Browseable LDAP session backend¶
LemonLDAP::NG configuration¶
Go in the Manager and set the session module to Apache::Session::Browseable::LDAP
for each session type you intend to use:
General parameters
»Sessions
»Session storage
»Apache::Session module
General parameters
»Sessions
»Persistent sessions
»Apache::Session module
CAS Service
»CAS sessions module name
OpenID Connect Service
»Sessions
»Sessions module name
SAML2 Service
»Advanced
»SAML sessions module name
The fill out the corresponding module parameters:
Required parameters | ||
---|---|---|
Name | Comment | Example |
ldapServer | URI of the server | ldap://localhost |
ldapConfBase | DN of sessions branch | ou=sessions,dc=example,dc=com |
ldapBindDN | Connection login | cn=admin,dc=example,dc=com |
ldapBindPassword | Connection password | secret |
ldapRaw | Binary attributes | (?i:^jpegPhoto|;binary) |
Index | Fields to index | refer to List of fields to index by session type |
Optional parameters | ||
Name | Comment | Default value |
ldapObjectClass | Objectclass of the entry | applicationProcess |
ldapAttributeId | Attribute storing session ID | cn |
ldapAttributeContent | Attribute storing session content | description |
ldapAttributeIndex | Attribute storing index | ou |
ldapVerify | Perform certificate validation | require (use none to disable) |
ldapCAFile | Path of CA file bundle | (system CA bundle) |
ldapCAPath | Perform CA directory | (system CA bundle) |
Note
In order to properly handle UTF-8 encoded values, you may need to set the ldapRaw parameter to a non-null value. This requires Apache::Session::Browseable >= 1.3.3