[ZendTo] Re: AD Authentication Won't Work

Jules Jules at Zend.To
Wed Feb 2 15:55:35 GMT 2011 

That's often caused by the PHP session expiring, which is a sign of 
incorrect clock or time zone.

On 02/02/2011 15:50, Joshua F. Withrow wrote:
>
> I have started with it domain wide.  Once I could verify that was 
> working, I was going to narrow it.
>
> When I login it seems to authenticate, but gives me the info below.  I 
> had my co-worker login, (who is also designated as an admin) and it 
> showed him his dropoff menu, but when he clicked on anything it told 
> him that the feature he was attempting to access could only be 
> accessed by somebody authenticated...
>
> Description: MaTechLogo_80.jpg
>
> 	
>
> *Josh Withrow***
>
> Software Developer
>
> Office:410-548-1627 x154
>
> Email:jwithrow at matech.net <mailto:jwithrow at matech.net>
>
> *From:*zendto-bounces at zend.to [mailto:zendto-bounces at zend.to] *On 
> Behalf Of *JC Putter
> *Sent:* Wednesday, February 02, 2011 10:33 AM
> *To:* 'ZendTo Users'
> *Subject:* [ZendTo] Re: AD Authentication Won't Work
>
> How does your baseDN look like? Are you only allowing users 
> authenticate that are in a specific OU or are you allowing users 
> domain wide?
>
> *From:*zendto-bounces at zend.to [mailto:zendto-bounces at zend.to] *On 
> Behalf Of *Joshua F. Withrow
> *Sent:* 02 February 2011 04:59 PM
> *To:* 'ZendTo Users'
> *Subject:* [ZendTo] Re: AD Authentication Won't Work
>
> Sweet J  I am now connecting, and it lets me know at the bottom of the 
> screen that I have authenticated (it's pulling info from AD, like my 
> full username).  But it leaves me at the login screen and displays:
>
> Description: [error]
>
> 	
>
> *Authentication Error*
>
> The username or password was incorrect.
>
> Even though it tells me: *Version 3.63 | Copyright © 2010 | you are 
> currently logged in as /Joshua F. Withrow/*
>
> Any ideas appreciated J
>
> *From:*zendto-bounces at zend.to [mailto:zendto-bounces at zend.to] *On 
> Behalf Of *JC Putter
> *Sent:* Tuesday, February 01, 2011 4:13 PM
> *To:* 'ZendTo Users'
> *Subject:* [ZendTo] Re: AD Authentication Won't Work
>
> 'authenticator'             => 'AD',
>
>   'authLDAPAdmins'            => array('test'),
>
>   'authLDAPBaseDN1'           => 'DC=ad,DC=contoso,DC=com',
>
>   'authLDAPServers1'          => array('ad1.contoso.com'),
>
>   'authLDAPAccountSuffix1'    => '@contoso.com',
>
>   'authLDAPUseSSL1'           => false,
>
>   'authLDAPBindUser1'         => 
> 'CN=Administrator,CN=Users,DC=contoso,DC=com',
>
>   'authLDAPBindPass1'         => 'password,
>
>   'authLDAPOrganization1'     => 'Moore Stephens',
>
>   //'authLDAPBaseDN2'           => 'DC=soton,DC=ac,DC=uk',
>
>   //'authLDAPServers2'          => array(),
>
>   //'authLDAPAccountSuffix2'    => '@soton.ac.uk',
>
>   //'authLDAPUseSSL2'           => false,
>
>   //'authLDAPBindUser2'         => '',
>
>   //'authLDAPBindPass2'         => '',
>
>   //'authLDAPOrganization2'     => 'University of Southampton',
>
> This is a sample of my working config.....
>
> As Jules pointed out use ldapsearch to workout and troubleshoot using 
> connection to AD
>
> If you only have one domain, uncomment the rest and remove everything 
> in the array in authLDAPServer2
>
> ------------------------------------------------------------------------
>
> This message is the property of Machining Technologies, Inc (MaTech) 
> and the Information contained herein may be/is subject to the Code of 
> Federal Regulations Chapter 22 International Traffic in Arms 
> Regulations (ITAR). This data may not be resold, diverted, 
> transferred, transshipped, made available to a foreign national within 
> the United States, or otherwise disposed of in any other country 
> outside of its intended destination, either in original form or after 
> being incorporated through an intermediate process into other data 
> without the prior written approval of the US Department of State. The 
> information in this e-mail and subsequent attachments may contain 
> legally privileged, proprietary and/or confidential information that 
> is intended only for the use of the addressee(s).
> No addressee should forward, print, copy or otherwise reproduce this 
> message in any manner that would allow it to be viewed by any 
> individual not originally listed as the recipient. If you are not the 
> intended recipient, you are hereby notified that any disclosure, 
> copying, distribution, retention or use of the contents of this e-mail 
> information is prohibited. If you have received this communication in 
> error, please immediately notify the sender by telephone or return 
> e-mail and delete this e-mail. Thank You.
>
>
> ------------------------------------------------------------------------
> This message is the property of Machining Technologies, Inc (MaTech) 
> and the Information contained herein may be/is subject to the Code of 
> Federal Regulations Chapter 22 International Traffic in Arms 
> Regulations (ITAR). This data may not be resold, diverted, 
> transferred, transshipped, made available to a foreign national within 
> the United States, or otherwise disposed of in any other country 
> outside of its intended destination, either in original form or after 
> being incorporated through an intermediate process into other data 
> without the prior written approval of the US Department of State. The 
> information in this e-mail and subsequent attachments may contain 
> legally privileged, proprietary and/or confidential information that 
> is intended only for the use of the addressee(s).
> No addressee should forward, print, copy or otherwise reproduce this 
> message in any manner that would allow it to be viewed by any 
> individual not originally listed as the recipient. If you are not the 
> intended recipient, you are hereby notified that any disclosure, 
> copying, distribution, retention or use of the contents of this e-mail 
> information is prohibited. If you have received this communication in 
> error, please immediately notify the sender by telephone or return 
> e-mail and delete this e-mail. Thank You.
>
>
> _______________________________________________
> ZendTo mailing list
> ZendTo at zend.to
> http://mailman.ecs.soton.ac.uk/mailman/listinfo/zendto

Jules

-- 
Julian Field MEng CITP CEng
www.Zend.To

Follow me at twitter.com/JulesFM
PGP footprint: EE81 D763 3DB0 0BFD E1DC 7222 11F6 5947 1415 B654

'All programs have a desire to be useful' - Tron, 1982

-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://mailman.ecs.soton.ac.uk/pipermail/zendto/attachments/20110202/aeee2563/attachment-0001.html 
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: image/jpeg
Size: 7337 bytes
Desc: not available
Url : http://mailman.ecs.soton.ac.uk/pipermail/zendto/attachments/20110202/aeee2563/attachment-0001.jpe 
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: image/png
Size: 3981 bytes
Desc: not available
Url : http://mailman.ecs.soton.ac.uk/pipermail/zendto/attachments/20110202/aeee2563/attachment-0001.png

More information about the ZendTo mailing list