The LDAP auth module of MoinMoin enables single-sign-on (SSO) - assuming you already have a LDAP directory with your users, passwords, email adresses. On Linux this could be some OpenLDAP server, on a Windows server (usually the domain controller) this is called "Active Directory" (short: AD). It works like this: User enters his name and password via moin's login action and clicks on the login button. On login, ldap_login auth module checks username/password against LDAP. If username/password is ok for LDAP, it creates or updates a user profile with values from ldap (name, alias, email) and creates a user object in the MoinMoin process, then it hands over to the next auth module... If username/password is not ok for LDAP, it vetoes the login and aborts the chain of login modules. Usually, you want to use moin_session as the final auth module to establish the session with the user. It uses a cookie to keep the session and create the user object on all subsequent non-login requests.

You need to install python-ldap module (and everything it depends on, see its documentation). You need an LDAP or AD server. :)

Put this into your wiki config (indented in the same way as the other settings there):

MoinMoin support does not know your LDAP server setup, so please follow these steps before asking for help: Use ldap_verbose and look into your log filethis file is into your wiki data dir. Verify your settings and your user/password by e.g. using ldapsearch to query your LDAP server. /!\ As long as you don't manage talking to your LDAP server with such a tool, you don't need to try with MoinMoin. Ask the administrator of your LDAP/AD server for help / for correct settings. Maybe look into MoinMoin/auth/ldap_login.py, if you can debug or fix your problem there. /!\ Only ask MoinMoin support if you successfully used ldapsearch (or some similar tool) and you double checked your wiki config and it does still not work with moin.