Use Active Directory to authenticate with dokuwiki

  • Dokuwiki 2013-05-10a “Weatherwax” installation (my work with older versions, not tested!)
  • One or more Domain Controllers (DC)
  • Server running dokuwiki can reach the DC, (i.e. via VPN)
  • php-ldap plugin for PHP

  • Add a group to Active Directory and add all users who should get wiki admin rights to it.

  • Connect to your server hosting dokuwiki.
  • Locate the dokuwiki folder, (i.e. /var/www/dokuwiki/)

  • Go to conf/ and open local.php with your favorite text editor.
  • Add the following lines to it:
$conf['authtype'] = 'authad';
$conf['superuser'] = '@MyAdminGroup';
$conf['plugin']['authad']['account_suffix'] = '@yourdomain.tld';
$conf['plugin']['authad']['base_dn'] = 'DC=yourdomain,DC=tld';
$conf['plugin']['authad']['domain_controllers'] = 'dc1.yourdomain.tld,123.123.123.123';
  • In line 2, add your AD group name which holds the admin users; replace every space with an underscore and keep the @ at the start.
  • In line 3, replace yourdomain.tld with your domainname, i.e. example.org or my.example.org
  • In line 4, for every piece of your domain, add a DC=, i.e. DC=my,DC=example,DC=org
  • In line 5, enter one or more DCs seperated by a comma. You can enter hostnames or IP addresses.

  • If you experience problems, you can add $conf['plugin']['authad']['debug'] = 1; to your local.php. This should give you some helpful error messages.

  • tutorial/dokuwiki/ad_access.txt
  • Last modified: 2015-10-05 00:42
  • (external edit)