First, i installed LDAP - pip install python-ldap then i added this below configuration in indico.conf. Somehow, i can’t log in indico by authenticating with our Active directory:
# Authentication
LOCAL_IDENTITIES = True
LOCAL_REGISTRATION = True
LOCAL_MODERATION = True
_ldap_config = {
'uri': 'ldaps:xxxxxx:3269',
'bind_dn': 'CN=XXXXX,OU=XXX Users,OU=XXXXX,OU=XXXXX,OU=XXXXX,DC=XXXXX,DC=XXXXX,DC=XXXXX',
'bind_password': 'XXXXX',
'timeout': 30,
'useTLS': True,
'verify_cert': False,
'starttls': False,
'page_size': 1000,
'uid': 'cn',
'user_base': 'DC=XXXXX,DC=XXXXX,DC=XXXXX',
'user_filter': '(mail=*)',
'gid': 'cn',
'group_base': 'DC=XXXXX,DC=XXXXX,DC=XXXXX',
'group_filter': '(objectCategory=group)',
'member_of_attr': 'memberOf',
'ad_group_style': False,
}
AuthProviders = {
'ldap': {
'type': 'ldap',
'title': 'Our org LDAP',
'ldap': _ldap_config,
'default': True
}
}
IdentityProviders = {
'ldap': {
'type': 'ldap',
'title': 'Our org',
'ldap': _ldap_config,
'mapping': {
'first_name': 'givenName',
'last_name': 'sn',
'email': 'mail',
'affiliation': 'company',
},
'trusted_email': True,
'default_group_provider': True,
'synced_fields': {'first_name', 'last_name', 'affiliation'}
}