An Apache session module was created by LL::NG team to store sessions in an LDAP directory.
Sessions will be stored as LDAP entries, like this:
dn: cn=6fb7c4a170a04668771f03b0a4747f46,ou=sessions,dc=example,dc=com objectClass: applicationProcess cn: 6fb7c4a170a04668771f03b0a4747f46 description: [Base64 serialized data]
Go in the Manager and set the LDAP session module (Apache::Session::LDAP) in General parameters
» Sessions
» Session storage
» Apache::Session module
and add the following parameters (case sensitive):
Paramètres exigés | ||
---|---|---|
Nom | Commentaire | Exemple |
ldapServer | URI du serveur | ldap://localhost |
ldapConfBase | DN de la branche des sessions | ou=sessions,dc=example,dc=com |
ldapBindDN | Login de connexion | cn=admin,dc=example,dc=password |
ldapBindPassword | Mot-de-passe de connexion | secret |
Optional parameters | ||
Nom | Commentaire | Default value |
ldapObjectClass | Objectclass of the entry | applicationProcess |
ldapAttributeId | Attribute storing session ID | cn |
ldapAttributeContent | Attribute storing session content | description |
Restrict network access to the LDAP directory, and add specific ACL to session branch.
On peut utiliser différent login/mot-de-passe pour les serveurs en surchargeant les paramètres globalStorage
et globalStorageOptions
dans le fichier lemonldap-ng.ini.