Authentication: Difference between revisions

Latest revision as of 10:11, 18 October 2011

Authentication is the process of allowing a user to login to a Moodle site based on their username and password.

Authentication plugins

Moodle provides a number of ways of managing authentication, called authentication plugins.

Manual accounts - accounts created manually by an administrator
No login - suspend particular user account
Email-based self-registration - for enabling users to create their own accounts
CAS server (SSO) - account details are located on an external CAS server
External database - account details are located on an external database
FirstClass server - account details are located on an external FirstClass server
IMAP server - account details are located on an external IMAP server
LDAP server - account details are located on an external LDAP server
Moodle Network authentication - how different Moodle sites can connect and authenticate users
NNTP server - account details are located on an external NNTP server
No authentication - for testing purposes only
PAM (Pluggable Authentication Modules) - account details come from the operating system Moodle is running on, via PAM (can only be used Linux/Unix).
POP3 server - account details are located on an external POP3 server
RADIUS server - account details are located on an external RADIUS server
Shibboleth - account details are located on an external Shibboleth server
Web services authentication

@@ Line 1: / Line 1: @@
-== Email-based authentication ==
+{{Managing a Moodle site}}
+Authentication is the process of allowing a user to login to a Moodle site based on their username and password.
-Email confirmation is the default authentication method. When the user signs up, choosing their own new username and password, a confirmation email is sent to the user's email address. This email contains a secure link to a page where the user can confirm their account. Future logins just check the username and password against the stored values in the Moodle database.
+==Authentication plugins==
-== Manual accounts only ==
+Moodle provides a number of ways of [[Managing authentication|managing authentication]], called ''authentication plugins''.
-This method removes any way for users to create their own accounts. All accounts must be manually created by the admin user.
+*[[Manual accounts]] - accounts created manually by an administrator
+*[[No login]] - suspend particular user account
+*[[Email-based self-registration]] - for enabling users to create their own accounts
+*[[CAS server (SSO)]] - account details are located on an external CAS server
+*[[External database authentication|External database]] - account details are located on an external database
+*[[FirstClass authentication|FirstClass server]] - account details are located on an external FirstClass server
+*[[IMAP authentication|IMAP server]] - account details are located on an external IMAP server
+*[[LDAP authentication|LDAP server]] - account details are located on an external LDAP server
+*[[MNet|Moodle Network authentication]] - how different Moodle sites can connect and authenticate users
+*[[NNTP authentication|NNTP server]] - account details are located on an external NNTP server
+*[[No authentication]] - for testing purposes only
+*[[PAM (Pluggable Authentication Modules)]] - account details come from the operating system Moodle is running on, via PAM (can only be used Linux/Unix).
+*[[POP3 server]] - account details are located on an external POP3 server
+*[[RADIUS authentication|RADIUS server]] - account details are located on an external RADIUS server
+*[[Shibboleth]] - account details are located on an external Shibboleth server
+* Web services authentication
-== No authentication ==
+==See also==
-Users can sign in and create valid accounts immediately, with no authentication against an external server and no confirmation via email. Be careful using this option - think of the security and administration problems this could cause.
+*[[Authentication FAQ]]
-== PAM (Pluggable Authentication Modules) ==
+[[Category:Authentication]]
-This method uses PAM to access the native usernames on this server. You have to install PHP4 PAM Authentication in order to use this module.
+[[eu:Erabiltzaileen_autentifikazioa]]
+[[fr:Authentification]]
-== Shibboleth ==
+[[de:Authentifizierung]]
+[[ja:認証]]
-Using this method users are created and authenticated using Shibboleth.
-Be sure to read the README for Shibboleth on how to set up your Moodle with Shibboleth.
-== Use a CAS server (SSO) ==
-This method uses a CAS server (Central Authentication Service) to authenticate users in a Single Sign On environment (SSO). You can also use a simple LDAP authentication. If the given username and password are valid according to CAS, Moodle creates a new user entry in its database, taking user attributes from LDAP if required. On following logins only the username and password are checked.
-== Use an LDAP server ==
-This method provides authentication against an external LDAP server. If the given username and password are valid, Moodle creates a new user entry in its database. This module can read user attributes from LDAP and prefill wanted fields in Moodle. For following logins only the username and password are checked.
-[[Category: Administrator]]

Documentation

Authentication: Difference between revisions

Latest revision as of 10:11, 18 October 2011

Authentication plugins

See also