«
»

This is just a note for future reference. At some point, I’m going to want to make some webpages visible only to users in our ldap database. This is an example .htaccess file to do this:

Order allow,deny
Allow from 192.168.23
AuthType Basic
AuthName "Site Access"
LDAP_Server ldapserver.uchicago.edu
UID_Attr uid
Base_DN "ou=people,dc=ldapserver,dc=uchicago,dc=edu"
require valid-user
satisfy any

or here’s another example I found

AuthType Basic
AuthName "Restricted Access"
                                                                                     
AuthLDAPURL ldap://ldapserver.uchicago.edu/ou=people,dc=ldapserver,dc=uchicago,dc=edu?uid?one
AuthLDAPCompareDNOnServer on

Order deny,allow
Deny from all
Allow from 127.0.0.1 10.10.10. 111.111.111.111
                                                                            
satisfy any

I’m not yet sure how to make sure the authentication goes over a secure connection, but I don’t think that will be too hard.

This entry was posted by maryh on July 30, 2007 at 11:10 am under Ldap, Software. Both comments and pings are currently closed.