On Mon, May 24, 2010 at 04:14:33PM +0200, Davide Cittaro wrote:
That's exactly what I've tried to ask :-)
Also, that means that my galaxy user will be dcittaro@ifom-ieo-campus.it . The problem is that email address doesn't exist, as usernames defined in LDAP are not the usernames for mail addresses... I guess I'll have to study LDAP search syntax and instruct it to query with my username (dcittaro) and return the email address stripping the domain (davide.cittaro)...
Glad it helped. Here are some Apache Directives that will probably help: http://httpd.apache.org/docs/2.2/mod/mod_authnz_ldap.html#authldapremoteuser... which can only legally be one of the attributes included in your: http://httpd.apache.org/docs/2.2/mod/mod_authnz_ldap.html#authldapurl That'll let you auth using the 'uid' and set REMOTE_USER to the 'email'. If the email comes back from LDAP with the @domain.tld already appended then don't set REMOTE_USER_DOMAIN to anything. -- Ry4an Brase 612-626-6575 University of Minnesota Supercomputing Institute for Advanced Computational Research http://www.msi.umn.edu