Version 0.54.1 - Updated December 19, 2005
 
Navigation Menu



SourceForge Logo

DocMGR LDAP Setup

About DocMGR and LDAP

DocMGR's ldap support is purely experimental. I recommend you setup a separate DocMGR installation before testing this out. Also, run this on a backup ldap server just in case DocMGR decides to wreak havoc on your ldap database. I'm not responsible for any damage that may occur. As I get user feedback, we'll mod this to include more options and hopefully match a more generic ldap setup. If your database is setup as described below, you shouldn't run into any problems.

Requirements

Currently, DocMGR's ldap implementation requires a specific setup. First, your ldap directory must use posixAccounts for the accounts you wish to allow in DocMGR. Second, your passwords must be encrypted with "{CRYPT}". Passwords using a different algorithm or in plaintext will not work. Accounts are stored using "uid=username,dc=domain,dc=com", which goes hand-in-hand with the posixAccount setup. If your ldap directory is not setup this way, ldap will not work.

Setup

In the config/config.inc.php file, add the following lines after the database information:

  • define("USE_LDAP","1");
  • define("LDAP_SERVER","ldap://ldap.somewhere.com";);
  • define("LDAP_PORT","389");
  • define("BIND_STRING","cn=root,dc=somewhere,dc=com");
  • define("LDAP_PASSWORD","secret");
  • define("SEARCH_BASE","dc=somewhere,dc=com");
  • define("LDAP_BASE","dc=somewhere,dc=com");

LDAP_BASE is the root suffix of your directory. SEARCH_BASE is the subtree in which your valid accounts exist.

After pointing DocMGR to ldap, you'll need to setup an account as an administrator. You'll need to find the uidNumber of the account you wish to use as admin. Once you discover the ldap, run the following sql query on your database.

INSERT INTO auth_accountperm (account_id,bitset,enable) VALUES ('<uidNumber>','1','t');

Replace with the uidNumber you found in the previous step.

You should be able to log in by this point. If the login goes okay, give the account management utilities a try. Make sure you can reset your password and still login with a new password.




DISCLAIMER: I cannot be held responsible for any data loss/system corruption that occurs as a result of using this program.

Copyright 2001. This software is distributed under Version 2 of the GNU General Public License. See License for more details