[ZendTo] Re: LDAP

Jules Jules at ZendTo.com
Tue Aug 3 15:57:55 BST 2010 


On 03/08/2010 15:48, Brad Beckenhauer wrote:
> Hi Jules,
> I noticed that there is 
> a authenticator /lib/NSSLDAPAuthenticator.php but the preferences.php 
> file does not have a corresponding section on implementing it.
I've never had an LDAP server to test it against. If you fancy 
contributing the section, then that would be much appreciated!
>    I have access to SLES servers that supports OPEN LDAP and thought 
> I'd give it a whirl instead of the AD or IMAP authenticators.
> The NSSADAuthenticator.php has a section on howto implement it in the 
> preferences.php file but the NSSLDAPAuthenticator.php does not have an 
> example.
It should be much the same as the AD one, as that uses LDAP anyway.
> I'm going to "try" configuring the LDAP Auth in the preferences.php as 
> I have SLES system I can authenticate against.
> I'm "guessing" that the preferences file needs something like the 
> below to work:
>   //
>   // Settings for the LDAP authenticator.
>   //
>   //  "authLDAPServers"     Array of hostnames to try binding to
>   //  "authLDAPBaseDN"      Base distinguished name for search/bind
>   //  "authLDAPAdmins"      Cheap way to grant admin privs to users; an
>   //                        array of uname's
>   'authenticator' => 'LDAP',
>   'authLDAPServers'          => array('192.168.1.1','192.168.1.2'),
>   'authLDAPBaseDN'           => 'ou=users,o=domain',
>   'authLDAPUseSSL'           => false, <<<<<  option does not appear 
> to be currently supported in v3.59
That looks good. If you gunzip the attached file and drop it on the top 
of your /opt/zendto/lib/NSSLDAPAuthenticator.php file, then you should 
get the "authLDAPUseSSL" option you want.
> Can the LDAP library be tweaked to allow the use of the authLDAPUseSSL 
> option in the preferences file? (If my humble interpretation that it 
> is not currently implemented is correct).
Done, see above.

If it works, please let me know and I'll put it in the next release.

Jules

-- 
Julian Field MEng CITP CEng
www.ZendTo.com

Need help fixing or optimising your systems?
Contact me!
Need help getting you started solving new requirements from your boss?
Contact me!

PGP footprint: EE81 D763 3DB0 0BFD E1DC 7222 11F6 5947 1415 B654
Follow me at twitter.com/JulesFM

-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://mailman.ecs.soton.ac.uk/pipermail/zendto/attachments/20100803/56616da1/attachment.html 
-------------- next part --------------
A non-text attachment was scrubbed...
Name: NSSLDAPAuthenticator.php.gz
Type: application/x-gzip
Size: 2296 bytes
Desc: not available
Url : http://mailman.ecs.soton.ac.uk/pipermail/zendto/attachments/20100803/56616da1/attachment.gz

More information about the ZendTo mailing list