How to configure dotProject 2.1.2 to authenticate using Active Directory's LDAP?

So previously I released the following post:
How to install dotProject 2.1.2 on FreeBSD 7.2 with Apache 2.2, PHP5, and MySQL 5.1 Server?

Now I am following up as promised with how to integrate this with Active Directory and AD’s LDAP. You need to know your LDAP Active Directory info. If you don’t, you need to get it. Or else maybe your domain is generic enough that looking at my examples will get you there.

  1. Log in to dotProject.
  2. Click on System Admin | Default User Preferences.

    We will make changes to the following sections:

    • User Authentication Settings
    • LDAP Settings

    These section are show in this screen shot. After this screen shot instructions on configuring these sections are provided.

  3. Scroll to the section called User Authentication Settings.
  4. Change the User Authentication Method setting to LDAP.
  5. Configure the LDAP Settings section.
    1. For LDAP Host, Enter the IP address of your Active Directory server.
    2. Do not change the LDAP Port or LDAP Version settings.
    3. On a default Active Directory installation, set the LDAP Base DN to the following:
      CN=Users,DC=YourDomain,DC=tld

      For example, the lab I am demoing this with is LD.Lab so it would be this:

      CN=Users,DC=ld,DC=lab
    4. For LDAP User Filter enter the following:
      (sAMAccountName=%USERNAME%)
    5. For the LDAP Search User, enter a domain user:
      CN=John Doe,CN=Users,DC=ld,DC=lab

      SUGGESTION: Create a service account on the domain with a really intense password and almost no rights, except of course the right to search LDAP so it can be an LDAP Search User.

    6. Obviously for the LDAP Search User Password, enter the password for the LDAP Search User.

      IMPORTANT! You must update this password here when the user’s changes in Active Directory (sorry for the “No duh” moment but it had to be said).

  6. Scroll down and on the bottom right of the Default User Preferences page, click Save.

Go ahead and try to login as a Domain User.

Note On Changing Permissions
Domain Users may appear to get the Administrator role, but this is not really the case. They only get the Anonymous role when they first login. See my forum post here:
How to make an LDAP user an administrator?

Also, it appears that if you want all users who login to get more permissions, then edit the Anonymous role or modify every user individually. (Yeah, so the project needs some features in this area…maybe you want to become a contributor and develop it yourself?)


Copyright ® Rhyous.com – Linking to this article is allowed without permission and as many as ten lines of this article can be used along with this link. Any other use of this article is allowed only by permission of Rhyous.com.

21 Comments

  1. Luís Talora says:

    Nevermind... It finally worked! My service account's distinguish name was mispellen.

    Thanks a lot for this tutorial!!!

    Best regards,

    Luís Talora

  2. Luís Talora says:

    Hi!

    I've tried every single on-line tutorial, but nothing seems to help making neither dotproject nor web2project authentication agains AD work... I'm running dotproject on a Windows Server 2003 with WAMP. Have anyone been able to make it work on this scenario?

    Thanks!

    Regards,

    Luís Talora

  3. [...] la guia oficial de instalación de dotproject que la encuentras aquí, una ves instalado seguí esta guia para autentificar conta ActiveDitectory… Al final obtuve una herramienta opensource que [...]

  4. [...] Check out my new update to this: How to configure dotProject 2.1.2 to authenticate using Active Directory’s LDAP? Possibly related posts: (automatically generated)How to install MySQL on FreeBSD 7.2 or on Red Hat [...]

  5. [...] Check out my new update to this: How to configure dotProject 2.1.2 to authenticate using Active Directory’s LDAP? Possibly related posts: (automatically generated)How to install MySQL on FreeBSD 7.2 or on Red Hat [...]

  6. [...] Check out my new update to this: How to configure dotProject 2.1.2 to authenticate using Active Directory’s LDAP? Possibly related posts: (automatically generated)How to install MySQL on FreeBSD 7.2 or on Red Hat [...]

  7. [...] Check out my new update to this: How to configure dotProject 2.1.2 to authenticate using Active Directory’s LDAP? Possibly related posts: (automatically generated)How to install MySQL on FreeBSD 7.2 or on Red Hat [...]

  8. [...] Check out my new update to this: How to configure dotProject 2.1.2 to authenticate using Active Directory’s LDAP? Possibly related posts: (automatically generated)How to install MySQL on FreeBSD 7.2 or on Red Hat [...]

  9. [...] Check out my new update to this: How to configure dotProject 2.1.2 to authenticate using Active Directory’s LDAP? Possibly related posts: (automatically generated)How to install MySQL on FreeBSD 7.2 or on Red Hat [...]

  10. [...] Check out my new update to this: How to configure dotProject 2.1.2 to authenticate using Active Directory’s LDAP? Possibly related posts: (automatically generated)How to install MySQL on FreeBSD 7.2 or on Red Hat [...]

  11. [...] Check out my new update to this: How to configure dotProject 2.1.2 to authenticate using Active Directory’s LDAP? Possibly related posts: (automatically generated)How to install MySQL on FreeBSD 7.2 or on Red Hat [...]

  12. [...] Check out my new update to this: How to configure dotProject 2.1.2 to authenticate using Active Directory’s LDAP? Possibly related posts: (automatically generated)How to install MySQL on FreeBSD 7.2 or on Red Hat [...]

  13. [...] Check out my new update to this: How to configure dotProject 2.1.2 to authenticate using Active Directory’s LDAP? Possibly related posts: (automatically generated)How to install MySQL on FreeBSD 7.2 or on Red Hat [...]

  14. [...] Check out my new update to this: How to configure dotProject 2.1.2 to authenticate using Active Directory’s LDAP? Possibly related posts: (automatically generated)How to install MySQL on FreeBSD 7.2 or on Red Hat [...]

  15. [...] Check out my new update to this: How to configure dotProject 2.1.2 to authenticate using Active Directory’s LDAP? Possibly related posts: (automatically generated)How to install MySQL on FreeBSD 7.2 or on Red Hat [...]

  16. [...] Check out my new update to this: How to configure dotProject 2.1.2 to authenticate using Active Directory’s LDAP? Possibly related posts: (automatically generated)How to install MySQL on FreeBSD 7.2 or on Red Hat [...]

  17. [...] Check out my new update to this: How to configure dotProject 2.1.2 to authenticate using Active Directory’s LDAP? Possibly related posts: (automatically generated)How to install MySQL on FreeBSD 7.2 or on Red Hat [...]

  18. [...] Check out my new update to this: How to configure dotProject 2.1.2 to authenticate using Active Directory’s LDAP? Possibly related posts: (automatically generated)How to install MySQL on FreeBSD 7.2 or on Red Hat [...]

  19. [...] Check out my new update to this: How to configure dotProject 2.1.2 to authenticate using Active Directory’s LDAP? Possibly related posts: (automatically generated)How to install MySQL on FreeBSD 7.2 or on Red Hat [...]

  20. [...] Check out my new update to this: How to configure dotProject 2.1.2 to authenticate using Active Directory’s LDAP? Possibly related posts: (automatically generated)How to install MySQL on FreeBSD 7.2 or on Red Hat [...]

Leave a Reply

How to post code in comments?

*