DRUPAL: Assigning User Access (LDAP)


Site Planning 

OVERVIEW

Everyone has to start somewhere. This section is for you, if you have some experience website building and website development. We recommend starting with an existing site before migrating into DIT Drupal Hosting environment. If you have any questions on how to get started, please contact us at drupal@umd.edu

 

WHAT IS LDAP ?

To learn more about LDAP, view the UMD Enterprise Directory Policy

CONFIGURING LDAP MODULE

  1. Go to the Modules menu and turn on the LDAP module
  2. Set the configuration to the following values (the values are case sensitive) :
  3. A designated admin will be able to add and remove group members in each role in SIMS
LDAP Settings
Machine Name for this server configuration
UMD-LDAP
Name
UMDirectory
Enable
true
LDAP Server Type
Default LDAP
LDAP server
directory.umd.edu
LDAP port
389
Binding Method
Anonymous Bind for search, then Bind with Users Credentials = true
LDAP User to Drupal User Relationship
Base DNs for LDAP users, groups, and other entries this server configuration : ou=people,dc=umd,dc=edu
AuthName attribute
uid
Email template
[uid]@umd.edu
Logon Options Allowable Authentications
Mixed mode: Drupal authentication is tried first. On failure, LDAP authentication is performed.
Authentication LDAP Server Configurations
UMDirectory (directory.umd.edu) Status Enabled
Drupal User Account Creation Existing Drupal User Account Conflict
Associate local account with LDAP entry.
Account creation for LDAP Authenticated Users
Create accounts automatically for LDAP authenticated users.
Email Behavior
Show disabled email field on user forms with LDAP dervived email.
Email Update
Update stored email if LDAP email differs at login and notify user.

3. Save Settings

4. Disable the CAS Module

 

ASSIGNING USER ACCESS WITH LDAP MODULE

Once a user authenticates to the site, the admin can then manage the users' roles in the Drupal admin interface (yoursite.umd.edu/admin/people)