LDAPAccountManager/lam
Roland Gruber a57406488b print LDAP error if add failed 2003-10-11 15:23:08 +00:00
..
config fixed default user profile 2003-10-09 15:35:25 +00:00
docs some security documentation 2003-10-02 18:15:42 +00:00
graphics added check for filters; replaced select all image 2003-10-01 15:16:37 +00:00
help added some text to help (username) 2003-10-07 18:39:44 +00:00
lib added comments, removed double checks, removed session related bug 2003-10-11 12:17:28 +00:00
locale/de_DE/LC_MESSAGES translation update 2003-09-24 20:28:06 +00:00
po removed unused files 2003-09-17 17:30:06 +00:00
sess updated .htaccess files 2003-07-14 10:55:50 +00:00
style changed default legend color 2003-09-21 19:05:13 +00:00
templates print LDAP error if add failed 2003-10-11 15:23:08 +00:00
tests added password hash setting 2003-10-04 12:34:19 +00:00
tmp disable directory listing 2003-09-28 17:47:51 +00:00
COPYING License information 2003-02-21 22:17:59 +00:00
HISTORY added plain text passwords, fixed empty passwords 2003-10-05 10:51:01 +00:00
INSTALL added links for mhash/mcrypt 2003-10-06 12:42:34 +00:00
README added security part 2003-08-10 09:49:30 +00:00
TODO updated TODO 2003-10-09 12:30:17 +00:00
index.html Quotas and profiles should work now 2003-09-28 13:30:31 +00:00
session-vars.txt added session info 2003-10-01 12:14:04 +00:00

README

LAM - Readme
============

  A set of PHP-scripts to administrate Unix and Samba accounts in a LDAP server.
  LAM runs on any webserver with PHP4 support and connects to your LDAP server
  unencrypted or via SSL.
  The application manages accounts for users, groups and Samba hosts in
  multiple organizational units. LAM supports the Samba 2.x schema and the
  Samba 3 schema.

  alpha Release 0.3 - August 2003
  ------------------------------
  http://sourceforge.net/projects/lam/

    Copyright (C) 2003 Michael Duergner <michael@duergner.com>
                       Roland Gruber <mail@rolandgruber.de>
                       Tilo Lutz <tilolutz@gmx.de>
                       Leonhard Walchshäusl <dechutes@gmx.net>

    This program is free software; you can redistribute it and/or modify
    it under the terms of the GNU General Public License as published by
    the Free Software Foundation; either version 2 of the License, or
    (at your option) any later version.

    This program is distributed in the hope that it will be useful,
    but WITHOUT ANY WARRANTY; without even the implied warranty of
    MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
    GNU General Public License for more details.

    You should have received a copy of the GNU General Public License
    along with this program; if not, write to the Free Software
    Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA  02111-1307  USA

  Requirements:
    PHP4
    Openldap (2.0 or greater)
    A web-browser that supports CSS (Netscape 4.x is not recommended)

  Summary:
    With LAM you can easily manage user, group and machine accounts stored in
    a LDAP server over a web interface. At the moment it supports:

      - displaying the user/group/host/domain entries
      - deleting entries
      - adding new entries
      - editing entries
      - filtering and sorting
      - account profiles
      - access management
      - multiple configuration profiles
      - OU Editor
      - User creation via file upload
      - Samba 2 and 3 schema support

  Important:
    The standard password to edit the configuration options is "lam".

  Download:
    You can get the newest version at http://sourceforge.net/projects/lam/

  Installation:
    Please see the INSTALL file.

  Known Bugs:
    - If you fill in the Unix workstations field the LDAP add/modify operation
      may fail. This is because the host attribute is provided only by
      objectClass account which conflicts with inetOrgPerson.
      If you want to use host restrictions, add the host attribute to
      inetOrgPerson in your schema file.

  Documentation:
    Basic documentation available in /docs

  Internationalization:
    If you want to use a translated version of LAM be sure to install the
    needed locales. See locale/ for a list of supported locales.
    Debian users can add locales with "dpkg-reconfigure locales".

  Security:
    It is strongly recommended to use a SSL connection to your web server.

    LAM needs to store your LDAP username + password in the session. The session
    files are saved in sess/ and are accessible only by the web server. To increase
    security username and password are encrypted with AES (256 bit). The key and iv
    are generated at random when you log in. They are stored in two cookies.
 

    Have fun!
        The LAM devel team