1 / 12

The DSpace Course

The DSpace Course. Module – Configuring LDAP. Module objectives. By the end of this module you will: Understand how DSpace uses LDAP for authentication Be able to configure a DSpace instance to authenticate against an LDAP server

mgemmill
Download Presentation

The DSpace Course

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. The DSpace Course Module – Configuring LDAP

  2. Module objectives • By the end of this module you will: • Understand how DSpace uses LDAP for authentication • Be able to configure a DSpace instance to authenticate against an LDAP server • Know which tools to use and how to use them in order to test LDAP connection issues

  3. An introduction to LDAP • LDAP – Lightweight Directory Access Protocol • Tree structure: • DC = domain component • OU = organisational unit • CN = common name • DN = distinguished name • My DN is: • CN=stuart,OU=users,DC=testathon,DC=net

  4. How DSpace uses LDAP • How does DSpace use LDAP?

  5. Stackable authentication • Stackable authentication • Stacks different authentication mechanisms on top of each other • Each is tried until one succeeds, or none succeed

  6. LDAP Settings • LDAP settings: • ldap.provider_url = ldap://ldap.testathon.net:389/ • ldap.id_field = cn • ldap.object_context = OU=users,DC=testathon,DC=net • ldap.search_context = OU=users,DC=testathon,DC=net • ldap.email_field = mail • ldap.surname_field = sn • ldap.givenname_field = givenName • ldap.phone_field = telephoneNumber

  7. Enabling LDAP • Stackable authentication setting: • plugin.sequence.org.dspace.authenticate.AuthenticationMethod = \ org.dspace.authenticate.LDAPAuthentication • Or • plugin.sequence.org.dspace.authenticate.AuthenticationMethod = \ org.dspace.authenticate.LDAPAuthentication, \ org.dspace.authenticate.PasswordAuthentication • ldap.enable = true (JSPUI only)

  8. Testing your LDAP settings • Use an LDAP client • LDAP Browser: • http://www-unix.mcs.anl.gov/~gawor/ldap/ • Allows you to use the settings in dspace.cfg to log in to an LDAP server and view the output visually

  9. LDAP Browser • Log in:

  10. LDAP Browser • See the tree:

  11. Practical – enable LDAP • LDAP settings: • ldap.provider_url = ldap://ldap.testathon.net:389/ • ldap.id_field = cn • ldap.object_context = OU=users,DC=testathon,DC=net • ldap.search_context = OU=users,DC=testathon,DC=net • ldap.email_field = mail • ldap.surname_field = sn • ldap.givenname_field = givenName • ldap.phone_field Bye bye= telephoneNumber • Users are: stuart, john and carol. • Passwords are the same as the usernames

  12. Credits • These slides have been produced by: • Stuart Lewis & Chris Yates • Repository Support Project • http://www.rsp.ac.uk/ • Part of the RepositoryNet • Funded by JISC • http://www.jisc.ac.uk/

More Related