| 39 | | Install |
| | 39 | All config options go under the [account-manager] config heading. Options for this module are: |
| | 40 | |
| | 41 | {{{ |
| | 42 | [account-manager] |
| | 43 | #to use this module with AccountManager, ADAuthStore must be enabled inside of AccountManager |
| | 44 | password_store = ADAuthStore |
| | 45 | #define the Active Directory host address here. A port other than default is set as |
| | 46 | #hostname:port |
| | 47 | ad_server = adserver.example.com |
| | 48 | #the Active Directory's base DN to search from, this is likely just your domain |
| | 49 | base_dn = DC=example,DC=com |
| | 50 | #the user/password to search active directory from, it must be a valid |
| | 51 | #username/password inside of active directory |
| | 52 | bind_dn = ldapuser@example.com |
| | 53 | bind_passwd = ldapuserpassword |
| | 54 | #the DN (distinguishing name) for the group that contains users that can login to Trac |
| | 55 | #if this isn't specified then any valid user in active directory is accepted |
| | 56 | auth_group = CN=Alltechs,OU=Mail enabled groups,OU=Email,DC=serverplus,DC=com |
| | 57 | #the DN for the group that contains users that should have the TRAC_ADMIN |
| | 58 | #permission. If this option is not given, no user groups will be give the |
| | 59 | #TRAC_ADMIN permission. This this option is enabled you must specify the |
| | 60 | #UserExtensiblePermissionStore as the trac permission store, such as: |
| | 61 | #[trac] |
| | 62 | #permission_store = UserExtensiblePermissionStore |
| | 63 | admin_group = CN=Administration,DC=example,DC=com |
| | 64 | |
| | 65 | [trac] |
| | 66 | permission_store = UserExtensiblePermissionStore |
| | 67 | }}} |
| | 68 | |
| | 69 | If you are unsure of what the DNs for your groups are, you may want to download an LDAP browser to inspect your Active Directory schema to find out a group's DN. |
