This image expands on Crypt Server and allows it to leverage LDAP authentication. There are numerous customizations that are necessary - this image is in use and working for several AD environments, but may not 100% work in yours. You should mount your own
settings.py in the container, at least while figuring out what options you need. This image uses django-auth-ldap to connect to LDAP, so please refer to the documentation there if you need more details on the configuration options.
For full usage instructions for macadmins/crypt-server, please see its repository.
CRYPT_LDAP_SERVER_URI: The URI of your LDAP server. Defaults to
CRYPT_LDAP_BIND_DN: The distinguished name of your bind account.
CRYPT_LDAP_BIND_PASSWORD: The password for your bind account.
CRYPT_LDAP_USER_SEARCH: The search path for users.
CRYPT_LDAP_GROUP_SEARCH: The search path for groups.
CRYPT_LDAP_REQUIRE_GROUP: A group object to restrict login to.
CRYPT_LDAP_START_TLS: Set to
trueto use TLS. Defaults to
CRYPT_LDAP_USER_ATTR: The ldap attribute to identify the user. Defaults to
sAMAccountName- NOT WORKING, MUST EDIT
SETTINGS.PYTO MAKE THIS CHANGE CURRENTLY
CRYPT_LDAP_LOGGING: Set to
trueto enable logging of requests for debugging. Defaults to