Changes for page Use cases of configuration to authenticate users with LDAP
Last modified by Thomas Mortagne on 2023/09/04 09:29
From version 42.1
edited by Thomas Mortagne
on 2017/05/15 19:12
on 2017/05/15 19:12
Change comment:
There is no comment for this version
Summary
-
Page properties (2 modified, 0 added, 0 removed)
Details
- Page properties
-
- Author
-
... ... @@ -1,1 +1,1 @@ 1 -xwiki:XWiki. ThomasMortagne1 +xwiki:XWiki.pbas - Content
-
... ... @@ -145,14 +145,14 @@ 145 145 146 146 == I'm in a multiwiki environment and I want my LDAP users to register only on the main wiki == 147 147 148 -Each wiki can have its own LDAP configuration (even enable/disable LDAP) in the ##XWiki.XWikiPreference## page o rusingthe [[LDAPApplication>>Extension.LDAP.Application]]. What you can find in the ##xwiki.cfg## configuration file is just the default LDAP configuration and it can be overridden in subwikis.148 +Each wiki can have its own LDAP configuration (even enable/disable LDAP) in the ##XWiki.XWikiPreference## page (edit it in [[objects mode>>platform:Features.PageEditing||anchor="HAdvancedMode"]]. See [[How to navigate to a page>>xwiki:FAQ.How can I navigate to a given page]]). What you can find in the ##xwiki.cfg## configuration file is just the default LDAP configuration and it can be overridden in subwikis. 149 149 150 150 When the LDAP authenticator fails to authenticate to a wiki it will try in the main wiki. 151 151 152 152 In order to forbid LDAP authentication to create users on subwikis you can use one of the following ways: 153 153 154 -* disable LDAP in **xwiki.cfg** and enable it in the main wiki by choosing "Yes" forthe "LDAP" field155 -* enable LDAP in**xwiki.ccfg** and disableit in every sub-wikisthat are not allowed to create usersby choosing "No" in the "LDAP"154 +* disable LDAP in **xwiki.cfg** and enable it in the main wiki by choosing "Yes" in the "Ldap" field of ##XWiki.XWikiPreference## page object 155 +* disable LDAP in every sub-wikis by choosing "No" in the "Ldap" field of ##XWiki.XWikiPreference## page object 156 156 157 157 == I want to allow access to users depending on a specific attribute on their LDAP entry == 158 158