Show More
| @@ -82,7 +82,6 b' the `-f` flag passed to paster command o' | |||||
| 82 | Setting up LDAP support |
|
82 | Setting up LDAP support | |
| 83 | ----------------------- |
|
83 | ----------------------- | |
| 84 |
|
84 | |||
| 85 |
|
||||
| 86 | RhodeCode starting from version 1.1 supports ldap authentication. In order |
|
85 | RhodeCode starting from version 1.1 supports ldap authentication. In order | |
| 87 | to use ldap, You have to install python-ldap package. This package is available |
|
86 | to use ldap, You have to install python-ldap package. This package is available | |
| 88 | via pypi, so You can install it by running |
|
87 | via pypi, so You can install it by running | |
| @@ -95,21 +94,21 b' via pypi, so You can install it by runni' | |||||
| 95 |
|
94 | |||
| 96 | pip install python-ldap |
|
95 | pip install python-ldap | |
| 97 |
|
96 | |||
|
|
97 | .. note:: | |||
|
|
98 | python-ldap requires some certain libs on Your system, so before installing | |||
|
|
99 | it check that You have at least `openldap`, and `sasl` libraries. | |||
| 98 |
|
100 | |||
| 99 | python-ldap requires some certain libs on Your system, so before installing it |
|
101 | ldap settings are located in admin->ldap section, | |
| 100 | check that You have at least `openldap`, and `sasl` libraries. |
|
|||
| 101 |
|
||||
| 102 | ldap settings are located in admin->permissions section, |
|
|||
| 103 |
|
102 | |||
| 104 | Here's a typical ldap setup:: |
|
103 | Here's a typical ldap setup:: | |
| 105 |
|
104 | |||
| 106 |
Enable ldap = checked #control |
|
105 | Enable ldap = checked #controls if ldap access is enabled | |
| 107 |
Host = host.domain.org #ac |
|
106 | Host = host.domain.org #actual ldap server to connect | |
| 108 | Port = 389 or 689 for ldaps #ldap server ports |
|
107 | Port = 389 or 689 for ldaps #ldap server ports | |
| 109 | Enable LDAPS = unchecked #enable disable ldaps |
|
108 | Enable LDAPS = unchecked #enable disable ldaps | |
| 110 | Account = <account> #access for ldap server(if required) |
|
109 | Account = <account> #access for ldap server(if required) | |
| 111 | Password = <password> #password for ldap server(if required) |
|
110 | Password = <password> #password for ldap server(if required) | |
| 112 | Base DN = CN=users,DC=host,DC=domain,DC=org |
|
111 | Base DN = uid=%(user)s,CN=users,DC=host,DC=domain,DC=org | |
| 113 |
|
112 | |||
| 114 |
|
113 | |||
| 115 | `Account` and `Password` are optional, and used for two-phase ldap |
|
114 | `Account` and `Password` are optional, and used for two-phase ldap | |
| @@ -117,7 +116,7 b' authentication so those are credentials ' | |||||
| 117 | support anonymous search/user lookups. |
|
116 | support anonymous search/user lookups. | |
| 118 |
|
117 | |||
| 119 | If all data are entered correctly, and `python-ldap` is properly installed |
|
118 | If all data are entered correctly, and `python-ldap` is properly installed | |
| 120 |
Users should be granted to access RhodeCode wit |
|
119 | Users should be granted to access RhodeCode wit ldap accounts. When | |
| 121 | logging at the first time an special ldap account is created inside RhodeCode, |
|
120 | logging at the first time an special ldap account is created inside RhodeCode, | |
| 122 | so You can control over permissions even on ldap users. If such user exists |
|
121 | so You can control over permissions even on ldap users. If such user exists | |
| 123 | already in RhodeCode database ldap user with the same username would be not |
|
122 | already in RhodeCode database ldap user with the same username would be not | |
General Comments 0
You need to be logged in to leave comments.
Login now