Come together with the global Drupal community in Rotterdam, 28 Sept – 1 Oct 2026. Sessions, contribution, connection, and Early Bird savings until 8 June.
By JonathanDStopchick on
Hi again everyone. I'm running the webserver_auth module and I would like to retrieve user roles from active directory, but I see no way to configure or for that matter do anything with it. I can log in as an authuser, but Ideally I would like roles to be automatic as our business has hundreds of users which I don't look forward to role editing.
Comments
An extra something needed
The Kerberos part of AD is just authentication. For the authorisation part (eg figuring out roles) you will presumably need LDAP (or similar).
You could try this module:
http://drupal.org/project/ldap_integration
I'm not sure what it's current state is though :)
--
Anton
New to Drupal? | Forum posting tips | Troubleshooting FAQ
Example Knowledge Base built using Drupal
Beware & have a guru handy
I've been using ldap_integration for my company's intranet site for almost a year now. Getting it to work with Win2k3 AD was a challenge, as was making user profiles happy. There is a lot of code hacking involved to make it connect to Win2k3 AD. This seems more geared towards OpenLDAP.
Also be aware you will need 2 service accounts created in Windows AD: One read-only, one Read-Write.
Tell me about it (getting OT)
While I haven't used Kerberos/LDAP in Drupal, I have set up pam_krb5 and nss_ldap (auth via krb5-GSSAPI) on a linux machine to get single sign on against AD (2003). It was a challenge to say the least - most of the LDAP client libraries were written with OpenLDAP in mind.
The the overall interoperability trend is improving I think.
--
Anton
New to Drupal? | Forum posting tips | Troubleshooting FAQ
Example Knowledge Base built using Drupal