<html xmlns:v="urn:schemas-microsoft-com:vml" xmlns:o="urn:schemas-microsoft-com:office:office" xmlns:w="urn:schemas-microsoft-com:office:word" xmlns:x="urn:schemas-microsoft-com:office:excel" xmlns:m="http://schemas.microsoft.com/office/2004/12/omml" xmlns="http://www.w3.org/TR/REC-html40">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8">
<meta name="Generator" content="Microsoft Word 15 (filtered medium)">
<!--[if !mso]><style>v\:* {behavior:url(#default#VML);}
o\:* {behavior:url(#default#VML);}
w\:* {behavior:url(#default#VML);}
.shape {behavior:url(#default#VML);}
</style><![endif]--><style><!--
/* Font Definitions */
@font-face
{font-family:"Cambria Math";
panose-1:2 4 5 3 5 4 6 3 2 4;}
@font-face
{font-family:Calibri;
panose-1:2 15 5 2 2 2 4 3 2 4;}
@font-face
{font-family:"Segoe UI";
panose-1:2 11 5 2 4 2 4 2 2 3;}
/* Style Definitions */
p.MsoNormal, li.MsoNormal, div.MsoNormal
{margin:0cm;
margin-bottom:.0001pt;
font-size:11.0pt;
font-family:"Calibri",sans-serif;
mso-fareast-language:EN-US;}
a:link, span.MsoHyperlink
{mso-style-priority:99;
color:#0563C1;
text-decoration:underline;}
a:visited, span.MsoHyperlinkFollowed
{mso-style-priority:99;
color:#954F72;
text-decoration:underline;}
p.msonormal0, li.msonormal0, div.msonormal0
{mso-style-name:msonormal;
mso-margin-top-alt:auto;
margin-right:0cm;
mso-margin-bottom-alt:auto;
margin-left:0cm;
font-size:12.0pt;
font-family:"Times New Roman",serif;}
span.EmailStyle18
{mso-style-type:personal;
font-family:"Calibri",sans-serif;
color:windowtext;}
span.EmailStyle19
{mso-style-type:personal;
font-family:"Calibri",sans-serif;
color:#1F497D;}
span.groupwisereplyheader
{mso-style-name:groupwisereplyheader;}
span.EmailStyle21
{mso-style-type:personal-reply;
font-family:"Calibri",sans-serif;
color:#1F497D;}
.MsoChpDefault
{mso-style-type:export-only;
font-size:10.0pt;}
@page WordSection1
{size:612.0pt 792.0pt;
margin:72.0pt 72.0pt 72.0pt 72.0pt;}
div.WordSection1
{page:WordSection1;}
--></style><!--[if gte mso 9]><xml>
<o:shapedefaults v:ext="edit" spidmax="1026" />
</xml><![endif]--><!--[if gte mso 9]><xml>
<o:shapelayout v:ext="edit">
<o:idmap v:ext="edit" data="1" />
</o:shapelayout></xml><![endif]-->
</head>
<body lang="PT-BR" link="#0563C1" vlink="#954F72">
<div class="WordSection1">
<p class="MsoNormal"><span lang="EN-US" style="color:#1F497D">Hi Ken<o:p></o:p></span></p>
<p class="MsoNormal"><span lang="EN-US" style="color:#1F497D"><o:p> </o:p></span></p>
<p class="MsoNormal"><span lang="EN-US" style="color:#1F497D">I’m using CN because I need to allow users only from specify group.<o:p></o:p></span></p>
<p class="MsoNormal"><span lang="EN-US" style="color:#1F497D"><o:p> </o:p></span></p>
<p class="MsoNormal"><span lang="EN-US" style="color:#1F497D">Even without “domain\user” I get this issue. LDAP auth doesn’t working, I get LDAP error.<o:p></o:p></span></p>
<p class="MsoNormal"><span lang="EN-US" style="color:#1F497D"><o:p> </o:p></span></p>
<p class="MsoNormal"><span lang="EN-US" style="color:#1F497D">Ldapsearch is OK and I can bind normally.<o:p></o:p></span></p>
<p class="MsoNormal"><span lang="EN-US" style="color:#1F497D"><o:p> </o:p></span></p>
<p class="MsoNormal"><span lang="EN-US" style="color:#1F497D">Could you send an example of your conf for LDAP auth?<o:p></o:p></span></p>
<p class="MsoNormal"><span lang="EN-US" style="color:#1F497D"><o:p> </o:p></span></p>
<p class="MsoNormal"><span lang="EN-US" style="color:#1F497D">Thanks!<o:p></o:p></span></p>
<div>
<p class="MsoNormal"><span lang="EN-US" style="color:#1F497D;mso-fareast-language:PT-BR"><o:p> </o:p></span></p>
<p class="MsoNormal"><span lang="EN-US" style="color:#1F497D;mso-fareast-language:PT-BR">At.te<o:p></o:p></span></p>
<p class="MsoNormal"><span lang="EN-US" style="color:#1F497D;mso-fareast-language:PT-BR">Ricardo Araujo<o:p></o:p></span></p>
<p class="MsoNormal"><span lang="EN-US" style="color:#1F497D;mso-fareast-language:PT-BR">21 3223 7944<o:p></o:p></span></p>
</div>
<p class="MsoNormal"><span style="color:#1F497D"><o:p> </o:p></span></p>
<div>
<div style="border:none;border-top:solid #E1E1E1 1.0pt;padding:3.0pt 0cm 0cm 0cm">
<p class="MsoNormal"><b><span lang="EN-US" style="mso-fareast-language:PT-BR">From:</span></b><span lang="EN-US" style="mso-fareast-language:PT-BR"> Ken Etter <KLE@msktd.com>
<br>
<b>Sent:</b> quarta-feira, 9 de janeiro de 2019 17:43<br>
<b>To:</b> ZendTo List <zendto@zend.to><br>
<b>Cc:</b> RICARDO ARAÚJO POPOIRE WANDERLEY <ricardo.araujo@modal.com.br><br>
<b>Subject:</b> Re: [ZendTo] AD Authentication Issue<o:p></o:p></span></p>
</div>
</div>
<p class="MsoNormal"><o:p> </o:p></p>
<div id="GroupWiseSection_1547062616000_KLE@msktd.com_1FEF159614D20000B1ED8700B3004500_">
<div>
<p class="MsoNormal"><span style="font-size:10.0pt;font-family:"Segoe UI",sans-serif;color:black">I authenticate against LDAP, not AD. I'm not AD knowledgeable, so just throwing out some random thoughts...</span><span style="font-size:10.0pt;font-family:"Segoe UI",sans-serif;color:black;mso-fareast-language:PT-BR"><o:p></o:p></span></p>
</div>
<div>
<p class="MsoNormal"><span style="font-size:10.0pt;font-family:"Segoe UI",sans-serif;color:black"><o:p> </o:p></span></p>
</div>
<div>
<p class="MsoNormal"><span style="font-size:10.0pt;font-family:"Segoe UI",sans-serif;color:black">Are you sure that your authLDAPBaseDN1 is correct? I'm used to seeing OU or O in there, and I know AD uses DC, but is CN correct?<o:p></o:p></span></p>
</div>
<div>
<p class="MsoNormal"><span style="font-size:10.0pt;font-family:"Segoe UI",sans-serif;color:black">Should authLDAPBindUser1 have "org\" in front of the username?<o:p></o:p></span></p>
</div>
<div id="GroupWiseSection_1547062616000_KLE@msktd.com_1FEF159614D20000B1ED8700B3004500_">
<p class="MsoNormal"><span class="groupwisereplyheader"><span style="font-size:10.0pt;font-family:"Segoe UI",sans-serif;color:black;mso-fareast-language:PT-BR">>>> RICARDO ARAÚJO POPOIRE WANDERLEY via ZendTo <<a href="mailto:zendto@zend.to">zendto@zend.to</a>>
1/9/2019 2:31 PM >>></span></span><span style="font-size:10.0pt;font-family:"Segoe UI",sans-serif;color:black;mso-fareast-language:PT-BR"><o:p></o:p></span></p>
<div>
<div>
<p class="MsoNormal"><span lang="EN-US" style="color:#1F497D">Guys, </span><span style="color:black"><o:p></o:p></span></p>
</div>
<div>
<p class="MsoNormal"><span lang="EN-US" style="color:#1F497D"> </span><span style="color:black"><o:p></o:p></span></p>
</div>
<div>
<p class="MsoNormal"><span lang="EN-US" style="color:#1F497D">Any update on this?</span><span style="color:black"><o:p></o:p></span></p>
</div>
<div>
<div>
<p class="MsoNormal"><span lang="EN-US" style="color:#1F497D;mso-fareast-language:PT-BR"> </span><span style="color:black"><o:p></o:p></span></p>
</div>
<div>
<p class="MsoNormal"><span lang="EN-US" style="color:#1F497D;mso-fareast-language:PT-BR">At.te</span><span style="color:black"><o:p></o:p></span></p>
</div>
<div>
<p class="MsoNormal"><span lang="EN-US" style="color:#1F497D;mso-fareast-language:PT-BR">Ricardo Araujo</span><span style="color:black"><o:p></o:p></span></p>
</div>
<div>
<p class="MsoNormal"><span lang="EN-US" style="color:#1F497D;mso-fareast-language:PT-BR">21 3223 7944</span><span style="color:black"><o:p></o:p></span></p>
</div>
</div>
<div>
<p class="MsoNormal"><span style="color:#1F497D"> </span><span style="color:black"><o:p></o:p></span></p>
</div>
<div>
<div style="border:none;border-top:solid windowtext 1.0pt;padding:3.0pt 0cm 0cm 0cm;border-color:currentColor currentColor;border-image: none">
<div>
<p class="MsoNormal"><b><span lang="EN-US" style="color:black;mso-fareast-language:PT-BR">From:</span></b><span lang="EN-US" style="color:black;mso-fareast-language:PT-BR"> RICARDO ARAÚJO POPOIRE WANDERLEY
<br>
<b>Sent:</b> terça-feira, 8 de janeiro de 2019 15:46<br>
<b>To:</b> ZendTo Users <<a href="mailto:zendto@zend.to">zendto@zend.to</a>><br>
<b>Subject:</b> AD Authentication Issue</span><span style="color:black"><o:p></o:p></span></p>
</div>
</div>
</div>
<div>
<p class="MsoNormal"><span style="color:black"> <o:p></o:p></span></p>
</div>
<div>
<p class="MsoNormal"><span style="color:black">Hi Folks<o:p></o:p></span></p>
</div>
<div>
<p class="MsoNormal"><span style="color:black"> <o:p></o:p></span></p>
</div>
<div>
<p class="MsoNormal"><span lang="EN-US" style="color:black">We are facing an issue with AD authentication. When I set AD mode I can logged in even if I try to do this with an user that doesn’t exists in my AD environment.</span><span style="color:black"><o:p></o:p></span></p>
</div>
<div>
<p class="MsoNormal"><span lang="EN-US" style="color:black"> </span><span style="color:black"><o:p></o:p></span></p>
</div>
<div>
<p class="MsoNormal"><span lang="EN-US" style="color:black">It seems to Zendto is bypassing and accepting users to login with any account and password.</span><span style="color:black"><o:p></o:p></span></p>
</div>
<div>
<p class="MsoNormal"><span lang="EN-US" style="color:black"> </span><span style="color:black"><o:p></o:p></span></p>
</div>
<div>
<p class="MsoNormal"><span lang="EN-US" style="color:black">Preferences.php is configured as bellow:</span><span style="color:black"><o:p></o:p></span></p>
</div>
<div>
<p class="MsoNormal"><span lang="EN-US" style="color:black"> </span><span style="color:black"><o:p></o:p></span></p>
</div>
<div>
<p class="MsoNormal"><span lang="EN-US" style="color:black"> 'authenticator' => 'AD',</span><span style="color:black"><o:p></o:p></span></p>
</div>
<div>
<p class="MsoNormal"><span lang="EN-US" style="color:black"> 'authLDAPServers1' => array('xxx.xxx.xxx.xxx'),</span><span style="color:black"><o:p></o:p></span></p>
</div>
<div>
<p class="MsoNormal"><span lang="EN-US" style="color:black"> 'authLDAPBaseDN1' => array('CN=XXX,DC=XXXX,DC=XXX,DC=XXX'),</span><span style="color:black"><o:p></o:p></span></p>
</div>
<div>
<p class="MsoNormal"><span lang="EN-US" style="color:black"> 'authLDAPAccountSuffix1' => '@xxxx.xxx.xxx',</span><span style="color:black"><o:p></o:p></span></p>
</div>
<div>
<p class="MsoNormal"><span lang="EN-US" style="color:black"> 'authLDAPUseSSL1' => false,</span><span style="color:black"><o:p></o:p></span></p>
</div>
<div>
<p class="MsoNormal"><span lang="EN-US" style="color:black"> //'authLDAPUseTLS1' => false,</span><span style="color:black"><o:p></o:p></span></p>
</div>
<div>
<p class="MsoNormal"><span lang="EN-US" style="color:black"> 'authLDAPBindUser1' => 'org\svc_zendto',</span><span style="color:black"><o:p></o:p></span></p>
</div>
<div>
<p class="MsoNormal"><span lang="EN-US" style="color:black"> 'authLDAPBindPass1' => 'password’,</span><span style="color:black"><o:p></o:p></span></p>
</div>
<div>
<p class="MsoNormal"><span lang="EN-US" style="color:black"> //'authLDAPMemberKey' => '',</span><span style="color:black"><o:p></o:p></span></p>
</div>
<div>
<p class="MsoNormal"><span lang="EN-US" style="color:black"> //'authLDAPMemberRole' => '',</span><span style="color:black"><o:p></o:p></span></p>
</div>
<div>
<p class="MsoNormal"><span lang="EN-US" style="color:black"> 'authLDAPOrganization1' => 'org',</span><span style="color:black"><o:p></o:p></span></p>
</div>
<div>
<p class="MsoNormal"><span style="color:black"> <o:p></o:p></span></p>
</div>
<div>
<p class="MsoNormal"><span style="color:black">Ldapsearch Works fine.<o:p></o:p></span></p>
</div>
<div>
<p class="MsoNormal"><span style="color:black"> <o:p></o:p></span></p>
</div>
<div>
<p class="MsoNormal"><span lang="EN-US" style="color:black">Could you help me with this?</span><span style="color:black"><o:p></o:p></span></p>
</div>
<div>
<p class="MsoNormal"><span lang="EN-US" style="color:black"> </span><span style="color:black"><o:p></o:p></span></p>
</div>
<div>
<p class="MsoNormal"><span lang="EN-US" style="color:black">Zendto Version: </span>
<span style="color:black">5.15-1<o:p></o:p></span></p>
</div>
<div>
<p class="MsoNormal"><span lang="EN-US" style="color:black">Php Version: PHP 7.2.13 (cli) (built: Dec 6 2018 15:54:38) ( NTS )</span><span style="color:black"><o:p></o:p></span></p>
</div>
<div>
<p class="MsoNormal"><span lang="EN-US" style="color:black"> </span><span style="color:black"><o:p></o:p></span></p>
</div>
<div>
<p class="MsoNormal"><span lang="EN-US" style="color:black"> </span><span style="color:black"><o:p></o:p></span></p>
</div>
<div>
<p class="MsoNormal"><span lang="EN-US" style="color:black">Thanks in advance</span><span style="color:black"><o:p></o:p></span></p>
</div>
<div>
<p class="MsoNormal"><span lang="EN-US" style="color:black"> </span><span style="color:black"><o:p></o:p></span></p>
</div>
<table class="MsoNormalTable" border="0" cellspacing="0" cellpadding="0" width="0" style="width:390.0pt">
<tbody>
<tr style="height:48.75pt">
<td width="162" valign="bottom" style="width:117.0pt;padding:0cm 0cm 0cm 0cm;height:48.75pt">
<p class="MsoNormal" align="right" style="text-align:right"><a href="https://modal.com.br/html/index.php"><span style="color:blue;mso-fareast-language:PT-BR;text-decoration:none"><img border="0" width="156" height="57" style="width:1.625in;height:.5937in" id="_x0000_i1025" src="cid:image001.jpg@01D4A843.D9E1DC00" alt="http://www.modal.com.br/emailmkt/marca-assinatura.jpg"></span></a><o:p></o:p></p>
</td>
<td width="12" style="width:9.0pt;padding:0cm 0cm 0cm 0cm;height:48.75pt">
<div>
<p class="MsoNormal"><span style="mso-fareast-language:PT-BR"> </span><o:p></o:p></p>
</div>
</td>
<td width="345" colspan="2" rowspan="2" valign="bottom" style="width:249.0pt;padding:0cm 0cm 0cm 0cm;height:48.75pt">
<div>
<p class="MsoNormal"><b><span style="font-size:10.0pt;color:#394036;mso-fareast-language:PT-BR">RICARDO ARAUJO POPOIRE WANDERLEY</span></b><span style="mso-fareast-language:PT-BR">
</span><o:p></o:p></p>
</div>
</td>
</tr>
<tr style="height:11.25pt">
<td colspan="2" valign="bottom" style="padding:0cm 0cm 0cm 0cm;height:11.25pt"></td>
</tr>
<tr>
<td colspan="2" style="padding:0cm 0cm 0cm 0cm">
<div>
<p class="MsoNormal"><span style="mso-fareast-language:PT-BR"> </span><o:p></o:p></p>
</div>
</td>
<td colspan="2" style="padding:0cm 0cm 0cm 0cm"></td>
</tr>
<tr style="height:9.0pt">
<td colspan="3" style="padding:0cm 0cm 0cm 0cm;height:9.0pt"></td>
<td style="padding:0cm 0cm 0cm 0cm;height:9.0pt"></td>
</tr>
<tr>
<td colspan="2" valign="bottom" style="padding:0cm 0cm 0cm 0cm">
<div>
<p class="MsoNormal"><span style="mso-fareast-language:PT-BR"> </span><o:p></o:p></p>
</div>
</td>
<td colspan="2" style="padding:0cm 0cm 0cm 0cm">
<div style="margin-top:5.0pt;margin-bottom:5.0pt">
<p class="MsoNormal"><span style="font-size:10.0pt;color:#394036;mso-fareast-language:PT-BR">Tels. 55 21 3223 7944 | 7700
<br>
Cel. 55 21 99477 6779<br>
Fax 55 21 3223 7738 </span><o:p></o:p></p>
</div>
</td>
</tr>
<tr style="height:22.5pt">
<td colspan="2" valign="bottom" style="padding:0cm 0cm 0cm 0cm;height:22.5pt">
<div>
<p class="MsoNormal"><span style="mso-fareast-language:PT-BR"> </span><o:p></o:p></p>
</div>
</td>
<td width="21" style="width:15.0pt;padding:0cm 0cm 0cm 0cm;height:22.5pt">
<div>
<p class="MsoNormal"><span style="mso-fareast-language:PT-BR"> </span><o:p></o:p></p>
</div>
</td>
<td style="padding:0cm 0cm 0cm 0cm;height:22.5pt">
<div>
<p class="MsoNormal"><span style="mso-fareast-language:PT-BR"> </span><o:p></o:p></p>
</div>
</td>
</tr>
</tbody>
</table>
<div>
<p class="MsoNormal"><span lang="EN-US" style="color:black;mso-fareast-language:PT-BR"> </span><span style="color:black"><o:p></o:p></span></p>
</div>
<div>
<p class="MsoNormal"><span style="color:black"> <o:p></o:p></span></p>
</div>
<table class="MsoNormalTable" border="0" cellspacing="0" cellpadding="0" width="0" style="width:355.5pt">
<tbody>
<tr>
<td width="47" style="width:35.25pt;padding:0cm 0cm 0cm 0cm">
<p class="MsoNormal"><span style="font-size:12.0pt;font-family:"Times New Roman",serif;mso-fareast-language:PT-BR"><img border="0" width="39" height="42" style="width:.4062in;height:.4375in" id="_x0000_i1026" src="cid:image002.png@01D4A843.D9E1DC00"><o:p></o:p></span></p>
</td>
<td width="427" style="width:320.25pt;padding:0cm 0cm 0cm 0cm">
<p class="MsoNormal"><span style="font-size:7.5pt;font-family:"Arial",sans-serif;mso-fareast-language:PT-BR">A impressão consciente gera economia e responsabilidade com o meio ambiente
</span><span style="font-size:12.0pt;font-family:"Times New Roman",serif;mso-fareast-language:PT-BR"><o:p></o:p></span></p>
</td>
</tr>
</tbody>
</table>
<p class="MsoNormal"><span style="font-size:10.0pt;font-family:"Segoe UI",sans-serif;color:black;display:none;mso-fareast-language:PT-BR"><o:p> </o:p></span></p>
<table class="MsoNormalTable" border="0" cellspacing="3" cellpadding="0" width="0" style="width:342.0pt">
<tbody>
<tr>
<td width="456" style="width:351.0pt;padding:0cm 0cm 0cm 0cm">
<div>
<p class="MsoNormal"><span style="font-size:7.5pt;font-family:"Arial",sans-serif;color:#004C41;mso-fareast-language:PT-BR">Atenção:</span><span style="font-size:7.5pt;font-family:"Arial",sans-serif;color:#727272;mso-fareast-language:PT-BR"> Esta comunicação
deve ser lida apenas pelo seu destinatário e não pode ser retransmitida sem autorização formal. Se esta mensagem tiver sido recebida indevidamente, por favor destrua-a e retire-a de seu computador.<br>
Qualquer reprodução, disseminação, alteração, distribuição e/ou publicação deste e-mail é estritamente proibida.
</span><span style="font-size:12.0pt;font-family:"Times New Roman",serif;mso-fareast-language:PT-BR"><o:p></o:p></span></p>
</div>
</td>
</tr>
<tr>
<td style="padding:0cm 0cm 0cm 0cm">
<p class="MsoNormal"><span style="font-size:12.0pt;font-family:"Times New Roman",serif;mso-fareast-language:PT-BR"> <o:p></o:p></span></p>
</td>
</tr>
<tr>
<td style="padding:0cm 0cm 0cm 0cm">
<div>
<p class="MsoNormal"><span style="font-size:7.5pt;font-family:"Arial",sans-serif;color:#004C41;mso-fareast-language:PT-BR">Notice of Confidentiality:</span><span style="font-size:7.5pt;font-family:"Arial",sans-serif;color:#727272;mso-fareast-language:PT-BR">
This document should only be read by those persons to whom it is addressed and is not intended to be relied upon by any person without subsequent written confirmation of its contents. If you have received this e-mail message in error, please destroy it and
delete it from your computer.<br>
Any form of reproduction, dissemination, copying, disclosure, modification, distribution and/or publication of this e-mail message is strictly prohibited.</span><span style="font-size:12.0pt;font-family:"Times New Roman",serif;mso-fareast-language:PT-BR"><o:p></o:p></span></p>
</div>
</td>
</tr>
</tbody>
</table>
<p class="MsoNormal"><span style="font-size:12.0pt;font-family:"Times New Roman",serif;mso-fareast-language:PT-BR"><o:p> </o:p></span></p>
</div>
</div>
</div>
</div>
</body>
</html>