ID: 50270 Updated by: paj...@php.net Reported By: jcarlos at dsi dot uclm dot es -Status: Feedback +Status: To be documented Bug Type: LDAP related Operating System: windows PHP Version: 5.3.1 New Comment:
Moving to the "to be documented" state, it could be very usefull to have this info in the ldap documentation. Previous Comments: ------------------------------------------------------------------------ [2009-11-26 10:54:10] jcarlos at dsi dot uclm dot es A little manual, for a easy configuration INTEGRATING ACTIVE DIRECTORY WITH PHP-LDAP AND TLS ================================================== My configuration: Apache/2.2.14 (Win32) mod_ssl/2.2.14 OpenSSL/0.9.8k PHP/5.2.11 NOTE 1: At the momment, the versiĆ³n 5.3.1 fail with tls NOTE 2: This example works on windows, but in linux is similar 1) Download the Certificate X.509 (PEM format) from a web browser, I used Firefox. I put the name webcert.crt 2) Create the folder c:\openldap\sysconf 3) Copy the file webcert.crt to c:\openldap\sysconf 4) With notepad you must create the file c:\openldap\sysconf\ldap.conf file. The file contents: TLS_REQCERT never TLS_CACERT c:\openldap\sysconf\webcert.crt 5) The code: <?php $ldap="ldap.myDomain.com"; $usr="u...@mydomain.com"; $pwd="mypassword"; $ds=ldap_connect($ldap); $ldapbind=false; if(ldap_set_option($ds, LDAP_OPT_PROTOCOL_VERSION, 3)) if(ldap_set_option($ds, LDAP_OPT_REFERRALS, 0)) if(ldap_start_tls($ds)) $ldapbind = @ldap_bind($ds, $usr, $pwd); ldap_close($ds); if(!$ldapbind) echo "ERROR"; else echo "OK"; ?> ------------------------------------------------------------------------ [2009-11-24 10:44:19] jcarlos at dsi dot uclm dot es I have tested with: Apache/2.2.14 (Win32) mod_ssl/2.2.14 OpenSSL/0.9.8k PHP/5.2.11 (works fine) Apache/2.2.14 (Win32) mod_ssl/2.2.14 OpenSSL/0.9.8k PHP/5.3.1 (same error) ------------------------------------------------------------------------ [2009-11-24 09:11:21] jcarlos at dsi dot uclm dot es Also, if I'm going back to php-5.2.11 works fine, but if I change the php-5.3.1 not working sorry for my english ------------------------------------------------------------------------ [2009-11-24 09:02:50] jcarlos at dsi dot uclm dot es In the past, I always updated the php version and I have never had problems. I have in c:\openldap\sysconf\ the file ldap.conf TLS_REQCERT never TLS_CACERT C:\OpenLdap\sysconf\certs\cert_dom_uclm.pem I have compiled Filezilla Server with support for ldap and It works perfect now. http://forum.filezilla-project.org/viewtopic.php?f=6&t=11146 It run with AD. ------------------------------------------------------------------------ [2009-11-24 00:31:33] j...@php.net Check this if it helps: http://marc.info/?l=php-windows&m=116127873321748&w=2 ------------------------------------------------------------------------ The remainder of the comments for this report are too long. To view the rest of the comments, please view the bug report online at http://bugs.php.net/50270 -- Edit this bug report at http://bugs.php.net/?id=50270&edit=1