Jump to content

mod_auth_ldap

From RaySoft

Allows an LDAP directory to be used to store the database for HTTP Basic authentication.[1]

Documentation

Examples

Authorization for the directory /munin
LDAPTrustedMode SSL 
LDAPTrustedGlobalCert CA_BASE64 /etc/cert/myca.crt

<Location "/munin">
   Order Deny,Allow
   Deny from all 
   Allow from 127.0.0.1 10.0.0.0/16

   SSLRequireSSL

   AuthType Basic
   AuthName "Munin"

   AuthBasicProvider ldap
   AuthzLDAPAuthoritative off 

   AuthLDAPURL ldaps://ldap.raysoft.loc/dc=raysoft,dc=loc?uid

   AuthLDAPGroupAttribute memberUid
   AuthLDAPGroupAttributeIsDN off 

   Require ldap-group cn=monitoring,ou=group,dc=raysoft,dc=loc
</Location>

References

  1. https://httpd.apache.org/docs/2.4/mod/mod_authnz_ldap.html
Retrieved from "https://www.raysoft.ch/w/index.php?title=mod_auth_ldap&oldid=42708"