I recently migrated my Teamcity setup from using built-in authentication to authenticating against our Active Directory using the NTLM authenticator. This, of course, meant that the existing users became wiped out. I then started looking to see if it's possible for TC to automatically pull in the user details (email address, real name, etc.) out of AD, and I came across TW-6002 wherein Yegor says "you're better off using LDAP authenticaiton for that than using NTLM." He also pointed me to TW-1964 regarding the request for a user migration interface, and I also looked at http://devnet.jetbrains.net/thread/275653 regarding a possible manual migration method.
So, what I want to do is change the existing users where USERS.auth_type='NTDomainLoginModule' so that they are going to authenticate against LDAP. My question is, what should the realm be set to? I can see that I need to change the auth_type to be 'LDAPLoginModule', and that for the former locally-administered users the realm was NULL, but what should it be for LDAP-authenticated users? My thought is that the conversion seems to consist of:
- Shut down Teamcity
- Change TC so that it uses LDAP authentication rather than NTLM. Make sure that properties in ldap-config.properties are correct.
- Update the USERS table as follows:
4. Restart Teamcity.
Also, is there a way to specify that the Subversion username associated with a particular user is their login name in lowercase?
Is there anything I'm missing?