Using LDAP (AD) for MySQL authentication

Please looks at https://dev.mysql.com/doc/relnotes/mysql/5.5/en/news-5-5-7.html

This is in the 5.5.7 release candidate


This is possible now with commercial extensions, e.g. with MySQL External Authentication for Windows:

This enables you to configure MySQL to use native Windows services to authenticate client connections. Users who have logged in to Windows can connect from MySQL client programs to the server based on the token information in their environment without specifying an additional password.


You can use the auth_ldap plugin provided by Infoscope Hellas L.P. under GPL.

It can be downloaded from sourceforge at: http://sourceforge.net/projects/mysqlauthldap/

Homepage: http://infoscope.gr/mysqlauthldap

The plugin is still a Beta and works only for UNIX installations.


this is possible with mysql proxy. there's a few things you need to know to make this work:

  • mysql proxy can execute shell commands
  • mysql proxy can intercept and rewrite authentication

these two pages will help you get started:

  • example of running a shell command: http://forge.mysql.com/tools/tool.php?id=79
  • example of intercepting and rewriting authentication: http://web.archive.org/web/20150329071023/http://jan.kneschke.de/2009/6/25/mysql-proxy-roles/