I am working on an intranet and plan on using Joomla 2.5 as the platform. I would like to know what my options are for working with Active Directory (as of now MS server 2003, we plan on upgrading to server 2008), I would like to have single sign-on (or at the least the ability to login with their AD credentials), any ideas?

Chaim :)

Hi Chaim,

Thankfully, Joomla has LDAP integration built into it :) Within plugin manager, you'll see an Authentication - LDAP plugin, which you can configure and enable.

Here's a document for configuring Windows Server 2003 (same thing applies for Joomla 2.5):
community.joomla.org/gsoc2009/lalitanand...y-configuration.html

I hope this helps!

Kind regards,
Nick

Nick,

Thanks for the link :)

A couple of questions,

• Will Joomla store the username and password that is pulled from the LDAP group? if not, are there any other plugins that can?
• Are you aware of any methods to map AD users to Joomla User-groups (for ACL)?
• is it possible to restric which users can logon to the site?

Thanks for your help,
Chaim :)

Hi Chaim,

I don't know enough about LDAP or have any way to check it out for you. However there are some extensions for this for Joomla 1.5 extensions.joomla.org/search?q=ldap

There don't seem to be any for 2.5. I asked the rest of the team to look at this. Nick has more experience with it than I do, so he might be able to give you definitive answers. You might also check with one of the plugin makers and see if they have anything new for you.

Cheers,
Ed

Hi Chaim,

You're welcome!

1) No, only the name, email, and userID are stored. Why are you wanting to store them? If it's just a one-time deal, you should be looking to export/import.

2) Yes, check out the JMapMyLDAP Tools plugin:
extensions.joomla.org/extensions/access-...OjA7czo0OiJsZGFwIjt9

3) Not without writing new code for it. You can see our list of recommended developers on the following page:
www.ostraining.com/resources/joomla/developers

I hope this helps!

Kind regards,
Nick

Thanks Nick.

1. I wanted to store them so i dont have to use SSO every time a user logs in; it is not crucial, so I can do with the default (or option 2 of the previous post) LDAP plugin.

2. I had seen the extension, but wasn't sure if it was 2.5 compatible (why is there no version badge on the tools section?).

3. I believe that with the above-mentioned tool, I will be able to take care of it.

One final question, what if there is no email attribute saved in AD, will users be able to login to the J site (as an email address is required)?

Thanks in advance,
Chaim

Hi Chaim,

1) I don't know of any plugins. A developer should be able to write a plugin for it quickly though.

2) Yes, it is. For some reason the JED Team appears to have removed the 1.6 and 1.7 labels. Both 1.6 and 1.7 extensions are compatible with Joomla 2.5

4) No, I don't believe so. An email address is required.

Hope this helps!

Kind regards,
Nick

Hi Nick,

How can we get a user to login without an email address. I am dealing with students who don't have email addresses(at least to my knowledge), but still need local logins. IS there anyway to configure a Joomla user without a email, maybe the reverse of email as username plugin?

Chaim :)

Hi Chaim,

Simple answer, no. Complicated answer, yes, but you'd have to hack the core.

This is a discussion that I followed a while back:
groups.google.com/forum/?fromgroups#!top...-general/fsQZTfjVBAs

Also, here's an example of a way that you could do it:
jw-extension.net/joomla-how-to/35-hack-j...n-without-email.html

I hope this helps!

Kind regards,
Nick

Thanks Nick.

It really sucks that we would have to hack the core. need to evaluate what platform we will use (or modify the above-mentioned extension to suit our needs).

Chaim :)

You're welcome, Chaim! Glad to be of help, at least!

Kind regards,
Nick