MRBS IIS7 authentication
I've been playing around trying to finished off our MRBS setup, as this is installed on an IIS box I thought I would save the trouble of LDAP and use IIS to authenticate setting my config file to $auth["session"] = "nt" and $auth["type"] = "none" per the documentation.
Now this does seem to work however instead of putting the username in the created by field its putting servername$ instead. Is this to be expected or should it be returning the correct username?
Set it as
Then set the properties of security tab to:
$auth["session"] = "remote_user";
$auth["type"] = "none";
Untick Anonymous Access
tick Integrated authentication
Tick Digest authentication
Under Realm select your domain
That's exactly the setup I had but still had servername$ as the username. No matter I setup LDAP instead which is working great under IIS7 so that fine! I'm sure they can cope with logging in!!
Hi guys, i have recently had some network development and i am now hosting iis on my dc now.
I am having difficulty in getting LDAP to work.
I am using.
$auth["session"] = "php"; // How to get and keep the user ID. One of
// "http" "php" "cookie" "ip" "host" "nt" "omni"
$auth["type"] = "ldap"; // How to validate the user/password. One of "none"
// "config" "db" "db_ext" "pop3" "imap" "ldap" "nis"
// "nw" "ext".
and for LDAP Settings //'auth_ldap' configuration settings
// Where is the LDAP server
$ldap_host = "10.0.0.11";
// If you have a non-standard LDAP port, you can define it here
$ldap_port = 389;
// If you do not want to use LDAP v3, change the following to false
$ldap_v3 = true;
// If you want to use TLS, change the following to true
//$ldap_tls = false;
// LDAP base distinguish name
// See AUTHENTICATION for details of how check against multiple base dn's
$ldap_base_dn = "ou=RB Users,dc=rbhs,dc=local";
// Attribute within the base dn that contains the username
$ldap_user_attrib = "uid";
10.0.0.11 being the DC.
Please help im pulling my hair out.
Rob, please help :)
Originally Posted by RobFuller
I need to set LDAP auth on iis6 or iis7 (doesn't matter which version) to auth against Novell eDirectory. Its for an internal intranet hosting asp pages that needs to be password protected so that only staff can access it.
I'm happy with LDAP, eDirectory etc, but I don't know IIS. Can you point me in the right direction?
Have you installed PHP with the LDAP plugin on your IIS server? Which version are you using 6/7?
No, I haven't installed PHP or any LDAP plugin. I really will be starting from scratch here. Likewise, the server version doesn't matter. We are virtualised so I can provision a IIS6 or IIS7 based server in minutes. I'll use whatever is easiest, although I suppose there is no point starting a project on an older version of IIS if it will work on the newer one...?
Originally Posted by RobFuller
What is the PHP LDAP plugin? Do you have a url? I'll google it in the meantime....
Just so you know what we want to do, we have our MIS system (Oracle) queried by an SQL server which then outputs its reports to an IIS6 box as asp pages. I don't do any of that, its all handled by our MIS team.
However, the page needs some (decent) security. At the moment it is IIS Baisc Auth. I want it to be LDAP. We don't use Active Directory, only eDirectory, hence needing to use LDAP.
The other option I have is to get Apache working with asp, but the report writers would prefer to work on IIS.
Is this related to securing MRBS or just security of website in general?