This is a static dump of issues in the old "Flyspray" bugtracker for DokuWiki. Bugs and feature requests
are now tracked at the issue tracker at Github.
FS#2454 Extend Active-Directory logon for multi-domain environments
ACL & Authentication
Having Active-Directory authentication enabled in an multi-domain-environment (two or more ADs in a trust-relationship), there is currently no way (except using Single-Sign-On with Kerberos or NTLM) to choose the logon-domain. The username/password is sent by LDAP/LDAPS to a Domain-Controller configured and would fail if that user is not a member of this controller's domain.
Users which use their AD logon credentials to get into an Enterprise-Dokuwiki would expect to have a domain-popup, like on their Windows-box. Some (!) may use NTLM-notation like "DOMAIN\user" and even less use UPN-notation like "user@domain".
DW uses adLDAP as AD-Backend, which is really good. It should be able to determine the domains available and if so, DW should add a domain-selection-popup to the login-form. Anyway it should support entering the username in NTLM or UPN notation too.