Hi,
i recently installed wikindx latest version on oracle linux and everything is installed and configured, once in the admin panel configuring LDAP authentication when i check the box that says enable ldap auth and enter the details server name, username and password etc and i click proceed i get with http 500 error. i tried to look into my logs in /var/log/error_log and the ssl error logs but i couldnt find anything related it just loads the primary page but whenever i try to login i stumble across the 500 error.
any help is appreciated thank you.
If you would like to refer to this comment somewhere else in this project, copy and paste the following link:
The function that is thrown up in the error message is not a WIKINDX function but part of the PHP LDAP library. If ldap_connect() cannot be found then it is likely that LDAP is not installed as part of your PHP.
I'll pass this to Stéphane who is more familiar with LDAP than I am.
Regards,
Mark
If you would like to refer to this comment somewhere else in this project, copy and paste the following link:
hey guys,
thank you for your quick reply i installed php-ldap and it works great, i installed sendmail as well but it seems not sending email too does it need any extension as well?
one more question i entered the LDAP base DN as my full Domain controller but it seems its looking for a bind user and will not accept any other login is this my side of config ? or did i miss something ?
If you would like to refer to this comment somewhere else in this project, copy and paste the following link:
Thanks for getting back to us Elie with the solution – we'll add some more helpful messages to that part of the configuration for future users.
I'll leave Stéphane to answer the other questions but you can test the email configuration – if not email is being sent, can you post here the response from the SMTP server?
Regards,
Mark
If you would like to refer to this comment somewhere else in this project, copy and paste the following link:
i noticed that whenever i enable the ldap auth i can no longer login using the super user i created once i configured wikindx the first time, any suggestions ?
If you would like to refer to this comment somewhere else in this project, copy and paste the following link:
To date it's all or nothing. There is no ldap -> native auth fallback or special case for the super administrator account. A fallback takes interest away from ldap. But I think that the super administrator should always identify himself with the native method or have a fallback just for him. To discuss with Mark.
Regards,
If you would like to refer to this comment somewhere else in this project, copy and paste the following link:
This code was contributed by a user. I know that there are several ways to do it, but I am not sufficiently informed to produce a code which allows all these forms.
If you would like to refer to this comment somewhere else in this project, copy and paste the following link:
After a ldap auth, the user is registered in wikindx and the super-admin is always registered in the wikindx db. It's just a matter of choising and documenting the right or least surprising behavior.
If you would like to refer to this comment somewhere else in this project, copy and paste the following link:
Hi,
i recently installed wikindx latest version on oracle linux and everything is installed and configured, once in the admin panel configuring LDAP authentication when i check the box that says enable ldap auth and enter the details server name, username and password etc and i click proceed i get with http 500 error. i tried to look into my logs in /var/log/error_log and the ssl error logs but i couldnt find anything related it just loads the primary page but whenever i try to login i stumble across the 500 error.
any help is appreciated thank you.
update i have enabled debugging from the portal and this error came up
Hi Elie,
Sorry to hear you are having problems. We will do our best to solve the issue.
Have you installed and enabled LDAP in your PHP?
See: https://www.php.net/manual/en/ldap.requirements.php
The function that is thrown up in the error message is not a WIKINDX function but part of the PHP LDAP library. If ldap_connect() cannot be found then it is likely that LDAP is not installed as part of your PHP.
I'll pass this to Stéphane who is more familiar with LDAP than I am.
Regards,
Mark
Hello Elie,
You need to install and enable the PHP LDAP extension PHP LDAP Doc in php.ini.
Something like : yum -y install php-ldap
+ adding "extension=ldap.so" to php.ini
But take this with a grain of salt because it depends on how the distribution works and PHP have been packaged, and I have never used Oracle.
Regards,
hey guys,
thank you for your quick reply i installed php-ldap and it works great, i installed sendmail as well but it seems not sending email too does it need any extension as well?
one more question i entered the LDAP base DN as my full Domain controller but it seems its looking for a bind user and will not accept any other login is this my side of config ? or did i miss something ?
The best response is in the code :
Thanks for getting back to us Elie with the solution – we'll add some more helpful messages to that part of the configuration for future users.
I'll leave Stéphane to answer the other questions but you can test the email configuration – if not email is being sent, can you post here the response from the SMTP server?
Regards,
Mark
hey Mark,
i will run some tests and get back to you with logs i am not using an smtp i am using a relay.
If your host relays to an other server, use the sendmail option and customize the sendmail path according to your distribution.
Last edit: Stéphane Aulery 2020-05-20
hey guys again,
i noticed that whenever i enable the ldap auth i can no longer login using the super user i created once i configured wikindx the first time, any suggestions ?
Hi Elie,
To date it's all or nothing. There is no ldap -> native auth fallback or special case for the super administrator account. A fallback takes interest away from ldap. But I think that the super administrator should always identify himself with the native method or have a fallback just for him. To discuss with Mark.
Regards,
so basically if i want to use the LDAP function the super administrator should be authenticated with AD for now ?
In the last stable version yes.
maybe a suggestion to create a seperate admin login that has its own table in DB for auth instead of being globaly integrated ?
and if possible to add CN as a group instead of an OU in the DN feild but its just an idea.
This code was contributed by a user. I know that there are several ways to do it, but I am not sufficiently informed to produce a code which allows all these forms.
After a ldap auth, the user is registered in wikindx and the super-admin is always registered in the wikindx db. It's just a matter of choising and documenting the right or least surprising behavior.
The next release will include a native fallback auth for the Super Adin, only.