Has anyone been successful in getting svnserve on Linux to authenticate
against windows active directory? We have multiple windows domains and
multiple repositories hosted with svnserve via xinetd. Is this even
possible?? The svnbook suggests it is, but I can't find even one example
of anyone succeeding. Getting svn to authenticate with cyrus sasl using
sasldb2 was pretty painless, but turned out to offer nothing in terms of
greater security around authentication. It allows me to encrypt all svn
traffic, but authentication was already encrypted and the rest is a
minor concern. As concerns other authentication mechanisms, either I'm
blind or the documentation is just terrible to non-existent.
Objective: Provide a standard authentication mechanism for multiple reps
and multiple svn versions while using svnserve.
By "standard authentication mechanism" I mean enforced complexity,
expirations and enforced password renewals, passwords not viewable (no
clear text), etc, etc, the usual stuff.
Also, if svn can authenticate using ldap, how does svn know if the user
trying to authenticate actually has an account in the repository? The
docs say that when using sasl, the passwd file is ignored. Ldap doesn't
know anything about svn repositories, so does svn just let anyone in? I
suppose you could use the authz file to lock things down a bit, but
that's a major PIA.
Has anyone out there been successful at this or should I stop wasting
time trying to figure it out? A "how to" posting would be GREATLY
appreciated.
TIA
Andrew Ukasick
Andrew.Ukasick_at_att.com <mailto:Andrew.Ukasick_at_att.com>
Received on 2008-11-03 21:49:34 CET