This is an old revision of the document!
If you use X3 with ldap support (Or any services with ldap support) you can host a ZNC bouncer for all your users to use, by using ZNC's cyrusauth module. Here is how we build ZNC for afternet:
apt-get install sasl2-bin
/etc/defaults/saslauthd
:START=yes MECHANISM="ldap"
/etc/saslauthd.conf
:ldap_servers: ldaps://yourldapserver.domain ldap_search_base: ou=Users,dc=yourdomain,dc=org ldap_filter: (uid=%u) #ldap_tls_cacert_file: /etc/ssl/yourcertificate.cer
/etc/init.d/saslauthd start
testsaslauthd -u “yourldapuid” -p yourpassword -f /var/run/saslauthd/mux
/usr/sbin/saslauthd -a ldap -c -m /var/run/saslauthd -n 1 -d
/var/log/auth.log
and /var/log/daemon.log
ldapsearch -D "uid=youruid,ou=Users,dc=yourdomain,dc=org" -w yourpassword -H ldaps://ldapservername -b "ou=Users,dc=yourdomain,dc=org" -s sub "(objectclass=*)"
Assuming a debian 8 (jessie) base system:
sudo adduser yourzncuser sasl
log out and back indeb http://ftp.debian.org/debian jessie-backports main
to /etc/apt/sources.list. dont forget to sudo apt-get update
sudo apt-get build-dep znc
sudo apt-get install cmake
sudo apt-get install libicu-dev
sudo apt-get install swig3.0
sudo apt-get install libboost-all-dev
git submodule update –init –recursive
make
make install
bin/znc –makeconf
/msg *status load cyrusauth saslauthd webirc impersonation
/msg *controlpanel adduser zncclone somepassword
/msg *cyrusauth help
)cloneuser yourcloneusernamehere
createuser Yes
setimpersonateaccount znc somepassword
setNetworkName yournetwork
setServer irc.yournetwork.org 6697 ssl
set UserSalt somethingrandom
setWebIrc username password
setWebIrcHost .users.yournetwork.org
/msg *status load sasl
/msg *sasl help
):requireauth yes
mechanism PLAIN