LDAP Integration

Events happening in the community are now at Drupal community events on www.drupal.org.
rjdempsey's picture
Posted by rjdempsey on May 28, 2008 at 8:21pm

Anyone out there adept at LDAP Integration with Drupal? I know there is a module for that. Just wondering if anyone has successfully used it and knows of any caveats or specific advice regarding this. I'm simply adding a Drupal site to an existing LDAP setup and would like to use the existing system for user authentication. Thanks,

Ryan

Comments

Works

Posted by boris mann on May 28, 2008 at 9:01pm
boris mann's picture

http://drupal.org/project/ldap_integration

It can be tricky to correctly figure all the settings in Drupal depending on what LDAP source you are talking to. But yes, it works. There are a number of sub modules, and you can choose what you want to do, from simple ldapauth to actual read/write of data to/from Drupal and the LDAP source.

If you are just

Posted by warfeous on May 28, 2008 at 9:11pm
warfeous's picture

If you are just authenticating your users against LDAP, it's pretty straight-forward to do using just the ldap_integration module. So long as you know your server, base DN and username attribute, the configuration is actually pretty simple.

what we did

Posted by snoble on May 28, 2008 at 9:34pm
snoble's picture

back in the 4.7 days we were pretty unhappy with the existing modules, due to speed, stability or security, so we ended up writing our own implementation that has grown with us pretty easily to the most recent version of 5. I don't own the code so I'd have to get permission to share it but I can say the problem became much easier once we accepted that we were going to modify user.module instead of just trying to work with existing hooks.

I would suggest just trying out the various modern modules, which I assume would be an improvement on what we had. If that doesn't work, contact me directly and I'll see if I can get our implementation open sourced.

Good luck,
Steven

Technically, released

Posted by boris mann on May 28, 2008 at 10:36pm
boris mann's picture

Actually, technically the code is already open source, it's just not released, which doesn't force the sharing of code.

Working with the existing modules, either in a new branch (e.g. 5.x-2) or improving the code that is already there, is a great long term strategy.

The basic guideline is that if you have to hack core, then core isn't flexible enough, and core maintainers would love to see a feature request / core patch that would give core the flexibility or requisite hooks. With OpenID in core, you may find that D6 forward has more hooks around user / registration already.

Feel free to contact me directly if you want some help navigating how to contribute your code. It's a great way to get exposure for your company.

Thank you all

Posted by rjdempsey on May 28, 2008 at 9:52pm
rjdempsey's picture

Yeah, what I need is pretty simple, just authenticating users. I'll try the LDAP Integration module as suggested, If I run into problems, I'll message further. Thanks again.

Vancouver

Group organizers

Group notifications

This group offers an RSS feed. Or subscribe to these personalized, sitewide feeds:

Hot content this week

See all hot content.