[MODULE] Ldap-Login

[pcwacht]

With this module one could sync users between LDAP (Windows AD) and WB.
I wrote it since I need it

This module needs wb282, it won't work with wb281 or less!!


Module is type page and shows loginform, user enters data, data is validated against WB users.
If user is validated:
- user is new for wb, wb user record is created
- use exists, wb user record is updated
Then user data is handed over to WB - authenticate

In backend following must be entered:
LDAP Serveraddress -> could be IP or DNS for one of the DC's, it must ofcourse be found from webserver
LDAP DN -> Distinguised Name, could contain OU or CN
LDAP Userlogon extention -> The @server.domain.com
LDAP Port -> Should be 389 in most cases
USER email addition -> the @server.com part of the email address will be appended to the username entered
Redirect to -> If login succeed, redirect to...

Next to these there is an option to enter 3 groups:
LDAP Usergroup to WB Usergroup -> if user exists in ldapgroup, the wbgroup will be set.

Have fun,
John

[pcwacht]

For those who like pictures

[Ruud]

Don't need it, but it sounds great..

Are local users deleted if they are not validated through LDAP? (Personnel leaving the company)

[pcwacht]

Nope. There is no synchronization between AD and WB, but
you need to be validated through AD before you can get into WB, unless you login through WB self.

If you need it, one can write a droplet wich deletes or set all users inactive who hasn't logged in for a time.
Thus removing the option of logging in through WB.

John

[Ruud]

Don't need it, but it sounds great..

I was just wondering.