Simplicity is the ultimate sophistication

Time is a tangled web. Try not to dwell on all the loose ends..

Multiple Active Directory on Subversion in CentOS

There are several sub-domains in my company, I cannot figure out how to config it on the subversion in centos. There are too many discussions on internet, following are help me to set it up.

https://groups.google.com/forum/?hl=en#!topic/comp.infosystems.www.servers.unix/9Kr56P_gztI

1
2
3
4
5
SOLVED. see this thread for more details:
http://mail-archives.apache.org/mod_mbox/httpd-users/200606.mbox/%3cCF83BAA719FD2C439D25CBB1C9D1D30203B5E0ED@HQ-MAIL4.ptcnet.ptc.com%3e

in short - use global catalog (http://tinyurl.com/pbhhr) instead of
domain-level lookup. in order to do this, use port 3268 instead of 389.

and this one

following is my configuration, all in subversion.conf

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
<AuthnProviderAlias ldap adtw>
  AuthLDAPURL "ldap://TWXX:3268/dc=tw,dc=XX,dc=org?sAMAccountName?sub?(objectClass=*)" 
  AuthLDAPBindDN XXph\ACOOUNT
  AuthLDAPBindPassword "PASSWORD"
</AuthnProviderAlias>

<AuthnProviderAlias ldap adph>
  AuthLDAPURL "ldap://PHXX:3268/dc=ph,dc=XX,dc=org?sAMAccountName?sub?(objectClass=*)"
  AuthLDAPBindDN XXph\ACOOUNT
  AuthLDAPBindPassword "PASSWORD"
</AuthnProviderAlias>

<AuthnProviderAlias ldap adus>
  AuthLDAPURL "ldap://USXX:3268/dc=us,dc=XX,dc=org?sAMAccountName?sub?(objectClass=*)"
  AuthLDAPBindDN XXph\ACOOUNT
  AuthLDAPBindPassword "PASSWORD"
</AuthnProviderAlias>

<AuthnProviderAlias ldap adjp>
  AuthLDAPURL "ldap://jpXX:3268/dc=jp,dc=XX,dc=org?sAMAccountName?sub?(objectClass=*)"
  AuthLDAPBindDN XXph\ACOOUNT
  AuthLDAPBindPassword "PASSWORD"
</AuthnProviderAlias>

<Location /svn>
DAV svn
SVNParentPath /var/www/svn
SVNListParentPath on
AuthBasicProvider adtw adph adus adjp
AuthType Basic
AuthzLDAPAuthoritative off
AuthName "Subversion repositories"
Require valid-user
</Location>