[ZendTo] Re: AD Authentication Won't Work

Joshua F. Withrow jwithrow at matech.net
Wed Feb 2 15:57:25 GMT 2011 

Nice.  The timezone does seem to be off, and I'm setting it now.  Thanks :)

[cid:image001.jpg at 01CBC2C7.F95EC850]

Josh Withrow
Software Developer
Office: 410-548-1627 x154
Email: jwithrow at matech.net<mailto:jwithrow at matech.net>



From: zendto-bounces at zend.to [mailto:zendto-bounces at zend.to] On Behalf Of Jules
Sent: Wednesday, February 02, 2011 10:56 AM
To: ZendTo Users
Subject: [ZendTo] Re: AD Authentication Won't Work

That's often caused by the PHP session expiring, which is a sign of incorrect clock or time zone.

On 02/02/2011 15:50, Joshua F. Withrow wrote:
I have started with it domain wide.  Once I could verify that was working, I was going to narrow it.

When I login it seems to authenticate, but gives me the info below.  I had my co-worker login, (who is also designated as an admin) and it showed him his dropoff menu, but when he clicked on anything it told him that the feature he was attempting to access could only be accessed by somebody authenticated...

[cid:image001.jpg at 01CBC2C7.F95EC850]

Josh Withrow
Software Developer
Office: 410-548-1627 x154
Email: jwithrow at matech.net<mailto:jwithrow at matech.net>



From: zendto-bounces at zend.to<mailto:zendto-bounces at zend.to> [mailto:zendto-bounces at zend.to] On Behalf Of JC Putter
Sent: Wednesday, February 02, 2011 10:33 AM
To: 'ZendTo Users'
Subject: [ZendTo] Re: AD Authentication Won't Work

How does your baseDN look like? Are you only allowing users authenticate that are in a specific OU or are you allowing users domain wide?


From: zendto-bounces at zend.to<mailto:zendto-bounces at zend.to> [mailto:zendto-bounces at zend.to] On Behalf Of Joshua F. Withrow
Sent: 02 February 2011 04:59 PM
To: 'ZendTo Users'
Subject: [ZendTo] Re: AD Authentication Won't Work

Sweet :)  I am now connecting, and it lets me know at the bottom of the screen that I have authenticated (it's pulling info from AD, like my full username).  But it leaves me at the login screen and displays:

[cid:image002.png at 01CBC2C7.F95EC850]

Authentication Error

The username or password was incorrect.


Even though it tells me: Version 3.63 | Copyright (c) 2010 | you are currently logged in as Joshua F. Withrow

Any ideas appreciated :)




From: zendto-bounces at zend.to<mailto:zendto-bounces at zend.to> [mailto:zendto-bounces at zend.to] On Behalf Of JC Putter
Sent: Tuesday, February 01, 2011 4:13 PM
To: 'ZendTo Users'
Subject: [ZendTo] Re: AD Authentication Won't Work

'authenticator'             => 'AD',
  'authLDAPAdmins'            => array('test'),
  'authLDAPBaseDN1'           => 'DC=ad,DC=contoso,DC=com',
  'authLDAPServers1'          => array('ad1.contoso.com'),
  'authLDAPAccountSuffix1'    => '@contoso.com',
  'authLDAPUseSSL1'           => false,
  'authLDAPBindUser1'         => 'CN=Administrator,CN=Users,DC=contoso,DC=com',
  'authLDAPBindPass1'         => 'password,
  'authLDAPOrganization1'     => 'Moore Stephens',
  //'authLDAPBaseDN2'           => 'DC=soton,DC=ac,DC=uk',
  //'authLDAPServers2'          => array(),
  //'authLDAPAccountSuffix2'    => '@soton.ac.uk',
  //'authLDAPUseSSL2'           => false,
  //'authLDAPBindUser2'         => '',
  //'authLDAPBindPass2'         => '',
  //'authLDAPOrganization2'     => 'University of Southampton',

This is a sample of my working config.....

As Jules pointed out use ldapsearch to workout and troubleshoot using connection to AD

If you only have one domain, uncomment the rest and remove everything in the array in authLDAPServer2


________________________________
This message is the property of Machining Technologies, Inc (MaTech) and the Information contained herein may be/is subject to the Code of Federal Regulations Chapter 22 International Traffic in Arms Regulations (ITAR). This data may not be resold, diverted, transferred, transshipped, made available to a foreign national within the United States, or otherwise disposed of in any other country outside of its intended destination, either in original form or after being incorporated through an intermediate process into other data without the prior written approval of the US Department of State. The information in this e-mail and subsequent attachments may contain legally privileged, proprietary and/or confidential information that is intended only for the use of the addressee(s).
No addressee should forward, print, copy or otherwise reproduce this message in any manner that would allow it to be viewed by any individual not originally listed as the recipient. If you are not the intended recipient, you are hereby notified that any disclosure, copying, distribution, retention or use of the contents of this e-mail information is prohibited. If you have received this communication in error, please immediately notify the sender by telephone or return e-mail and delete this e-mail. Thank You.

________________________________
This message is the property of Machining Technologies, Inc (MaTech) and the Information contained herein may be/is subject to the Code of Federal Regulations Chapter 22 International Traffic in Arms Regulations (ITAR). This data may not be resold, diverted, transferred, transshipped, made available to a foreign national within the United States, or otherwise disposed of in any other country outside of its intended destination, either in original form or after being incorporated through an intermediate process into other data without the prior written approval of the US Department of State. The information in this e-mail and subsequent attachments may contain legally privileged, proprietary and/or confidential information that is intended only for the use of the addressee(s).
No addressee should forward, print, copy or otherwise reproduce this message in any manner that would allow it to be viewed by any individual not originally listed as the recipient. If you are not the intended recipient, you are hereby notified that any disclosure, copying, distribution, retention or use of the contents of this e-mail information is prohibited. If you have received this communication in error, please immediately notify the sender by telephone or return e-mail and delete this e-mail. Thank You.






_______________________________________________

ZendTo mailing list

ZendTo at zend.to<mailto:ZendTo at zend.to>

http://mailman.ecs.soton.ac.uk/mailman/listinfo/zendto



Jules



--

Julian Field MEng CITP CEng

www.Zend.To<http://www.Zend.To>



Follow me at twitter.com/JulesFM

PGP footprint: EE81 D763 3DB0 0BFD E1DC 7222 11F6 5947 1415 B654



'All programs have a desire to be useful' - Tron, 1982

________________________________
This message is the property of Machining Technologies, Inc (MaTech) and the Information contained herein may be/is subject to the Code of Federal Regulations Chapter 22 International Traffic in Arms Regulations (ITAR). This data may not be resold, diverted, transferred, transshipped, made available to a foreign national within the United States, or otherwise disposed of in any other country outside of its intended destination, either in original form or after being incorporated through an intermediate process into other data without the prior written approval of the US Department of State. The information in this e-mail and subsequent attachments may contain legally privileged, proprietary and/or confidential information that is intended only for the use of the addressee(s).
No addressee should forward, print, copy or otherwise reproduce this message in any manner that would allow it to be viewed by any individual not originally listed as the recipient. If you are not the intended recipient, you are hereby notified that any disclosure, copying, distribution, retention or use of the contents of this e-mail information is prohibited. If you have received this communication in error, please immediately notify the sender by telephone or return e-mail and delete this e-mail. Thank You.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://mailman.ecs.soton.ac.uk/pipermail/zendto/attachments/20110202/26e8d08d/attachment-0001.html 
-------------- next part --------------
A non-text attachment was scrubbed...
Name: image001.jpg
Type: image/jpeg
Size: 7337 bytes
Desc: image001.jpg
Url : http://mailman.ecs.soton.ac.uk/pipermail/zendto/attachments/20110202/26e8d08d/attachment-0001.jpg 
-------------- next part --------------
A non-text attachment was scrubbed...
Name: image002.png
Type: image/png
Size: 3981 bytes
Desc: image002.png
Url : http://mailman.ecs.soton.ac.uk/pipermail/zendto/attachments/20110202/26e8d08d/attachment-0001.png

More information about the ZendTo mailing list