#55 LDAP Authentication against W2K Active Directory (AD)

1.3.x
closed
nobody
None
5
2012-10-11
2003-05-15
Norberto Meijome
No

Hi,
This is based off 1.3.4 distribution.

I found that I needed to provide several other bits of
information to ldap to connect and authenticat against
AD properly, given my situation:

1) Windows Domain locked down to not allow anonymous
connections to search the LDAP
2) Given 1), I had to provide username (in LDAP
format)+ password to connect to the server first. This
was not as simple as say 'CN=USERNAME,OU=USERS" as I've
reorganised our AD tree to match our structure.

There are 2 group of changes :
to index.php : added new variables that I found I
needed. Example settings set.

to lib/WikiUser.php : ( Commented out with an if
(false) the ldap implementation in 1.3.4) . Added
slightly some options to LDAP (protocol version,etc),
and using the new variables defined in index.php

Hope it helps. Feel free to get in touch w/me for more
testing in AD.

Haven't tested connecting to AD over SSL yet.

Discussion

  • LDAP_AD Authentication, additions to 1.3.4's index.php

     
  • Reini Urban
    Reini Urban
    2004-03-08

    Logged In: YES
    user_id=13755

    will not be fixed in WikiUser.php (v1.3.4), but the
    WikiUserNew.php code tree has this functionality enabled,
    based on John Cole's patches.