Configure authentication settings

Specify how you want to authenticate your Subversion Edge installation. You can authenticate against a local htpasswd file or against a corporate LDAP server.

  1. Select Administration in the main navigation bar and click Authentication.
  2. Select Anonymous Access to allow anonymous users to be able to check out repositories.
  3. Specify whether you want usernames to be converted to lower case for repository access rules. If you select Convert Usernames to Lower Case, you must enter all usernames in lower case while editing access rules in the Repository Access Rules page.
  4. To authenticate against a local htpasswd file, keep the default setting for Authentication Methods.
  5. Select LDAP authentication to authenticate against a corporate LDAP server. It is possible to select local as well as LDAP authentication. If both authentication methods are enabled, local authentication is tried first, and then LDAP authentication.

    You should contact your LDAP administrator for the best ways to configure LDAP support. Here are some examples:

    • LDAP Security Level: NONE establishes an unsecure connection on the default LDAP port. SSL establishes a secure connection on the default secure LDAP port. TLS/STARTTLS establishes an upgraded secure connection on the default LDAP port.
    • LDAP Server Host: the IP address or hostname of your directory server. Example, your.domain
    • LDAP Server Port: The default port 389 talks to the local directory server. To have Apache query the "Global Directory" on an Active Directory server, use port 3289.
    • LDAP Base DN: the distinguished name to the path in the directory tree that you want to search for users. Example, DC=your,DC=domain
    • LDAP Bind DN and LDAP Bind Password: the distinguished name and password of the user account that Apache uses to connect to the directory system to perform its user authentication. For example, "CN=ldapuser,CN=Users,DC=your,DC=domain" and ldappassword
    • LDAP Login Attribute: the attribute used to identify the user's login name. Example, sAMAccountName attribute for Active Directory.
    • LDAP Search Scope: tells the directory server how deep to query. Example, sub
    • LDAP Filter: tells the directory server to filter the query for the specified objects. For example, (objectClass=*) searches for all objects; (objectClass=user) searches for objects of type "user".
  6. Click Save.
Note: Since Subversion Edge 1.3, users can use their LDAP credentials to log into the Subversion server as well as the console. Upon first sign-in to the console, the LDAP user is created as a console user with ROLE_USER permissions. This user cannot be edited, but a Subversion Edge administrator can assign additional roles via the Edit Role screen to allow the user to administer the server using LDAP credentials.