Hi everyone,<br><br>To answer my own question after testing various front-end auth setups it looks like REMOTE_USER must be the email address, and what&#39;s nice about LDAP is that you can have users authenticate with a username or other ID that is not the email address and still return the email address to Galaxy, if anyone needs help with such an LDAP configuration please ask me I have it working with Apache mod_authnz_ldap against Active Directory.<br>
<br>regards,<br>Leandro<br><br><div class="gmail_quote">On Fri, Apr 8, 2011 at 7:07 PM, Leandro Hermida <span dir="ltr">&lt;<a href="mailto:softdev@leandrohermida.com">softdev@leandrohermida.com</a>&gt;</span> wrote:<br><blockquote class="gmail_quote" style="margin: 0pt 0pt 0pt 0.8ex; border-left: 1px solid rgb(204, 204, 204); padding-left: 1ex;">
Hello,<br><br>When returning REMOTE_USER env var from the external authentication method does it have to be an email address for Galaxy? The docs aren&#39;t very clear on that, in the main External Authentication section it says you have to have to set remote_user_maildomain if you aren&#39;t return an email address (and the domain will be appended it seems) but in the mod_authnz_ldap section it says you are allowed to set any attribute to return as REMOTE_USER.<br>

<br>regards,<br><font color="#888888">Leandro<br><br>
</font></blockquote></div><br>