Quote:
Originally Posted by TenTenths
Nobody can clarify the above point for you because you give no useful information. You do not tell us if the authentication is done at the Apache level or at the application level. Check with your vendor.
Using LDAP / AD authentication with Apache is highly possible although I'm assuming that if your vendors application makes use of employee records and you have multiple users then you'll have to at some stage do the actual mapping to prevent users seeing others data.
|
First, thanks for the answer...
I guess somebody who actually uses Apache in AD environment can answer with real life details. As mentioned there are many posts on Internet that mention only utilization of LDAP module configuration for authentication in Apache using AD login. Didn't see any that mention some CSV file containing AD user names. That is why I asked. One thing is clear that the vendor have very limited knowledge on AD and Linux coexistence and offers some primitive ideas (just my thinking).
The CSV should be managed on daily bases (users come and go). So I guess it is not an appropriate solution.
> You do not tell us if the authentication is done at the Apache level or at the application level.
The idea is that any AD user logged in to AD should be able to open home page of the INTRANET site without any further credentials tapping. Then the users will have access only to their permitted areas on website.
As an alternative the vendor mentions local user DB. This just confirms that authentication in Apache should happen in Apache level and not App's level.
CPanel will be used by managers for adding user rights to website resources.
Thanks again.