Joomla user LDAP authentication 10.8 server group membership

Question

Level 1

0 points

Joomla user LDAP authentication 10.8 server group membership

I have enabled the LDAP plugin in Joomla and have had success authenticating users against our 10.8 server directory. It will authenticate all LDAP users provided they have an email address in the directory. I have multiple groups in our LDAP and it is my hope that I would be able to restrict authentication in Joomla based on group membership (ex. Faculty can authenticate, Students can't). I have tried multiple settings with no luck.

Is there anyone out there with a suggestion on how to configure the Base DN, and Search String with the Joomla LDAP plugin to accomplish this?

Thanks.

iTunes U-OTHER

Posted on Mar 15, 2013 4:25 PM

Reply

Answer 1

Zero Six

Level 1

0 points

May 10, 2013 1:39 PM in response to cj5001

Use jMapMyLDAP plugins and this config works perfectly:

Name	Value
LDAP V3	Yes
Host	[DNS/IP Address to LDAP Server]
Port	389
Connect User	Leave blank unless anonymous binding is switched off
Connect Password	Leave blank unless anonymous binding is switched off
Use Search	Yes
Base DN	[Base of your directory such as dc=company,dc=com]
User DN / Filter	(uid=[username])
Map User ID	uid
Map Full Name	cn
Map Email	mail

The following table shows an example group mapping configuration:

Name	Value
Use Group Mapping	Yes
Allow Additions	Yes
Allow Removals	Yes & Default Managed
Mapping List	[The groups to map such as cn=teachers:4]
Lookup Type	Reverse
Lookup Attribute	memberUid
Lookup Member	uid
Use Recursion	No

Reply

Answer 2

Zero Six

Level 1

0 points

May 10, 2013 1:40 PM in response to Zero Six

the idea would be to have the group that they authenticate against not have any access

Reply