39 | | Install |
| 39 | All config options go under the [account-manager] config heading. Options for this module are: |
| 40 | |
| 41 | {{{ |
| 42 | [account-manager] |
| 43 | #to use this module with AccountManager, ADAuthStore must be enabled inside of AccountManager |
| 44 | password_store = ADAuthStore |
| 45 | #define the Active Directory host address here. A port other than default is set as |
| 46 | #hostname:port |
| 47 | ad_server = adserver.example.com |
| 48 | #the Active Directory's base DN to search from, this is likely just your domain |
| 49 | base_dn = DC=example,DC=com |
| 50 | #the user/password to search active directory from, it must be a valid |
| 51 | #username/password inside of active directory |
| 52 | bind_dn = ldapuser@example.com |
| 53 | bind_passwd = ldapuserpassword |
| 54 | #the DN (distinguishing name) for the group that contains users that can login to Trac |
| 55 | #if this isn't specified then any valid user in active directory is accepted |
| 56 | auth_group = CN=Alltechs,OU=Mail enabled groups,OU=Email,DC=serverplus,DC=com |
| 57 | #the DN for the group that contains users that should have the TRAC_ADMIN |
| 58 | #permission. If this option is not given, no user groups will be give the |
| 59 | #TRAC_ADMIN permission. This this option is enabled you must specify the |
| 60 | #UserExtensiblePermissionStore as the trac permission store, such as: |
| 61 | #[trac] |
| 62 | #permission_store = UserExtensiblePermissionStore |
| 63 | admin_group = CN=Administration,DC=example,DC=com |
| 64 | |
| 65 | [trac] |
| 66 | permission_store = UserExtensiblePermissionStore |
| 67 | }}} |
| 68 | |
| 69 | If you are unsure of what the DNs for your groups are, you may want to download an LDAP browser to inspect your Active Directory schema to find out a group's DN. |