Changes

From SME Server
Jump to navigationJump to search

LDAP Authentication (view source)

Revision as of 15:01, 12 March 2010

1,131 bytes removed ,  15:01, 12 March 2010
sme8 b5
Line 1: Line 1: −
== LDAP for SME Server ==
+
== LDAP for SME Server 8==
{{Level|Advanced}}
      
=== Description ===
 
=== Description ===
Adding LDAP authentication to sme was easy.
+
LDAP authentication  
We just needed to add the attribute userPassword to the users entries in the ldap
  −
server and keep them in sync with the passwords stored in /etc/shadow.
     −
For SME 8 only, and for simplicity LDAP remains readonly  
+
For SME 8 only, LDAP is readonly  
    
This allows  the use of SME user's database in other applications  
 
This allows  the use of SME user's database in other applications  
Line 14: Line 11:  
: on the local network, eg. another server in the local network which runs an ERP, but uses SME server user/group database
 
: on the local network, eg. another server in the local network which runs an ERP, but uses SME server user/group database
 
: or even a remote host, eg. a GLPI instance used to manage requests from several clients using SME server.
 
: or even a remote host, eg. a GLPI instance used to manage requests from several clients using SME server.
  −
Some applications have the possibility to use imap/pop authentication (egroupware, GLPI, maybe others), but some don't offer this possibility, but can use only LDAP. imap/pop isn't as powerful as LDAP as we can only check user/password, whereas with LDAP, we can check other attributes, groups of the user etc.
      
=== Installation ===
 
=== Installation ===
SME 8 only, e-smith-ldap-5.2.0-5.el5.sme from smetest or smeupdates-testing
+
SME 8 beta 5 onwards
 
  −
This rpm is currently held in the smetest repository, the following commands will install on your smeserver.
  −
 
  −
yum install e-smith-ldap  --enablerepo=smetest --enablerepo=smeupdates-testing --exclude=*+ldap
  −
 
  −
no other package is needed, if it says it does it's an issue with the repos's, download manually and 'yum localinstall'
  −
 
  −
signal-event post-upgrade;  signal-event reboot
      
=== Uninstall ===
 
=== Uninstall ===
Line 36: Line 23:     
View your LDAP Schema, ObjectClasses and Attributes with [[:Phpldapadmin ]]
 
View your LDAP Schema, ObjectClasses and Attributes with [[:Phpldapadmin ]]
, This contrib works on sme8
      
Example setups for different types of clients
 
Example setups for different types of clients
    
==== SugarCRM ====
 
==== SugarCRM ====
 +
 +
Applications should use anonymous bind, there is no need to use the LDAP root password
    
: Enabled LDAP server
 
: Enabled LDAP server
Line 53: Line 41:     
=== Bugs ===
 
=== Bugs ===
Please raise bugs under the SME-Contribs section in [http://bugs.contribs.org/enter_bug.cgi bugzilla]
+
Please raise bugs under the SME Server 8 section
and select the smeserver-? component or use {{BugzillaFileBug|product=SME%20Contribs|component=smeserver-?|title=this link}}.
  −
 
  −
<noinclude>[[Category: Contrib]]</noinclude>
 
Retrieved from "https://wiki.koozali.org/Special:MobileDiff/14367"

Navigation menu