Use Active Directory to authenticate with dokuwiki
Requirements
- Dokuwiki 2013-05-10a “Weatherwax” installation (my work with older versions, not tested!)
- One or more Domain Controllers (DC)
- Server running dokuwiki can reach the DC, (i.e. via VPN)
- php-ldap plugin for PHP
Step 1
- Add a group to Active Directory and add all users who should get wiki admin rights to it.
Step 2
- Connect to your server hosting dokuwiki.
- Locate the dokuwiki folder, (i.e.
/var/www/dokuwiki/)
Step 3
- Go to
conf/and openlocal.phpwith your favorite text editor. - Add the following lines to it:
$conf['authtype'] = 'authad'; $conf['superuser'] = '@MyAdminGroup'; $conf['plugin']['authad']['account_suffix'] = '@yourdomain.tld'; $conf['plugin']['authad']['base_dn'] = 'DC=yourdomain,DC=tld'; $conf['plugin']['authad']['domain_controllers'] = 'dc1.yourdomain.tld,123.123.123.123';
- In line 2, add your AD group name which holds the admin users; replace every space with an underscore and keep the @ at the start.
- In line 3, replace yourdomain.tld with your domainname, i.e. example.org or my.example.org
- In line 4, for every piece of your domain, add a DC=, i.e. DC=my,DC=example,DC=org
- In line 5, enter one or more DCs seperated by a comma. You can enter hostnames or IP addresses.
Troubleshooting
- If you experience problems, you can add
$conf['plugin']['authad']['debug'] = 1;to your local.php. This should give you some helpful error messages.