LDAP HowTo

Table of Contents

This document is intended to help administrators configure various parts of horde to use an LDAP directory. Please fill in any gaps or expand on the content with your own experiences on using horde with LDAP.

Document Standards

In this document, we assume the following, please adjust accordingly for your LDAP directory

User information is stored in ou=Users,dc=example,dc=com.
- cn=horde,ou=DSA,dc=example,dc=com is used by horde to bind to the LDAP directory.
- The LDAP directory is secured, with no anonymous binding.

Authenticating with LDAP

Horde Setup

Directory Permissions

These are the minimum LDAP directory permissions needed by horde to authenticate against LDAP



access to dn.children="ou=Users,dc=example,dc=com"

        attrs=entry,objectClass,uid

        by dn="cn=horde,ou=DSA,dc=example,dc=com" read

        by self read

        by * none

access to dn.children="ou=Users,dc=example,dc=com"

        attrs=userPassword

        by self write

        by anonymous auth

        by * none

Storing Preferences with LDAP

Horde Setup

Directory Permissions

Download this page as: Plain Text, HTML, Latex, reStructuredText