{"id":780,"date":"2011-12-05T23:39:08","date_gmt":"2011-12-06T06:39:08","guid":{"rendered":"http:\/\/blog.networkpresence.co\/?p=780"},"modified":"2011-12-05T23:39:08","modified_gmt":"2011-12-06T06:39:08","slug":"configuring-apache-2-2-ldap-auth-to-an-active-directory-server","status":"publish","type":"post","link":"http:\/\/blog.networkpresence.co\/?p=780","title":{"rendered":"Configuring Apache 2.2 LDAP auth to an Active Directory server"},"content":{"rendered":"<p>I greatly appreciated finding <a href=\"http:\/\/acksyn.org\/diary\/?p=227\" target=\"_blank\">this page<\/a> through a few Google searches, on how to configure Apache v2.2 web server to authenticate against an Active Directory server using LDAP.<\/p>\n<p>The steps are also listed here in short-form incase the source site is lost in time.<\/p>\n<p>a) Turn of &#8216;referrals&#8217; in \/etc\/ldap\/ldap.conf with<\/p>\n<p><code>REFERRALS off<\/code><\/p>\n<p>b) Install and enable the Apache &#8216;module&#8217; authnz_ldap using your Operating Systems package tools.<\/p>\n<p>c) The Apache config extract for the auth sections are:<\/p>\n<p><code><Directory \/dir\/path><br \/>\nAuthBasicProvider ldap<br \/>\nAuthType Basic<br \/>\nAuthLDAPURL \"ldap:\/\/your-AD.server.hostname:389\/DC=your-domain,DC=your-dc?sAMAccountName?sub?(objectClass=user)\" NONE<br \/>\nAuthLDAPBindDN \"LDAPROUser@DOMAIN\"<br \/>\nAuthLDAPBindPassword \"foo\"<br \/>\nrequire ldap-attribute objectClass=user<br \/>\n<\/Directory><\/code><\/p>\n<p>Then restart your Apache, it&#8217;s that easy.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>I greatly appreciated finding this page through a few Google searches, on how to configure Apache v2.2 web server to authenticate against an Active Directory server using LDAP. The steps are also listed here in short-form incase the source site &hellip; <a href=\"http:\/\/blog.networkpresence.co\/?p=780\">Continue reading <span class=\"meta-nav\">&rarr;<\/span><\/a><\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[5],"tags":[78],"class_list":["post-780","post","type-post","status-publish","format-standard","hentry","category-network-presence","tag-sysadmin"],"_links":{"self":[{"href":"http:\/\/blog.networkpresence.co\/index.php?rest_route=\/wp\/v2\/posts\/780","targetHints":{"allow":["GET"]}}],"collection":[{"href":"http:\/\/blog.networkpresence.co\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"http:\/\/blog.networkpresence.co\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"http:\/\/blog.networkpresence.co\/index.php?rest_route=\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"http:\/\/blog.networkpresence.co\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=780"}],"version-history":[{"count":1,"href":"http:\/\/blog.networkpresence.co\/index.php?rest_route=\/wp\/v2\/posts\/780\/revisions"}],"predecessor-version":[{"id":781,"href":"http:\/\/blog.networkpresence.co\/index.php?rest_route=\/wp\/v2\/posts\/780\/revisions\/781"}],"wp:attachment":[{"href":"http:\/\/blog.networkpresence.co\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=780"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"http:\/\/blog.networkpresence.co\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=780"},{"taxonomy":"post_tag","embeddable":true,"href":"http:\/\/blog.networkpresence.co\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=780"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}