Feature #3876

ldap authentification without binding ?

Added by Patrice Bonhomme almost 11 years ago. Updated 4 months ago.

Status:ResolvedStart date:2009-09-15
Priority:NormalDue date:
Assignee:-% Done:

0%

Category:Accounts / authentication
Target version:-
Resolution:

Description

I have a limitation within my LDAP server to avoid user for login more than one time on a Windows computer. So, when they are connected to their Windows machine, they can't authenticate on Redmine using the LDAP auth source.

Is there a solution to authenticate a user with his login and his password without a ldap_con.bind ? Is it possible to do a search and compare login/password to the LDAP database ?

Tx,
Pat

History

#1 Updated by Adam Piotr Żochowski almost 11 years ago

Why not just run NTLM/SSPI authentication? Thomas Löber explains it greatly in http://www.redmine.org/boards/2/topics/127 .

Kind regards

Adam Żochowski

#2 Updated by Patrice Bonhomme almost 11 years ago

i do konw nothing about NTLM/SSPI authentification. My Redmine server is running on a Linux box, not a Windows one.

#3 Updated by Adam Piotr Żochowski almost 11 years ago

Patrice Bonhomme wrote:

i do konw nothing about NTLM/SSPI authentification. My Redmine server is running on a Linux box, not a Windows one.

Sorry, I assumed from your description that you wanted windows users to automatically login into Redmine, with same username/password as they use to login to windows. This is typically done with ntlm/sspi authentication (which would be similar to doing redmine ldap against Windows AD).

Please accept my apologies for misunderstanding you.

Kind regards

Adam Żochowski

#4 Updated by transit dk almost 11 years ago

Patrice,

I'm doing this using the patch from Adi (#1913). There was another patch by Will (#3253) that also added some other features to the LDAP authentication.

-Brian

#5 Updated by Patrice Bonhomme 4 months ago

  • Status changed from New to Resolved

Also available in: Atom PDF