-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mike,
It should be the full DN of the LDAP bind user. Also, remember that when you are not using SSL, every user's password is passed between the web server and the LDAP server in clear text. Make sure the network between the web server and the ldap server is very secure or you will be introducing all of those users to the chance of their credentials being stolen. Josh On Wednesday, February 19, 2014 3:37:48 PM Mike Haudenschild wrote: > Confirmed, and confirmed. A question on syntax: should "maserlogin" be the > full DN for the LDAP bind user, or JUST the userid portion (with the rest > to be appended by VCL)? > > Thanks, > Mike > > On Wed, Feb 19, 2014 at 3:31 PM, David DeMizio <[email protected]> wrote: > > also make sure the require_once(".ht-inc/authmethods/ldapauth.php"); is > > not commented at the bottom of the conf.php > > > > David DeMizio > > *Academic Systems Coordinator* > > Office of Information Technology > > New College of Florida > > Phone: 941-487-4222 | Fax: 941-487-4356 > > www.ncf.edu > > > > On Wed, Feb 19, 2014 at 3:21 PM, Mike Haudenschild <[email protected]>wrote: > >> David, > >> > >> Thanks. I am able to use the PHP LDAP test script (from another message > >> in the VCL listserv archive) to bind, but after changing all instances of > >> "ldaps" to "ldap" VCL reports "Unable to connect to authentication > >> server." > >> > >> I ran the test script on the same system on which VCL's installed. > >> > >> Anything else you can think of? > >> > >> Thanks very much, > >> Mike > >> > >> -- > >> *Mike Haudenschild* > >> > >> Longsight > >> > >> (740) 599-5005 x809 > >> [email protected] > >> www.longsight.com > >> > >> On Wed, Feb 19, 2014 at 2:37 PM, David DeMizio <[email protected]> wrote: > >>> Hello Mike, > >>> > >>> I believe it's possible but you will need to make some changes to the > >>> code in the .htc-inc folders. I had it working before I changed over to > >>> ldaps. first in authentication.php look for a line like $ds = ldap > >>> _connect("ldaps://{$auth['server']}/"); and then there might be a few > >>> others in authmethods/ldapauth.php. so just change ldaps:// to ldap:// > >>> > >>> David DeMizio > >>> *Academic Systems Coordinator* > >>> > >>> Office of Information Technology > >>> > >>> New College of Florida > >>> Phone: 941-487-4222 | Fax: 941-487-4356 > >>> www.ncf.edu > >>> > >>> On Wed, Feb 19, 2014 at 2:25 PM, Mike Haudenschild <[email protected]>wrote: > >>>> I'm attempting to bind VCL to an LDAP server that is NOT using SSL. > >>>> > >>>> Before I started the configuration process and tried to troubleshoot, > >>>> I > >>>> > >>>> thought I would ask if this is even supported. > >>>> > >>>> Thanks very much, > >>>> Mike - -- - ------------------------------- Josh Thompson VCL Developer North Carolina State University my GPG/PGP key can be found at pgp.mit.edu All electronic mail messages in connection with State business which are sent to or received by this account are subject to the NC Public Records Law and may be disclosed to third parties. -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.22 (GNU/Linux) iEYEARECAAYFAlMFGLkACgkQV/LQcNdtPQO77ACdHIukfyXu0RhnKEn+buWr4yPi UFYAn2WEEJV8KGxawOB/TTgYpZs1a48W =XdnF -----END PGP SIGNATURE-----
