On Sun, 2006-11-05 at 11:33 +1100, Justin Freeman wrote: > Can anyone point me to some documentation where you can integrate iFolder and > LDAP, such that users accounts are authenticated and possibly synchronised > (provisioned?) from a LDAP server? >
Currently, doc for this is not available (will be available soon .. ). I've attached a sample configuration, running server from trunk. To setup the server use 'simias-server-setup' script. -----> Example LDAP configuration Starts<---- SIMIAS SERVER SETUP This script configures a server installation of Simias to setup a new Simias system. The script is intended for testing purposes only. ----- SERVER'S DATA PATH ----- Path to the server's data files Server's Data Path? []: /home/johnny/MasterServer-edir-data Setting up store Configuration files...Done ----- SERVER NAME ----- The name of this server Server Name? [Host1]: EDIR-MASTER-T1 ----- PUBLIC URL ----- Public URL of this Simias Server Public URL? [http://164.99.168.107:8086/simias10]: ----- PRIVATE URL ----- Private URL of this Simias Server Private URL? [http://164.99.168.107:8086/simias10]: ----- SLAVE SERVER ----- Install into existing Simias Domain Slave Server? [N]: ----- SYSTEM NAME ----- A name used to identify the Simias system to users. System Name? [iFolder]: EDIR-JONY1 ----- SYSTEM DESCRIPTION ----- A detailed description of the Simias system for users. System Description? [iFolder Enterprise System]: iFolder test system using edir. ----- USE LDAP ----- Use LDAP to provision and authenticate users? Use LDAP? [Y]: ----- LDAP SERVER ----- The host or ip address of an LDAP server. The server will be searched for users to provision into Simias and will be used by Simias for authentication. LDAP Server? [localhost]: 164.99.154.71 ----- LDAP SECURE ----- Require a secure connection between the LDAP server and the Simias server LDAP Secure? [Y]: n ----- LDAP ADMIN DN ----- An existing LDAP user, used by this script only, to connect to the LDAP server and create and/or check required LDAP users for Simias. LDAP Admin DN? [cn=admin,o=novell]: LDAP Admin Password? [novell]: ----- SYSTEM ADMIN ----- The Simias default administrator. If the system is configured to use an external identity source, the distinguished name (dn) should be used. System Admin? [admin]: cn=ifolderadmin,o=novell System Admin Password? [novell]: novell ----- LDAP PROXY DN ----- An LDAP user that will be used to provision the users between Simias and the LDAP server. If this user does not already exist in the LDAP tree it will be created and granted read rights at the root of the tree. The user's dn and password are stored by Simias. LDAP Proxy DN? [cn=SimiasProxy,o=novell]: LDAP Proxy Password? [novell]: ----- LDAP SEARCH CONTEXT ----- A list of LDAP tree contexts (delimited by '#') that will be searched for users to provision into Simias. LDAP Search Context? [o=novell]: ----- NAMING ATTRIBUTE ----- The LDAP attribute you want all users to login using. I.E. 'cn' or 'email'. Naming Attribute? [cn]: ----- CONFIGURE APACHE ----- Configure Simias to run behing Apache Configure Apache? [Y]: n Working... Configuring /home/johnny/MasterServer-edir-data/simias/Simias.config...SetupSimias - Done Setting up permissions...Done Configuring /etc/apache2/conf.d/simias.conf...Skipped (Apache & Mono Only) Installing certificate from ldap://164.99.154.71/...Skipped (Not Required) Connecting to ldap://164.99.154.71/...Done Querying for directory type... eDirectory Creating cn=ifolderadmin,o=novell...Done Creating cn=SimiasProxy,o=novell...Skipped (User Exists) Checking cn=ifolderadmin,o=novell...Done Checking cn=SimiasProxy,o=novell...Done Adding LDAP settings to /home/johnny/MasterServer-edir-data/simias/Simias.config...Done Setting up script files...Done Run /home/johnny/opt/bin/EDIR-MASTER-T1 script to load the server Setting up Log4Net file...Done SUCCESS -----> Example LDAP configuration Ends <---- This will sync the user accounts (identities) from LDAP to the iFolder system. Hope this helped! -- Johnny. _______________________________________________ ifolder-dev mailing list [email protected] http://forge.novell.com/mailman/listinfo/ifolder-dev
