User Tools
niota-docs:niota_system_config_ldap
Differences
This shows you the differences between two versions of the page.
| Both sides previous revision Previous revision Next revision | Previous revision | ||
|
niota-docs:niota_system_config_ldap [2021/11/21 19:13] admin |
niota-docs:niota_system_config_ldap [2025/07/17 14:11] (current) |
||
|---|---|---|---|
| Line 53: | Line 53: | ||
| ... | ... | ||
| -----END CERTIFICATE----- | -----END CERTIFICATE----- | ||
| + | </code> | ||
| + | |||
| + | **''TLS_CACERTDIR''** | ||
| + | Certificate folder path. The certificate must not be placed in the same folder as the ''ldap.conf'' file but it is also not a problem to place this into that folder ''c:\openldap\sysconf''. | ||
| + | |||
| + | Example 1 | ||
| + | <code> | ||
| + | TLS_ CACERTDIR c:\path\to\certification_dir\ | ||
| </code> | </code> | ||
| + | Example 2 | ||
| + | <code> | ||
| + | TLS_ CACERTDIR c:\openldap\sysconf\ | ||
| + | </code> | ||
| + | |||
| + | **Note** | ||
| + | ---- | ||
| + | There are openssl related php settings in the configuration file ''c:\Program Files\php-7.3.8_x64\php.ini'' (;openssl.cafile and ;openssl.capath) but those do not have effect on settings set in file ''ldap.conf'' or on LDAPS connection. So the proper settings must be set in file ''c:\openldap\sysconf\ldap.conf'' | ||
| + | ---- | ||
| + | |||
| + | For more information visit the openLDAP documentation at: https://www.openldap.org/doc/admin21/tls.html | ||
| + | |||
| + | |||
| + | * Restart Apache | ||
| + | |||
| + | remarks | ||
| + | ---- | ||
| + | On niota administrative pages at menu item ''User management'' the ''Userid LDAP'' setting is not in use anymore. The user input of the login screen will be used for authentication against the LDAP(S) server. | ||
| + | |||
| + | On niota administrative pages at menu item “User management” select the user who will get right to LDAP(S) authentication. Then mark checkbox: “LDAP active” and save the settings. | ||
| + | |||
| + | Now the edited user can use only his/her LDAP credentials to log in. | ||
| + | ---- | ||
| + | |||
| + | |||
| + | * set LDAP(S) connection in file ''niota/conf/connections.php'' | ||
| + | |||
| + | Sample configuration file: “niota\app\conf\connections_sample.php”. | ||
| + | |||
| + | <code> | ||
| + | const ET_LDAP_AUTHENTICATION = array( | ||
| + | //ldaps | ||
| + | PHPGRID_DB_HOSTNAME =>"ldaps://my.hostname.com:636", | ||
| + | PHPGRID_DB_DN =>"dc=my,dc=hostname,dc=com", | ||
| + | |||
| + | //simple ldap | ||
| + | //PHPGRID_DB_HOSTNAME =>"ldap://my.hostname.com:389", | ||
| + | //PHPGRID_DB_DN =>"dc=my,dc=hostname,dc=com", | ||
| + | ); | ||
| + | </code> | ||
niota-docs/niota_system_config_ldap.1637518402.txt.gz · Last modified: 2025/07/17 14:11 (external edit)