- Authentication of AD Users to log into Zikula
- Registration of AD Users in your Zikula Application on first time log in
- Mass import/update of AD users
- Mass import of AD groups
- Update of the User and its group memberships on each log in
- Customizable Mapping to automatically fill in the Profile modules' User informations with the AD data
- An active installation of the Zikula Application Framework with version > 1.3.0 running on PHP 5.4 or higher
- LDAP Extensions to PHP.
- An Active Directory domain controller to connect to.
Installation via Github
Go into the module path of your Zikula installation.
Run following snippet to get the module
git clone https://github.com/ChDeinert/LDAPAuth LDAPAuth
Initialize the LDAPAuth module in the Zikula Adminstration area.
This one is optional but recommended: Goto the Zikula Block Administration and replace the original login-Block with the LDAPAuth/Log-in block.
Installation via Download
- Download the module here and extract the contents into a folder calles LDAPAuth.
- Copy or move the folder into the module path of your Zikula installation directory.
- Initialize the LDAPAuth module in the Zikula Administration area.
- This one is optional but recommended: Goto the Zikula Block Administration and replace the original login-Block with the LDAPAuth/Log-in block.
The Configuration of the LDAPAuth module is found in the Zikula Administration area. !Important! You will need an AD User to connect to the AD. You should use one with only reading permissions!
A Quick overview of important settings:
- Active Configuration: Indicates whether the authentication via LDAP should be used.
- Support Profile module: Indicates whether the Profile module mapping should be used. (requires the Profile module to be installed and activated)
- Account Suffix: The full account suffix for your domain.
- Base DN: The base dn for your domain.
- Domain Controllers: A list of Domain Controllers separated with ,.
- Username: The Searches an checks will be performed with this AD user account.
- Password: The corresponding password for Username.
- Real Primarygroup: Resolve the real primary group.
- Use SSL: Use SSL for connection.
- Use TSL: Use TSL for connection.
- Recoursive groups: When querying group membership, do it recursively.
- AD Port: Port used to talk to the domain controllers.
- SSO: To indicate to adLDAP to reuse password set by the brower through NTLM or Kerberos.
LDAPAuth is open-source Software licensed under the GNU General Public License (GPL) 3.0