[svn.haxx.se] · SVN Dev · SVN Users · SVN Org · TSVN Dev · TSVN Users · Subclipse Dev · Subclipse Users · this month's index

Re: Using Apache & Subversion with Active Directory as an authentication method with LDAP servers

From: Dominic Anello <danello_at_danky.com>
Date: 2004-03-11 16:17:46 CET

On 2004-03-10 15:00:31 -0500, Guillermo D. Castellon wrote:
> All:
> Does anyone know if we can setup a subversion server to authenticate through
> Active Directory?
>
> If any has actually achieved this configuration can you share your
> knowledge?

Yhis probably isn't exactly what you are looking for, but it is a start.

The following will authenticate a regular WebDAV share against
ActiveDirectory using LDAP (you have to build apache with --enable-ldap
and --enable-auth-ldap). Replace the stuff in <> with whatever is
appropriate to your site.

However, when you toss svn into the mix, it fails - keeps asking for a
password. I didn't have the time or apache skillz to track down the
cause of the failure, but perhaps someone else on the list has the
secret sauce?

-Dominic

========================================================================

LoadModule ldap_module modules/mod_ldap.so
LoadModule auth_ldap_module modules/mod_auth_ldap.so

Alias /dav-test /tmp

<Location /dav-test>
    DAV on

    Options Indexes

    AuthLDAPURL ldap://<ad-server>/CN=Users,DC=<ad-domain>,DC=<company-domain>,DC=com?sAMAccountName?sub?(objectClass=user)
    AuthLDAPBindDN "<ad-domain>\Administrator"
    AuthLDAPBindPassword <password>
    AuthType Basic
    AuthName "ldap AD Test"
    Require valid-user
</Location>

  • application/pgp-signature attachment: stored
Received on Thu Mar 11 16:17:37 2004

This is an archived mail posted to the Subversion Users mailing list.