diff --git a/master.html b/master.html index a8b08b18..6fa307c3 100644 --- a/master.html +++ b/master.html @@ -879,6 +879,8 @@ server.

http_x_remote_user : Takes the username from the X-Remote-User HTTP header and disables HTTP authentication. This can be used to provide the username from a reverse proxy.

+

ldap : Use a LDAP or AD server to authenticate +users.

Default: none

@@ -919,6 +921,41 @@ entry.

Message displayed in the client when a password is needed.

Default: Radicale - Password Required

+
+
ldap_uri
+

The URI to the ldap server

+

Default: ldap://localhost

+
+
+
ldap_base
+

LDAP base DN of the ldap server. This parameter must be provided if +auth type is ldap.

+

Default:

+
+
+
ldap_reader_dn
+

The DN of a ldap user with read access to get the user accounts. This +parameter must be provided if auth type is ldap.

+

Default:

+
+
+
ldap_secret
+

The password of the ldap_reader_dn. This parameter must be provided +if auth type is ldap.

+

Default:

+
+
+
ldap_filter
+

The search filter to find the user DN to authenticate by the +username. User '{0}' as placeholder for the user name.

+

Default: (cn={0})

+
+
+
ldap_load_groups
+

Load the ldap groups of the authenticated user. These groups can be +used later on to define rights.

+

Default: False

+
lc_username

Сonvert username to lowercase, must be true for case-insensitive auth