This guide provided by Randy Carpenter

 

In order to configure Drupal as described in this guide you will need a GTED access account. If you don't have one, you may request one by filling out the Signup Form

 

Configure the LDAP Module
• The Drupal LDAP module (http://drupal.org/project/ldap_integration) has already been installed.
• Login as an admin on your Drupal instance.
• Go to 'Administer/Modules and enable all three LDAP Authentication modules.
• Go to Administer/Site Configuration/LDAP Authentication and use use these values:
• Select Add Server
• Under "'Server Settings'", use these values:
• Name: GTED
• LDAP server: ldaps://r.gted.gatech.edu
• LDAP port: 636
• Under Login Procedure, use these values:
• Base DNs: ou=Accounts,ou=gtaccounts,ou=departments,DC=GTED,DC=GATECH,DC=EDU
• UserName attribute: uid
• Email attribute: mail
• Under Advanced Configuration, use this value:
• DN for non-anonymous search: uid=your-gtedaccess-account,ou=Local Accounts,dc=gted,dc=gatech,dc=edu
• Where "your-gtedaccess-account" is a GTED lookup service account that you have requested through OIT
Make sure you are using HTTPS, since at that point users will be using GT credentials.

Configure the LDAP Group Module
• Select Site Configuration
• Select LDAP Groups
• Click Edit GTED
• Under Group by DN
• do nothing
• Under Group by Attribute
• Check Groups are specified by LDAP attributes (This maps LDAP attributes to Drupal Roles)
• Add gtAccountEntitlement to Attribute names field (Maps GT Account Entitlement to Drupal Role)
• Add gtPersonEntitlement to Attribute names field (Maps GT Person Entitlement to a Drupal Role)
• Under Group by entry
• do nothing
• click Update.
• Logout of local admin
• Login with a GT account in a GTED group that you want to use, then immediately log out (Drupal roles are not added until someone with that role logs in)
• Login with local admin again (now you can see the roles)
• Select Administer
• Select User Management
• Select Roles page,
• Locate the Role (group) you want
• Click edit permissions.
• Check off whatever permissions you like.
• Click Update