The next logical step in the question about AD users is whether you could
simplify and manage the permissions by using an AD group? So that if you
wanted to add a new user of the repository, you simply add them to the AD
group and they now have access to the directories the group has been granted
access rights to. Does that make sense and is it possible?
Thanks!
Rory
-----Original Message-----
From: Andy Levy [mailto:andy.levy_at_gmail.com]
Sent: Tuesday, July 08, 2008 4:35 AM
To: Ivan Zhakov
Cc: Rory Clark; users_at_subversion.tigris.org
Subject: Re: Questions about Subversion...
On Tue, Jul 8, 2008 at 04:47, Ivan Zhakov <ivan_at_visualsvn.com> wrote:
> On Tue, Jul 8, 2008 at 7:30 AM, Rory Clark <roryslists_at_clarkzoo.org>
wrote:
>> Integration of Subversion with LDAP and ActiveDirectory for
>> authentication of users. I see in the Red-Bean book that system
>> accounts over SSH on SVNSERVE are supported, but does this apply to
>> ActiveDirectory on Windows based installations as well? It looks like
>> we would need to run an Apache web server for this, even on Windows. Is
this correct?
>>
> VisualSVN Server 1.5 [1] supports authentication for Active Directory
users.
I think it can be done with any Apache install with the correct modules;
VisualSVN packages it all up and proves a nice admin interface to make it
all much, much easier.
>> Does SVN support the ability to apply policies over directories? For
>> example, can I limit access to specific directories under the tree to
>> different groups with different levels reading and writing
>> capabilities? Can I take it one step further and lock down the tree
>> and prevent commits to it, like in the situation where we have a
>> release candidate and we don't want anyone making unapproved check-ins?
> Yes, Subversion (and VisualSVN Server of course) supports security
> policies for directories. Check "Per-Directory Access Control" chapter
> in SVN book [2] or use VisualSVN Server management console to
> configure them.
>
> [1] http://www.visualsvn.com/server/
> [2]
> http://svnbook.red-bean.com/en/1.4/svn.serverconfig.httpd.html#svn.ser
> verconfig.httpd.authz.perdir
>
> --
> Ivan Zhakov
> VisualSVN Team
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: users-unsubscribe_at_subversion.tigris.org
> For additional commands, e-mail: users-help_at_subversion.tigris.org
>
>
---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe_at_subversion.tigris.org
For additional commands, e-mail: users-help_at_subversion.tigris.org
Received on 2008-07-08 17:38:49 CEST