Autenticación FAQ

De MoodleDocs

Esta página necesita actualizarse con la información existente en la documentación vigente/moderna/actualizada en el idioma inglés original para Moodle. Se le sugiere al lector que consulte la página original en idioma inglés cuyo enlace está al fondo de esta página. y que, por favor, actualice esta información y quite la plantilla {{Actualizar}} cuando haya terminado.     (otras páginas pendientes de actualizar)


Nota: Esta es una traducción de una página de la documentación en idioma Inglés (Docs), que se considera particularmente importante, y que en su versión original se actualiza frecuentemente. Por ello, se le recomienda que revise la página original en idioma inglés: Authentication FAQ.

Nota: Pendiente de Traducir. ¡Anímese a traducir esta página!.     ( y otras páginas pendientes)


Preguntas generales

¿Qué es un plugin de autenticación?

Un plugin de autenticación es un método para manejar la autenticación del usuario para Moodle cuando los usuarios ingresan a su sitio. Esto significa, en el sentido práctico más usual, parear/emparejar/asociar un nombre_de_usuario con su contraseña.

Usted puede tener uno o más métodos habilitados al mismo tiempo en su sitio, pero cada usuario debe usar solamente un método de autenticación a la vez. Así, Usted puede tener Autenticación manual para algunos usuarios, LDPA para otros, Shibboleth para otros más, pero cada usuario se autentica con solamente uno de éstos métodos.

Vea Autenticación para conocer la lista de estos métodos diferentes y su uso y configuraciones.

¿Puedo tener más de un método para autenticación?

Si, Usted puede habilitar y configurar cuantos métodos como Usted necesite para sus usuarios en Administración del sitio > Plugins > Autenticación > Gestionar autenticación. Tome nota de que EL ORDEN de procesamiento en ésta página SI IMPORTA y, después de Autenticación manual y Sin ingreso, Usted debería de poner el método que tendrán la mayoría de los usuarios. Vea Gestionando autenticación para los detalles.

¿Puede un usuario tener más de un método de autenticación?

No, una cuenta de un usuario solamente tiene un método de autenticación a la vez. Usted puede cambiarle éste método a un usuario, pero Usted también necesitará manejar asuntos como la contraseña, etc, que se originen por éste cambio.

Preguntas acerca de Auto-registro y registro manual

¿Cómo habilito el botón para "Crear cuenta nueva" en lapágina para ingreso?

To display the "Is this your first time here?" instructions and the "Create new account" button:

  1. Make sure that the plugin para Auto-registro basado en Email (or any other plugin that can support self-registration, such as LDAP) is enabled in Site administration > Plugins > Authentication > Gestionar autenticación.
  2. Select the self-registration plugin in the Common settings.

Warning: Enabling self registration results in the possibility of spammers creating accounts in order to use forum posts, blog entries etc. for spam. See Minimizar el spam en Moodle for ways of minimizing the risk.

¿Cómo puedo cambiar las instrucciones de "¿Es esta su primera vez aquí?" ?

This message can be customized in Site administration > Plugins > Authentication > Manage authentication > Common Settings > Instructions.

Note that this message only applies to certain Authentication methods, such as Manual and Self-registration, and not all. It does not apply to most external methods that pull users from external lists (LDAP, etc.).

Multiple languages

If you need to provide custom instructions in more than one language, then you should use the older method of setting this, by editing each language pack using Site administration > Language > Language customisation.

There are two strings you can edit:

String Standard text
firsttime Is this your first time here?
loginsteps Hi! For full access to courses you'll need to take a minute to create a new account ...

See https://docs.moodle.org/29/en/Language_customisation for more information.

¿Cual es la diferencia entre el plugin de autenticación por auto-registro basado en Email y seleccionarlo como el método de auto registro?

The difference is that self-registration is the general term for having a user create an account themselves. There could be many ways to do that, for instance to allow users to sign up with no email at all. Almost all web applications theses days, however, require users to first confirm their email address. This is to prevent spam accounts and other security issues. Moodle has only one type on self-registration currently, which is email-based.

Therefore: to allow users to create self-registered accounts, you must do two things:

  1. Enable plugin para Auto-registro basado en Email to allow such users to be able to log in.
  2. Set Site administration > Plugins > Authentication > Managing authentication > Common settings > Self registration from Disable to Email-based self-registration to allow potential users to create their accounts.

This division of labor into two settings means that it is possible to Disable Self-registration to prevent accounts, but as long as the Authentication method Email-self registration is still enabled, users will still be able to login and use their accounts.

You could do this in a case where you may wish to allow signup for a limited period (a day, week, month) to allow users to self-create their accounts, then Disable creating new accounts while allowing the already created users to log in.

¿Cómo puedo impedir cuentas spam si uso el Auto-registro?

Warning: Enabling self registration results in the possibility of spammers creating accounts in order to use forum posts, blog entries etc. for spam. This risk can be minimized by limiting self registration to particular email domains with the allowed email domains setting in Site administration > Plugins> Authentication > Gestionar autenticación. Alternatively, self registration may be enabled for a short period of time to allow users to create accounts, and then later disabled.

Vea también: Minimizar el spam en Moodle

¿Porqué no está mandando Emails el Auto-Registro basado en Email?

Email based sends out an email with a message and confirmation link to users when they sign up. Possible reason why this make not be working, and also a useful order to troubleshoot this, is:

  1. Is email working at all from Moodle for other features such as forum posts? If not, check that you have Mensajería enabled and that your Configuraciones de mensajería are set.
  2. Is email for new sign ups working? You can test this yourself by signing up with a dummy test user and a valid email.
  3. Has the user checked their spam or junk folder? The email comes by default from your Moodle administrator account, and it is not uncommon for that to be flagged by some systems as potential spam.
  4. Did the user make a typo or other error in their email address or are they using the wrong account?

Some good troubleshooting advice is here: [1]

¿Puede Usted arreglar que los administradores sean notificados acerca de los nuevos registros?

If you are creating ONE manual account, then no.

Bulk upload can be set up to send e-mails: see the discussion here: http://moodle.org/mod/forum/discuss.php?d=85333 (Which includes a code hack to do this as well. (Also http://moodle.org/mod/forum/discuss.php?d=125000)

Otros métodos de autenticación

¿Cómo configuro una autenticación LDAP?

Vea Autenticación LDAP para las instrucciones completas.

¿Cómo se usa el plugin de autenticación de "Sin ingreso"?

El plugin de autenticación de Sin ingreso puede usarse para suspender cuentas particulares de usuarios. Esto significa que el usuario no podrá ingresar a Moodle, pero su cuenta por lo demás está inalterada.

Note: Users will not receive any error or other message when they try to log in but it simply will not allow them in. So it will appear as though their password was incorrect and they may attempt to reset it. Consider this issue when using No login, in order to reduce support issues.

To do so:

  1. Access the user's profile page.
  2. In the Settings block, click "Edit profile".
  3. Select "No login" as the authentication method. (If the setting isn't shown, click the "Show advanced" button to reveal it.)
  4. Click the "Update profile" button at the bottom of the page.

¿Puedo cambiar las cuentas manuales a LDAP?

Yes. You can change any user account from one authentication method to another in Moodle, but you are of course responsible for making sure that the information matches and is valid in the new method.

You can set this manually for each user in their user profile by changing the "Authentication" field. This can also be changed en masse for many users by using the User file upload tool Subir usuarios and changing the field called "auth".

See this blog post on Changing manual accounts to LDAP using MySQL database and this ad-hoc query https://docs.moodle.org/29/en/ad-hoc_contributed_reports#List_of_users_with_Authentication.

¿Cómo puedo permitir que los usuarios se salten NTML SSO?

When NTLM SSO is enabled on a Moodle site the SSO function always logs the user who is logged into the computer into Moodle. Sometimes you may need to override this feature and login to Moodle as another user. Example: when a teacher or site administrator needs to login to the students computer to troubleshoot a problem. Or the teacher simply needs to access functionality that is not available to the student and the teacher is not anywhere near her own computer.

The problem is that the Moodle logout option is not available when SSO is enabled - the user simply gets logged back into Moodle. To bypass the SSO you can add this to the url:

/login/index.php?authldap_skipntlmsso=1

Example: http://yourschool.com/login/index.php?authldap_skipntlmsso=1

The NTLM SSO will be disabled (for this login only) and you will get the regular Moodle login page.

warning.png Advertencia: This bypass won't work if you have the Política del sitio para Forzar a que los usuarios ingresen enabled. In that case, SSO is applied to all pages on the site, including the log in and log out pages.

See the Using Moodle Bypass NTML SSO for Moode 2.2 forum discussion for details.

Otras preguntas

¿Cómo pueden los estudiantes jóvenes o cómo pueden otros usuarios sin direcciones Email crear cuentas nuevas Moodle?

You can either use a fake email address when you upload the CSV file of your young students - or - you can use the Subir usuarios file upload tool to get around this, as follows

  1. Upload a CSV file without an email field.
  2. When previewing the accounts, set "Prevent email address duplicates" to No.
  3. In "Default values", type in an email address.
  4. When the users are uploaded, they will all have the same email address. (It will say "duplicated" but the accounts will work)

Ve atambién No Email.

¿Donde se almacenan los detalles de los usuarios?

Basic user account information, the required fields of username, first name, last name, and email address, which allow a user to be known to Moodle and are stored in the Moodle database. How much other user profile information is stored depends on the authentication method used for that user, and whether that information is stored externally to Moodle in another system. All user activity done in Moodle, e.g., course enrollments, grades, and so forth are stored in Moodle.

"Internal" users are those who are created directly in Moodle and whose information is not directly linked to or synchronized with any other system. Manual and self-registration authentication methods are internal.

"External" users are those whose user account information is based in another system and is synchronzied or referenced by Moodle when needed. LPAD, External database, CAS, Shibboleth, etc. are examples of external methods.

How can I have users logging in with their email address?

This is set in Site administration > Plugins > Authentication > Manage authentication > Common settings > Allow login via email. This feature was added in Moodle 2.7.

¿Cómo puedo yo crear un plugin de autenticación?

Vea Development:Authentication plugins.

Vea también



DOCUMENTACIÓN MUY ANTIGUA, PARA REVISAR Y ELIMINAR

¿Qué es un plugin de autenticación?

An authentication plugin is a method of handling user authentication i.e. enabling certain people to login to your Moodle site.

¿Cómo habilito el botón para "Crear nueva cuenta"en la página de ingreso?

To display the "Is this your first time here?" instructions and the "Create new account" button:

  1. Asegúrese de que el plugin para Auto-registro basado en Email (or any other plugin that can support self-registration, such as LDAP) is enabled in Settings>Site administration > Plugins > Authentication > Gestionar autenticación.
  2. Select the self-registration plugin in the Common settings.

Warning: Enabling self registration results in the possibility of spammers creating accounts in order to use forum posts, blog entries etc. for spam. See Minimizar el spam en Moodle for ways of minimizing the risk.

¿Cómo puedo cambiar las instruccines para "¿Es ésta su primera vez aquí?" ?

  1. Access Settings > Site administration > Plugins > Authentication > Manage authentication.
  2. Write the instructions in the auth_instructions text field.
  3. Click the "Save changes" button at the bottom of the page.

An alternative method of providing custom login instructions is to edit the default login instructions using the language customization feature. This method should be used if you wish to provide custom login instructions in more than one language. See Gestionar autenticación for further details.

¿Cómo configuro la autenticación LDAP?

See Autenticación LDAP for full instructions.

¿Cómo se usa el plugin de "Sin ingreso"?

The Sin ingreso authentication plugin can be used to suspend particular user accounts. To do so:

  1. Access the user's profile page.
  2. In the Settings block, click "Edit profile".
  3. Select "No login" as the authentication method. (If the setting isn't shown, click the "Show advanced" button to reveal it.)
  4. Click the "Update profile" button at the bottom of the page.

What is the difference between enabling the email-based self-registration auth plugin and selecting it as the self registration method?

El plugin para el Auto-registro basado en Email must be enabled to allow users who previously self-registered to login.

Selecting email-based self-registration as the self registration method allows potential users to self register.

Warning: Enabling self registration results in the possibility of spammers creating accounts in order to use forum posts, blog entries etc. for spam. This risk can be minimized by limiting self registration to particular email domains with the allowed email domains setting in Settings > Site administration > Plugins> Authentication > Gestionar autenticación. Alternatively, self registration may be enabled for a short period of time to allow users to create accounts, and then later disabled.

There is some discussion about having admin approval or new accounts created this way here: http://tracker.moodle.org/browse/CONTRIB-1444

How can I create an authentication plugin?

See Development:Authentication plugins.

How can students without email addresses create new Moodle accounts?

Vea Sin Email.

My students are too young to have emails, but it's a required field - what do I do?

You can either use a fake email address when you upload the CSV file of your young students - or -

  1. Upload a CSV file without an email field. When previewing the accounts, set "Prevent email address duplicates" to No.
  2. In "Default values", type in an email address.
  3. When the users are uploaded, they will all have the same email address. (It will say "duplicated" but the accounts will work)

Where are users' details stored?

Users' details can be stored in local Moodle database or externally.

If Users' details are stored in the local Moodle database, it is called "internal authentication". Storing users' details externally is called "external authentication".

Can you arrange for an e-mail to be sent to notify Users of new accounts?

If you are creating ONE manual account, then no.

See Feature request here: http://tracker.moodle.org/browse/MDL-19390

See discussion http://moodle.org/mod/forum/discuss.php?d=117005

Bulk upload can be set up to send e-mails: see the discussion here: http://moodle.org/mod/forum/discuss.php?d=85333 (Which includes a code hack to do this as well. (Also http://moodle.org/mod/forum/discuss.php?d=125000)

Can you arrange for Admins to be notified of new self registrations

See this discussion: http://moodle.org/mod/forum/discuss.php?d=212648

How can I have users logging in with their email address?

See this Forum thread: Logging in Using Email or Username

How can I allow users to bypass NTML SSO?

When NTLM SSO is enabled on a Moodle site the SSO function always logs the user who is logged into the computer into Moodle. Sometimes you may need to override this feature and login to Moodle as another user. Example: when a teacher or site administrator needs to login to the students computer to troubleshoot a problem. Or the teacher simply needs to access functionality that is not available to the student and the teacher is not anywhere near her own computer.

The problem is that the Moodle logout option is not available when SSO is enabled - the user simply gets logged back into Moodle. To bypass the SSO you can add this to the url:

/login/index.php?authldap_skipntlmsso=1

Example: http://yourschool.com/login/index.php?authldap_skipntlmsso=1

The NTLM SSO will be disabled (for this login only) and you will get the regular Moodle login page.

warning.png Advertencia: This bypass won't work if you have the Force users to login site policy enabled. In that case, SSO is applied to all pages on the site, including the log in and log out pages.

See the Using Moodle Bypass NTML SSO for Moode 2.2 forum discussion for details.

Vea también