Hi Mourad, A contributor added support for ActiveDirectory with that change: https://softwarefactory-project.io/cgit/software-factory/cauth/commit/?id=fdda8a8954528964d566b3cdb7271a8a1b746ed6 There is a bit of documentation with regards to how it can be integrated.
I am not familiar with LDAP or Active Directory, I would guess extra certificates could be added system-wide, but perhaps the cauth code is missing option to enable user-provided PKI files. Similarly, if the ActiveDirectory integration doesn't work with authenticated query, cauth may also needs an option to provide a custom BIND user, that would be in that file: https://softwarefactory-project.io/cgit/software-factory/cauth/tree/cauth/auth/password.py#n90 Regards, -Tristan On Fri, Jan 24, 2020 at 10:00 Mourad Renai wrote: > Dear Support Team, > > We were now able to create the certificates in a proper way so that SF is now > running with SSL. > > For the user Authentication we would like to use LDAP / ActiveDirectory. > > - How we can configure a LDAPS / Secure connection with Active Directory? > - Due the fact that we are using an internal PKI, where do I need to populate > the Root & Intermediate Certificates? > - Since Active Directory does not allow anonymous LDAP queries, how and where > can I configure a BIND user? > > Thanks in advance for your support. >
signature.asc
Description: PGP signature
_______________________________________________ Softwarefactory-dev mailing list [email protected] https://www.redhat.com/mailman/listinfo/softwarefactory-dev
