[Novalug] Apache AD/LDAP authn w/ bind name/password
tux at belanger.fr
Mon Jan 9 21:56:55 EST 2012
> i need to be able to make Apache authenticate against AD/LDAP using a
> bind name and password.
> has anyone done this already and can give me an example of how they
> did it?
I have done this for a group authentication, with an LDAP server,
you will just need to modify the following directives to match
with your environment:
Deny from All
# access allowed without auth form local networks
Allow from 192.168.1.0/24
Allow from 10.1.2.0/24
AuthName "Please enter an ID and a password"
# LDAP account use for the LDAP request
# LDAP request for an UID
# Condition (UID must be a member of the clearance-group)
Require ldap-group cn=clearance-group,ou=groups,ou=acme,dc=example,dc=net
Don't forget to allow full access (without authorization) for error pages,
maybe some images, CSS, etc.
More information about the Novalug