain confidential information. If you have received this
message in error, please send it back to me, and immediately delete it.
Please do not use, copy or disclose the information contained in this
message or in any attachment.  Any views or opinions expressed by the
author of this email do not necessarily reflect the views of the
University of Nottingham.

This message has been checked for viruses but the contents of an
attachment may still contain software viruses which could damage your
computer system:
you are advised to perform your own checks. Email communications with
the University of Nottingham may be monitored as permitted by UK
legislation.
_______________________________________________
Xerte mailing list
Xerte at lists.nottingham.ac.uk
http://lists.nottingham.ac.uk/mailman/listinfo/xerte
_______________________________________________
Xerte mailing list
Xerte at lists.nottingham.ac.uk
http://lists.nottingham.ac.uk/mailman/listinfo/xerte
_______________________________________________
Xerte mailing list
Xerte at lists.nottingham.ac.uk
http://lists.nottingham.ac.uk/mailman/listinfo/xerte


More information about the Xerte mailing list