This was easy enough to set up once I found some examples.... Since I'm running Apple's OpenDirectory (LDAPv3) to maintain my users and passwords for all my machines, I figured I'd do it for DSPAM as well, so that I don't have to always maintain an .htpasswd file with encrypted passwords

Here's what I put in my .htaccess file within my dspam.cgi directory...

AuthType Basic
AuthName LDAP
AuthBasicProvider ldap
AuthzLDAPAuthoritative on
AuthLDAPURL ldap://localhost:389/cn=users,dc=gamura,dc=intranet,dc=net
require ldap-user "user1"
require ldap-user "user2"
require ldap-user "user3"

Please note, I was unsuccessful getting it to work with require "valid-user"

Greg

I was unable to get the DSPAM website working as well for authenticated users, but I was trying to authenticate against the users in the database. I know very little of LDA so I can't really help you out there. I hope someone else could be of some assistance ?

Oh, maybe I wasn't clear ... I got LDAP authentication working with the previous post ... it's just a little clunky that you have to specify all the users who can access it ... but it does use ldap when it looks up their passwords.

Greg

So you got it working but you'll have to add all the users manually to .htaccess !

Nice X-D