Difference between revisions of "Cool Solution - LDAP search user / simple authentication account"

From Univention Wiki

Jump to: navigation, search
Line 2: Line 2:
 
{{Review-Status}}  
 
{{Review-Status}}  
  
To set up an LDAP authentication use the following details to provide your module:
+
For security reasons we recommend to create a '''simple authentication user''', which can only read LDAP entries.
  
{| class=wikitable
+
First things first you go to the UMC and open the Users module and a new user. Klick on '''Advanced''' in the new Window.
! Option                                                      || Value
+
 
|-
+
Fill out all neccessary text fields (lastname, username and a safety password) and go to the "'''Option'''" tab. Untag all checkboxes except "'''simple authentication'''".
| Name of LDAP Configuration                                  || Use whatever name you want but keep in mind, that is is going to be displayed to anyone on the login page!
 
|-
 
| LDAP Server URL                                            || ldap://localhost:7389
 
|-
 
| LDAP protokoll version                                      || 3
 
|-
 
| BaseDN                                                      || <Your LDAP's Base DN>
 
|-
 
| User DN                                                    || uid=Administrator,cn=users,<BASE DN>
 
|-
 
| Password                                                    || <Password of the "Administrator" user>
 
|-
 
| Attribute for Login name                                    || uid
 
|-
 
| Attribute for group                                        || cn
 
|-
 
|Firstname                                                    || givenName
 
|-
 
|Lastname                                                    || sn
 
|-
 
| Email                                                      || mailPrimaryAddress
 
|-
 
|}
 
  
Execute the following command if you do not know your Base DN.
 
<pre>
 
ucr get ldap/base
 
</pre>
 
 
[[Category:EN]][[Category:Howtos]]
 
[[Category:EN]][[Category:Howtos]]

Revision as of 13:33, 4 March 2016

Produktlogo UCS Version 4.1

Note: Cool Solutions are articles documenting additional functionality based on Univention products. Not all of the shown steps in the article are covered by Univention Support. For questions about your support coverage contact your contact person at Univention before you want to implement one of the shown steps.

Also regard the legal notes at Terms of Service.
Note: This article is not yet reviewed.


For security reasons we recommend to create a simple authentication user, which can only read LDAP entries.

First things first you go to the UMC and open the Users module and a new user. Klick on Advanced in the new Window.

Fill out all neccessary text fields (lastname, username and a safety password) and go to the "Option" tab. Untag all checkboxes except "simple authentication".

Personal tools