Virtual Learning Platforms Thread, External Moodle Site LDAP link to school server in Technical; Hello, just about finished my moodle site - god what a lot of effort for just a basic site!! This ...
15th May 2008, 11:51 PM #1
- Rep Power
External Moodle Site LDAP link to school server
Hello, just about finished my moodle site - god what a lot of effort for just a basic site!! This is how I want it to work.
The site will be hosted externally and will connect via ldap and public ip address to a school server running win 2003 std server.
The question is has anyone got this working? The hosted moodle site will be running on a lamp server. The school in questions has council owned firewalls and a change request will be required to get through the fire wall. I will have discover what port ldap runs on and also fully understand the moodle doc
LDAP authentication - MoodleDocs which only really deals with a LAMP server on the same network.
Any comments or advice will be very much appreciated.
16th May 2008, 02:06 AM #2
You will have to be amazingly careful with how you expose this LDAP access. Ideally, if I were doing this I'd want to check my firewall rules locked down the access correctly and that I was using LDAP over SSL. Even better would be to have a VPN link between your internal network and the webserver, again with copious firewalling.
16th May 2008, 03:03 AM #3
I second eveything that Geoff says above and would also add that when the change request is sent in it would be a good idea to get them to allow only the IP address of your site access to the newly opened port. This should limit your vunrability further.
The big hassle with this setup is that you are essentially allowing easy access to your username and password database. If you were to simply use LDAP your user names and passwords could be compromised comparatively easily. Even with the security measures proposed above it still leaves your external system as another point of entry into your school network if it is compromised. So best practice is to lock everything down as tight as possible.
19th May 2008, 01:28 PM #4
- Rep Power
OK. Thanks for you help guys. I am going down the externallly hosted site route.
19th May 2008, 02:37 PM #5
Probably not worth the hassle of arguing with county as to why this is useful. Have an LDAP server run on your external server and synch it with your school server over HTTPS every day / hour / whatever.
Originally Posted by stephenwelch
By ranj in forum Wireless Networks
Last Post: 14th March 2008, 07:26 PM
By zag in forum Virtual Learning Platforms
Last Post: 13th March 2008, 04:03 PM
By MK-2 in forum Web Development
Last Post: 12th December 2007, 12:01 PM
By GrumbleDook in forum Virtual Learning Platforms
Last Post: 28th March 2007, 05:02 PM
By Mike_R in forum Virtual Learning Platforms
Last Post: 6th December 2006, 03:33 PM
Users Browsing this Thread
There are currently 1 users browsing this thread. (0 members and 1 guests)