Hi !
I want to thank you for this explanation…
After reading I figure out the trick and put my ADS auth working:
- the domain name (use the fully qualified domain name)
- the ldap extension (you need it installed)
this two settings could lead us to limbo…
eGW installation verification should take care about ldap extension and the
setup process should inform the user to use the fully qualified domain
name… 
anyway, thank you so much!
Flávio Henrique
i did some chages to setup active directory authentication, but when i try
to
login i am getting blank page, setings are , i got these setting from
mailling list
You are in ‘configuration’, section ‘authentication/user accounts’.
-
Select ‘ADS’ for authentication method.
-
Store your user accounts with SQL (in the database)
LDAP means, you’ve set up an LDAP Server for your eGw user accounts,
which is complicated.
Let it be.
-
SQL encryption type: your choice, I’ve kept MD5
-
Secure password check: yes
-
cookie authentication: no
-
login anonymous user automatically: no
since this is no, the next 4 fields kan be left empty
-
empty
-
empty
-
empty
-
empty
-
significant capital letter check: yes (your choice)
-
automatically create account for authenticated users: yes
-
automatically created user accounts expire: (your choice)
-
add automatically created user to group: (your choice / meant is a
group, you’ve created in eGw first)
-
If there is no ACL entry: (your choice/ I deny)
Go to section 'if you’re using ADS authentication.
-
Enter hostname of ADS server/PDC. Or better, internal IP adress.
-
Domain name: (this is an obstacle. Do NORT enter the NETBIOS domain
name! Enter the FQDN [fully qualified domain name]!) my-domain.local or
my-domain.my-company.com instead of MYDOMAIN.
Thats all for ADS specific config.
The user names in login screen should be as in the user name field in
windows login.
user-name@blablabla means another domain instance within eGw. Don’t mess
it with ADS domains.
You should take care of the correct php.ini file.
If you have eGw installed on W2K3 for example, you should uncomment a line
with ‘extension=ldap.dll’.
If your eGw is running on a Linux machine, the entry should be
’extension=ldap.so’.
That’s all folks…:o)
Hope that helps.
Regards from Germany,
but getting blank page ( uanble to know either its login failure or
something else)
–
View this message in context:
http://www.nabble.com/active-Directory-authentication-tf4327888s3741.html#a12325832
Sent from the egroupware-users mailing list archive at Nabble.com.
This SF.net email is sponsored by: Splunk Inc.
Still grepping through log files to find problems? Stop.
Now Search log events and configuration files using AJAX and a browser.
Download your FREE copy of Splunk now >> http://get.splunk.com/
eGroupWare-users mailing list
eGroupWare-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/egroupware-users
–
Flávio Henrique
"Ó Jesus manso e humilde de coração, fazei de nossos corações semelhantes ao
vosso!"
