Authentication

• MD5

• LDAP

• PLAIN

• CRYPT

• CRYPT_FULL_SALT

• BASIC_AUTH

• Some systems (mostly non-unix) do not have crypt support in PHP. MD5 will accomplish almost the same thing. PLAIN is plain text and there is no attempt to secure the password in the database. You will not be able to easily convert between encryption methods so this needs to be chosen at install time. MD5 is the default.

TODO

TODO

The ldap server (eg: ldaps://ldap.example.com).

LDAP port (default 389). If this doesn't work, try 389.

The LDAP Protocol Version, if 0, then the protocol version is not set. Default is 0. For Active Directory use protocol version 3.

Determines whether the LDAP library automatically follows referrals returned by LDAP servers or not. This maps to LDAP_OPT_REFERRALS ldap library option. For Active Directory, this should be set to OFF. Default value is ON.

The root distinguished name. For example, "dc=example, dc=com".

The organization. For example, "organizationname=*Example)". Default value is ''.

The LDAP field for user id. The default value is 'uid'. For Active Directory, set to 'sAMAccountName'.

The LDAP field for real name (i.e. common name). Default value is 'cn'.

Use email address in LDAP rather than the email stored in the database.

Use realname in LDAP rather than the email stored in the database. ON for LDAP, OFF for database. The default value is OFF.

The distinguished of the user account to use for binding to the LDAP server. For example, 'CN=ldap,OU=Administrators,DC=example,DC=com'.

The password for the service account to be used for connecting to the LDAP server.

For development purposes, this is a configuration option that allows replacing the ldap communication with a comma separated text file. The text file has a line per user. Each line includes: user name, user real name, email, password. For production systems this option should be set to ''.