SERVER_PORT (default: 80 or 80 & 443): The port the webserver inside the container will listen on. Useful if running this behind a reverse proxy. SERVER_PATH (default: /): The path to the user manager on the webserver. SERVER_HOSTNAME (default: ): The hostname that this interface will be served from. LDAP_ADMINS_GROUP: The name of the group used to define accounts that can use this tool to manage LDAP accounts.
#Best ui browser for ldap password
LDAP_ADMIN_BIND_PWD: The password for LDAP_ADMIN_BIND_DN LDAP_ADMIN_BIND_DN: The DN for the user with permission to modify all records under LDAP_BASE_DN, e.g. LDAP_BASE_DN: The base DN for your organisation, e.g. LDAP_URI: The URI of the LDAP server, e.g. This will result in LDAP_ADMIN_BIND_PWD being set with the contents of /run/secrets/ldap_admin_bind_pwd. Then when the container starts up it will set the appropriate configuration variable with the contents of the file.įor example, if you're using Docker Swarm and you've set the LDAP bind password as a Docker secret ( echo "myLDAPadminPassword" | docker secret create ldap_admin_bind_pwd -) then you can set LDAP_ADMIN_BIND_PWD_FILE=/run/secrets/ldap_admin_bind_pwd. When running the user manager as a container you can append _FILE to any of the configuration variables and set the value to a filepath. This interface is designed to work with a fresh LDAP server and should only be against existing, populated LDAP directories with caution and at your own risk.Ĭontainers: using files/secrets to set configuration variables.This tool needs to bind to LDAP as a user that has the permissions to modify everything under the base DN.Ĭonfiguration is via environmental variables. e "LDAP_ADMIN_BIND_DN=cn=admin,dc=example,dc=com" \Ĭhange the variable values to suit your environment. An optional form for people to request accounts (request emails are sent to an administrator).Self-service password change: non-admin users can log in to change their password.Secure password auto-generator: click the button to generate a secure password.Optionally send an email to the user with their new or updated account credentials.Setup wizard: this will create the necessary structure to allow you to add users and groups and will set up an initial admin user that can log into the user manager.It complements OpenLDAP containers such as osixia/openldap. It's designed to work with OpenLDAP and to be run as a container. It also has a self-service password change module. This is a PHP LDAP account manager a web-based GUI interface which allows you to quickly populate a new LDAP directory and easily manage user accounts and groups.
0 kommentar(er)
