Work at SourceForge, help us to make it a better place! We have an immediate need for a Support Technician in our San Francisco or Denver office.

Close

#343 LDAP-AD2008 Authentication

open
nobody
Help (1)
9
2014-02-18
2013-03-21
Anonymous
No

Hi, we have a trouble with this topic, we have spent a lot of time, can you help us please???
here is the log view and own config.inc.php

Thanks a lot! have a nice day!

*Log*

==> /var/log/httpd/intranet.cdf.cl-error_log <==
[Thu Mar 21 18:34:44 2013] [error] [client 192.168.1.71] authLdapAction: Got LDAP connection, referer: http://intranet.cdf.cl/salas/admin.php
[Thu Mar 21 18:34:44 2013] [error] [client 192.168.1.71] authLdapAction: Result of initial bind is , referer: http://intranet.cdf.cl/salas/admin.php
[Thu Mar 21 18:34:44 2013] [error] [client 192.168.1.71] authValidateUserCallback: base_dn 'ou=Users,dc=cdf,dc=local' dn '' user 'vcordova', referer: http://intranet.cdf.cl/salas/admin.php
[Thu Mar 21 18:34:44 2013] [error] [client 192.168.1.71] authValidateUserCallback: Bind to '' failed, referer: http://intranet.cdf.cl/salas/admin.php

==> intranet.cdf.cl-access_log <==
192.168.1.71 - - [21/Mar/2013:18:34:44 -0400] "POST /salas/admin.php HTTP/1.1" 200 9434
192.168.1.71 - - [21/Mar/2013:18:34:44 -0400] "GET /favicon.ico HTTP/1.1" 200 -

*config.php.inc*

$ldap_host = "ad2008";
$ldap_port = 389;

// If you do not want to use LDAP v3, change the following to false.
// This can be an array.
$ldap_v3 = true;

// If you want to use TLS, change the following to true.
// This can be an array.
$ldap_tls = false;

// LDAP base distinguish name.
// This can be an array.
$ldap_base_dn = "ou=mrbs,dc=cdf,dc=local"; <=== "What is 'ou='?"

// Attribute within the base dn that contains the username
// This can be an array.
$ldap_user_attrib = "uid"; <=== "here is uid or sAMAccountName?"

// If you need to search the directory to find the user's DN to bind
// with, set the following to the attribute that holds the user's
// "username". In Microsoft AD directories this is "sAMAccountName"
// This can be an array.
$ldap_dn_search_attrib = "sAMAccountName";

// If you need to bind as a particular user to do the search described
// above, specify the DN and password in the variables below
// These two parameters can be arrays.
$ldap_dn_search_dn = "cn=administrador,ou=Users,dc=cdf,dc=local"; <== the same"What is 'ou='?"

$ldap_dn_search_password = "sysadminxxxxxx";
$auth["admin"] = "administrador";

Thanks again for your time! and sorry for my english!

Víctor Córdova
Ingeniero Informático
Chile

Discussion


  • Anonymous
    2013-03-27

    Finally we did it!!

    Just changing in this line cn=administrador,ou=Users,dc=cdf,dc=local the "dc" instead "ou" in Users! like this: cn=administrador,dc=Users,dc=cdf,dc=local; we tested a command line first! ldap search ....

    Bye!

     
    Last edit: Anonymous 2014-03-22


Anonymous


Cancel   Add attachments