Skip to page content

亞洲太平洋地區 (Chinese Traditional) 變更

Recommended Changes for LDAP Authentication with EZproxy 4.0a

When updating to EZproxy 4.0a GA (2006-08-02) or later, OCLC recommends that sites that use LDAP and do not currently handle the Refused, Invalid, or Expired conditions add the line:

IfUnauthenticated; Stop

after the URL line to minimize the interaction with other user.txt/ezproxy.usr directives, such as changing:

::LDAP
BindUser CN=ezproxy,CN=users,DC=yourlib,DC=org
BindPassword verysecret
URL ldap://ldapserv.yourlib.org/CN=users,DC=yourlib,DC=org?sAMAccountName?sub?(objectClass=person)
Group General
Member CN=Law,CN=Users,DC=yourlib,DC=org; Group +Legal
/LDAP

to

::LDAP
BindUser CN=ezproxy,CN=users,DC=yourlib,DC=org
BindPassword verysecret
URL ldap://ldapserv.yourlib.org/CN=users,DC=yourlib,DC=org?sAMAccountName?sub?(objectClass=person)
IfUnauthenticated; Stop
Group General
IfMember CN=Law,CN=Users,DC=yourlib,DC=org; Group +Legal
/LDAP

If you are unclear whether or not this applies to your configuration, please contact support@oclc.org for assistance.