Re: Using Apache & Subversion with Active Directory as an authentication method with LDAP servers

On 2004-03-10 15:00:31 -0500, Guillermo D. Castellon wrote:
> All:
> Does anyone know if we can setup a subversion server to authenticate through
> Active Directory?
>
> If any has actually achieved this configuration can you share your
> knowledge?

Yhis probably isn't exactly what you are looking for, but it is a start.

The following will authenticate a regular WebDAV share against
ActiveDirectory using LDAP (you have to build apache with --enable-ldap
and --enable-auth-ldap). Replace the stuff in <> with whatever is
appropriate to your site.

However, when you toss svn into the mix, it fails - keeps asking for a
password. I didn't have the time or apache skillz to track down the
cause of the failure, but perhaps someone else on the list has the
secret sauce?

-Dominic

========================================================================

LoadModule ldap_module modules/mod_ldap.so
LoadModule auth_ldap_module modules/mod_auth_ldap.so

Alias /dav-test /tmp

<Location /dav-test>
    DAV on

    Options Indexes

    AuthLDAPURL ldap://<ad-server>/CN=Users,DC=<ad-domain>,DC=<company-domain>,DC=com?sAMAccountName?sub?(objectClass=user)
    AuthLDAPBindDN "<ad-domain>\Administrator"
    AuthLDAPBindPassword <password>
    AuthType Basic
    AuthName "ldap AD Test"
    Require valid-user
</Location>