-
Notifications
You must be signed in to change notification settings - Fork 67
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Search LDAP Error. #16
Comments
Hi The PHP |
It's weird, because the Apache VirtualHost authentication is also using LDAP and it's the same user that I have in the config.ini, and the LDAP URL is the following:
Now using the account that is in the group ska-administrator in my Active Directory, I can easily enter the page as an administrator, the problem is when another normal user wants to enter to enter your key and make access requests. Any ideas that you can give me to continue reviewing? I would thank you a lot |
this is my LDAP configuration
My account is in the group ska-administrator and I can access without problem, and another account is in ska-members but can not access. |
Well, leaving aside the original problem at the moment, you seem to have misunderstood the |
I left the group_member configuration as it came from the factory, but I still show the same error, with a normal AD user I can not enter the SKA.. |
I did a test, configure the dn_user as:
and now the error indicates that it does not exist.
Now change the dn_user to exactly where the account is:
and the account entered the SKA without problems. I left the dn_user as I had originally:
And the account re-enters without problem, I think this does so because the account was already created in the DB, because if I use another AD account I have the same problem as before and I am sure that if I reconfigure the dn_user exactly where this new account is, I will have a successful access. |
Yes, since the application isn't doing any authentication itself (that is handled by Apache), the application is only using LDAP to get information about the user which is then stored (cached) in the database. You can trigger an update of this stored information by running the It is still strange that |
Try modifying the file See if that helps at all. |
Nice !!! that was, now it works perfectly !!! Thank you very much Thomas !, you could place an option in the config.ini indicating if the LDAP is windows AD or not Best Regards! |
Yes, I plan to add an option for this. Glad to hear it worked. |
How referrals work: http://umich.edu/~dirsvcs/ldap/doc/other/ldap-ref.html When they cause problems: https://bugs.php.net/bug.php?id=30670 Resolves: #16
Some time ago I installed SKA and it worked for me, but the access had it defined to a certain OU of my Active Directory, I want to expand the Scope of search but I have an error.
My config is this way
Checking I saw that they use the user_id as filter in ldap_search, and debug how that filter arrived and it arrives in this way,
string(26) "sAMAccountName=rgiusti.bbr"
but since the DN is global and not a specific OU, it does not find the user:
Any way to make the search be in all the OUs of my Active Directory tree?
Thank you very much!
The text was updated successfully, but these errors were encountered: