Mercurial > kallithea
comparison docs/setup.rst @ 770:5f82a00b92b1 beta
docs update
author | Marcin Kuzminski <marcin@python-works.com> |
---|---|
date | Fri, 26 Nov 2010 10:00:17 +0100 |
parents | 3389f272ece1 |
children | aaf2fc59a39a |
comparison
equal
deleted
inserted
replaced
769:4bdcc08b04c4 | 770:5f82a00b92b1 |
---|---|
80 | 80 |
81 | 81 |
82 Setting up LDAP support | 82 Setting up LDAP support |
83 ----------------------- | 83 ----------------------- |
84 | 84 |
85 | |
86 RhodeCode starting from version 1.1 supports ldap authentication. In order | 85 RhodeCode starting from version 1.1 supports ldap authentication. In order |
87 to use ldap, You have to install python-ldap package. This package is available | 86 to use ldap, You have to install python-ldap package. This package is available |
88 via pypi, so You can install it by running | 87 via pypi, so You can install it by running |
89 | 88 |
90 :: | 89 :: |
93 | 92 |
94 :: | 93 :: |
95 | 94 |
96 pip install python-ldap | 95 pip install python-ldap |
97 | 96 |
98 | 97 .. note:: |
99 python-ldap requires some certain libs on Your system, so before installing it | 98 python-ldap requires some certain libs on Your system, so before installing |
100 check that You have at least `openldap`, and `sasl` libraries. | 99 it check that You have at least `openldap`, and `sasl` libraries. |
101 | 100 |
102 ldap settings are located in admin->permissions section, | 101 ldap settings are located in admin->ldap section, |
103 | 102 |
104 Here's a typical ldap setup:: | 103 Here's a typical ldap setup:: |
105 | 104 |
106 Enable ldap = checked #controlls if ldap access is enabled | 105 Enable ldap = checked #controls if ldap access is enabled |
107 Host = host.domain.org #acctuall ldap server to connect | 106 Host = host.domain.org #actual ldap server to connect |
108 Port = 389 or 689 for ldaps #ldap server ports | 107 Port = 389 or 689 for ldaps #ldap server ports |
109 Enable LDAPS = unchecked #enable disable ldaps | 108 Enable LDAPS = unchecked #enable disable ldaps |
110 Account = <account> #access for ldap server(if required) | 109 Account = <account> #access for ldap server(if required) |
111 Password = <password> #password for ldap server(if required) | 110 Password = <password> #password for ldap server(if required) |
112 Base DN = CN=users,DC=host,DC=domain,DC=org | 111 Base DN = uid=%(user)s,CN=users,DC=host,DC=domain,DC=org |
113 | 112 |
114 | 113 |
115 `Account` and `Password` are optional, and used for two-phase ldap | 114 `Account` and `Password` are optional, and used for two-phase ldap |
116 authentication so those are credentials to access Your ldap, if it doesn't | 115 authentication so those are credentials to access Your ldap, if it doesn't |
117 support anonymous search/user lookups. | 116 support anonymous search/user lookups. |
118 | 117 |
119 If all data are entered correctly, and `python-ldap` is properly installed | 118 If all data are entered correctly, and `python-ldap` is properly installed |
120 Users should be granted to access RhodeCode wit theire ldap accounts. When | 119 Users should be granted to access RhodeCode wit ldap accounts. When |
121 logging at the first time an special ldap account is created inside RhodeCode, | 120 logging at the first time an special ldap account is created inside RhodeCode, |
122 so You can control over permissions even on ldap users. If such user exists | 121 so You can control over permissions even on ldap users. If such user exists |
123 already in RhodeCode database ldap user with the same username would be not | 122 already in RhodeCode database ldap user with the same username would be not |
124 able to access RhodeCode. | 123 able to access RhodeCode. |
125 | 124 |