<html xmlns:v="urn:schemas-microsoft-com:vml" xmlns:o="urn:schemas-microsoft-com:office:office" xmlns:w="urn:schemas-microsoft-com:office:word" xmlns:m="http://schemas.microsoft.com/office/2004/12/omml" xmlns="http://www.w3.org/TR/REC-html40">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1">
<meta name="Generator" content="Microsoft Word 15 (filtered medium)">
<!--[if !mso]><style>v\:* {behavior:url(#default#VML);}
o\:* {behavior:url(#default#VML);}
w\:* {behavior:url(#default#VML);}
.shape {behavior:url(#default#VML);}
</style><![endif]--><style><!--
/* Font Definitions */
@font-face
{font-family:Calibri;
panose-1:2 15 5 2 2 2 4 3 2 4;}
/* Style Definitions */
p.MsoNormal, li.MsoNormal, div.MsoNormal
{margin:0in;
margin-bottom:.0001pt;
font-size:11.0pt;
font-family:"Calibri",sans-serif;}
a:link, span.MsoHyperlink
{mso-style-priority:99;
color:#0563C1;
text-decoration:underline;}
a:visited, span.MsoHyperlinkFollowed
{mso-style-priority:99;
color:#954F72;
text-decoration:underline;}
p.msonormal0, li.msonormal0, div.msonormal0
{mso-style-name:msonormal;
mso-margin-top-alt:auto;
margin-right:0in;
mso-margin-bottom-alt:auto;
margin-left:0in;
font-size:12.0pt;
font-family:"Times New Roman",serif;}
span.EmailStyle18
{mso-style-type:personal;
font-family:"Calibri",sans-serif;
color:windowtext;}
span.EmailStyle19
{mso-style-type:personal;
font-family:"Calibri",sans-serif;
color:#1F497D;}
span.EmailStyle20
{mso-style-type:personal-reply;
font-family:"Calibri",sans-serif;
color:#1F497D;}
.MsoChpDefault
{mso-style-type:export-only;
font-size:10.0pt;}
@page WordSection1
{size:8.5in 11.0in;
margin:1.0in 1.0in 1.0in 1.0in;}
div.WordSection1
{page:WordSection1;}
--></style><!--[if gte mso 9]><xml>
<o:shapedefaults v:ext="edit" spidmax="1026" />
</xml><![endif]--><!--[if gte mso 9]><xml>
<o:shapelayout v:ext="edit">
<o:idmap v:ext="edit" data="1" />
</o:shapelayout></xml><![endif]-->
</head>
<body lang="EN-US" link="#0563C1" vlink="#954F72">
<div class="WordSection1">
<p class="MsoNormal"><span style="color:#1F497D">Here is the config that we use for AD authentication:<o:p></o:p></span></p>
<p class="MsoNormal"><span style="color:#1F497D"><o:p> </o:p></span></p>
<p class="MsoNormal"><span style="color:#1F497D"> 'authenticator' => 'AD',<o:p></o:p></span></p>
<p class="MsoNormal"><span style="color:#1F497D"> 'authLDAPBaseDN1' => 'OU=Users,DC=corp,DC=atf,DC=local',<o:p></o:p></span></p>
<p class="MsoNormal"><span style="color:#1F497D"> 'authLDAPServers1' => array('192.xxx.xxx.xxx'),<o:p></o:p></span></p>
<p class="MsoNormal"><span style="color:#1F497D"> 'authLDAPAccountSuffix1' => '@corp.atf.local',<o:p></o:p></span></p>
<p class="MsoNormal"><span style="color:#1F497D"> 'authLDAPUseSSL1' => false,<o:p></o:p></span></p>
<p class="MsoNormal"><span style="color:#1F497D"> 'authLDAPBindUser1' => 'svc-zento-ad@corp.atf.local,<o:p></o:p></span></p>
<p class="MsoNormal"><span style="color:#1F497D"> 'authLDAPBindPass1' => ‘xxxxxxxxxxxxxxxxxxxxxxxx’,<o:p></o:p></span></p>
<p class="MsoNormal"><span style="color:#1F497D"> 'authLDAPOrganization1' => 'ATF',<o:p></o:p></span></p>
<p class="MsoNormal"><span style="color:#1F497D"><o:p> </o:p></span></p>
<p class="MsoNormal"><span style="color:#1F497D"><o:p> </o:p></span></p>
<div>
<div style="border:none;border-top:solid #E1E1E1 1.0pt;padding:3.0pt 0in 0in 0in">
<p class="MsoNormal"><b>From:</b> ZendTo [mailto:zendto-bounces@zend.to] <b>On Behalf Of
</b>RICARDO ARAÚJO POPOIRE WANDERLEY via ZendTo<br>
<b>Sent:</b> Wednesday, January 09, 2019 12:32 PM<br>
<b>To:</b> 'ZendTo Users' <zendto@zend.to><br>
<b>Cc:</b> RICARDO ARAÚJO POPOIRE WANDERLEY <ricardo.araujo@modal.com.br><br>
<b>Subject:</b> Re: [ZendTo] AD Authentication Issue<o:p></o:p></p>
</div>
</div>
<p class="MsoNormal"><o:p> </o:p></p>
<p class="MsoNormal"><span style="color:#1F497D">Guys, </span><span lang="PT-BR"><o:p></o:p></span></p>
<p class="MsoNormal"><span style="color:#1F497D"> </span><span lang="PT-BR"><o:p></o:p></span></p>
<p class="MsoNormal"><span style="color:#1F497D">Any update on this?</span><span lang="PT-BR"><o:p></o:p></span></p>
<div>
<p class="MsoNormal"><span style="color:#1F497D;mso-fareast-language:PT-BR"> </span><span lang="PT-BR"><o:p></o:p></span></p>
<p class="MsoNormal"><span style="color:#1F497D;mso-fareast-language:PT-BR">At.te</span><span lang="PT-BR"><o:p></o:p></span></p>
<p class="MsoNormal"><span style="color:#1F497D;mso-fareast-language:PT-BR">Ricardo Araujo</span><span lang="PT-BR"><o:p></o:p></span></p>
<p class="MsoNormal"><span style="color:#1F497D;mso-fareast-language:PT-BR">21 3223 7944</span><span lang="PT-BR"><o:p></o:p></span></p>
</div>
<p class="MsoNormal"><span lang="PT-BR" style="color:#1F497D"> </span><span lang="PT-BR"><o:p></o:p></span></p>
<div>
<div style="border:none;border-top:solid #E1E1E1 1.0pt;padding:3.0pt 0in 0in 0in">
<p class="MsoNormal"><b><span style="mso-fareast-language:PT-BR">From:</span></b><span style="mso-fareast-language:PT-BR"> RICARDO ARAÚJO POPOIRE WANDERLEY
<br>
<b>Sent:</b> terça-feira, 8 de janeiro de 2019 15:46<br>
<b>To:</b> ZendTo Users <<a href="mailto:zendto@zend.to">zendto@zend.to</a>><br>
<b>Subject:</b> AD Authentication Issue</span><span lang="PT-BR"><o:p></o:p></span></p>
</div>
</div>
<p class="MsoNormal"><span lang="PT-BR"> <o:p></o:p></span></p>
<p class="MsoNormal"><span lang="PT-BR">Hi Folks<o:p></o:p></span></p>
<p class="MsoNormal"><span lang="PT-BR"> <o:p></o:p></span></p>
<p class="MsoNormal">We are facing an issue with AD authentication. When I set AD mode I can logged in even if I try to do this with an user that doesn’t exists in my AD environment.<span lang="PT-BR"><o:p></o:p></span></p>
<p class="MsoNormal"> <span lang="PT-BR"><o:p></o:p></span></p>
<p class="MsoNormal">It seems to Zendto is bypassing and accepting users to login with any account and password.<span lang="PT-BR"><o:p></o:p></span></p>
<p class="MsoNormal"> <span lang="PT-BR"><o:p></o:p></span></p>
<p class="MsoNormal">Preferences.php is configured as bellow:<span lang="PT-BR"><o:p></o:p></span></p>
<p class="MsoNormal"> <span lang="PT-BR"><o:p></o:p></span></p>
<p class="MsoNormal"> 'authenticator' => 'AD',<span lang="PT-BR"><o:p></o:p></span></p>
<p class="MsoNormal"> 'authLDAPServers1' => array('xxx.xxx.xxx.xxx'),<span lang="PT-BR"><o:p></o:p></span></p>
<p class="MsoNormal"> 'authLDAPBaseDN1' => array('CN=XXX,DC=XXXX,DC=XXX,DC=XXX'),<span lang="PT-BR"><o:p></o:p></span></p>
<p class="MsoNormal"> 'authLDAPAccountSuffix1' => '@xxxx.xxx.xxx',<span lang="PT-BR"><o:p></o:p></span></p>
<p class="MsoNormal"> 'authLDAPUseSSL1' => false,<span lang="PT-BR"><o:p></o:p></span></p>
<p class="MsoNormal"> //'authLDAPUseTLS1' => false,<span lang="PT-BR"><o:p></o:p></span></p>
<p class="MsoNormal"> 'authLDAPBindUser1' => 'org\svc_zendto',<span lang="PT-BR"><o:p></o:p></span></p>
<p class="MsoNormal"> 'authLDAPBindPass1' => 'password’,<span lang="PT-BR"><o:p></o:p></span></p>
<p class="MsoNormal"> //'authLDAPMemberKey' => '',<span lang="PT-BR"><o:p></o:p></span></p>
<p class="MsoNormal"> //'authLDAPMemberRole' => '',<span lang="PT-BR"><o:p></o:p></span></p>
<p class="MsoNormal"> 'authLDAPOrganization1' => 'org',<span lang="PT-BR"><o:p></o:p></span></p>
<p class="MsoNormal"><span lang="PT-BR"> <o:p></o:p></span></p>
<p class="MsoNormal"><span lang="PT-BR">Ldapsearch Works fine.<o:p></o:p></span></p>
<p class="MsoNormal"><span lang="PT-BR"> <o:p></o:p></span></p>
<p class="MsoNormal">Could you help me with this?<span lang="PT-BR"><o:p></o:p></span></p>
<p class="MsoNormal"> <span lang="PT-BR"><o:p></o:p></span></p>
<p class="MsoNormal">Zendto Version: <span lang="PT-BR">5.15-1<o:p></o:p></span></p>
<p class="MsoNormal">Php Version: PHP 7.2.13 (cli) (built: Dec 6 2018 15:54:38) ( NTS )<span lang="PT-BR"><o:p></o:p></span></p>
<p class="MsoNormal"> <span lang="PT-BR"><o:p></o:p></span></p>
<p class="MsoNormal"> <span lang="PT-BR"><o:p></o:p></span></p>
<p class="MsoNormal">Thanks in advance<span lang="PT-BR"><o:p></o:p></span></p>
<p class="MsoNormal"> <span lang="PT-BR"><o:p></o:p></span></p>
<table class="MsoNormalTable" border="0" cellspacing="0" cellpadding="0" width="0" style="width:390.0pt">
<tbody>
<tr style="height:48.75pt">
<td width="162" valign="bottom" style="width:117.0pt;padding:0in 0in 0in 0in;height:48.75pt">
<p class="MsoNormal" align="right" style="text-align:right"><a href="https://modal.com.br/html/index.php"><span style="color:blue;mso-fareast-language:PT-BR;text-decoration:none"><img border="0" width="156" height="57" id="_x0000_i1025" src="http://www.modal.com.br/emailmkt/marca-assinatura.jpg" alt="http://www.modal.com.br/emailmkt/marca-assinatura.jpg"></span></a><o:p></o:p></p>
</td>
<td width="12" style="width:9.0pt;padding:0in 0in 0in 0in;height:48.75pt">
<p class="MsoNormal"><span style="mso-fareast-language:PT-BR"> </span><o:p></o:p></p>
</td>
<td width="345" colspan="2" rowspan="2" valign="bottom" style="width:249.0pt;padding:0in 0in 0in 0in;height:48.75pt">
<p class="MsoNormal"><b><span style="font-size:10.0pt;color:#394036;mso-fareast-language:PT-BR">RICARDO ARAUJO POPOIRE WANDERLEY</span></b><span style="mso-fareast-language:PT-BR">
</span><o:p></o:p></p>
</td>
</tr>
<tr style="height:11.25pt">
<td colspan="2" valign="bottom" style="padding:0in 0in 0in 0in;height:11.25pt"></td>
</tr>
<tr>
<td colspan="2" style="padding:0in 0in 0in 0in">
<p class="MsoNormal"><span style="mso-fareast-language:PT-BR"> </span><o:p></o:p></p>
</td>
<td colspan="2" style="padding:0in 0in 0in 0in"></td>
</tr>
<tr style="height:9.0pt">
<td colspan="3" style="padding:0in 0in 0in 0in;height:9.0pt"></td>
<td style="padding:0in 0in 0in 0in;height:9.0pt"></td>
</tr>
<tr>
<td colspan="2" valign="bottom" style="padding:0in 0in 0in 0in">
<p class="MsoNormal"><span style="mso-fareast-language:PT-BR"> </span><o:p></o:p></p>
</td>
<td colspan="2" style="padding:0in 0in 0in 0in">
<p class="MsoNormal" style="mso-margin-top-alt:auto;mso-margin-bottom-alt:auto"><span style="font-size:10.0pt;color:#394036;mso-fareast-language:PT-BR">Tels. 55 21 3223 7944 | 7700
<br>
Cel. 55 21 99477 6779<br>
Fax 55 21 3223 7738 </span><o:p></o:p></p>
</td>
</tr>
<tr style="height:22.5pt">
<td colspan="2" valign="bottom" style="padding:0in 0in 0in 0in;height:22.5pt">
<p class="MsoNormal"><span style="mso-fareast-language:PT-BR"> </span><o:p></o:p></p>
</td>
<td width="21" style="width:15.0pt;padding:0in 0in 0in 0in;height:22.5pt">
<p class="MsoNormal"><span style="mso-fareast-language:PT-BR"> </span><o:p></o:p></p>
</td>
<td style="padding:0in 0in 0in 0in;height:22.5pt">
<p class="MsoNormal"><span style="mso-fareast-language:PT-BR"> </span><o:p></o:p></p>
</td>
</tr>
</tbody>
</table>
<p class="MsoNormal"><span style="mso-fareast-language:PT-BR"> </span><span lang="PT-BR"><o:p></o:p></span></p>
<p class="MsoNormal"><span lang="PT-BR"> <o:p></o:p></span></p>
<table class="MsoNormalTable" border="0" cellspacing="0" cellpadding="0" width="0" style="width:355.5pt">
<tbody>
<tr>
<td width="47" style="width:35.25pt;padding:0in 0in 0in 0in">
<p class="MsoNormal"><span style="font-size:12.0pt;font-family:"Times New Roman",serif"><img border="0" id="_x0000_i1026" src="http://www.modal.com.br/images/rec.png"><o:p></o:p></span></p>
</td>
<td width="427" style="width:320.25pt;padding:0in 0in 0in 0in">
<p class="MsoNormal"><span style="font-size:7.5pt;font-family:"Arial",sans-serif">A impressão consciente gera economia e responsabilidade com o meio ambiente
</span><span style="font-size:12.0pt;font-family:"Times New Roman",serif"><o:p></o:p></span></p>
</td>
</tr>
</tbody>
</table>
<p class="MsoNormal"><span lang="PT-BR" style="font-size:12.0pt;font-family:"Times New Roman",serif;display:none"><o:p> </o:p></span></p>
<table class="MsoNormalTable" border="0" cellspacing="3" cellpadding="0" width="0" style="width:4.75in">
<tbody>
<tr>
<td width="456" style="width:351.0pt;padding:0in 0in 0in 0in">
<div>
<p class="MsoNormal"><span style="font-size:7.5pt;font-family:"Arial",sans-serif;color:#004C41">Atenção:</span><span style="font-size:7.5pt;font-family:"Arial",sans-serif;color:#727272"> Esta comunicação deve ser lida apenas pelo seu destinatário e não pode
ser retransmitida sem autorização formal. Se esta mensagem tiver sido recebida indevidamente, por favor destrua-a e retire-a de seu computador.<br>
Qualquer reprodução, disseminação, alteração, distribuição e/ou publicação deste e-mail é estritamente proibida.
</span><span style="font-size:12.0pt;font-family:"Times New Roman",serif"><o:p></o:p></span></p>
</div>
</td>
</tr>
<tr>
<td style="padding:0in 0in 0in 0in">
<p class="MsoNormal"><span style="font-size:12.0pt;font-family:"Times New Roman",serif"> <o:p></o:p></span></p>
</td>
</tr>
<tr>
<td style="padding:0in 0in 0in 0in">
<div>
<p class="MsoNormal"><span style="font-size:7.5pt;font-family:"Arial",sans-serif;color:#004C41">Notice of Confidentiality:</span><span style="font-size:7.5pt;font-family:"Arial",sans-serif;color:#727272"> This document should only be read by those persons to
whom it is addressed and is not intended to be relied upon by any person without subsequent written confirmation of its contents. If you have received this e-mail message in error, please destroy it and delete it from your computer.<br>
Any form of reproduction, dissemination, copying, disclosure, modification, distribution and/or publication of this e-mail message is strictly prohibited.</span><span style="font-size:12.0pt;font-family:"Times New Roman",serif"><o:p></o:p></span></p>
</div>
</td>
</tr>
</tbody>
</table>
<p class="MsoNormal"><span style="font-size:12.0pt;font-family:"Times New Roman",serif"><o:p> </o:p></span></p>
</div>
</body>
</html>