[horde] ldap authentication with horde 2.2.5

Edwin Culp eculp at encontacto.net
Tue Aug 17 15:44:15 PDT 2004 

Quoting dju` <dju.ml at elegiac.net>:

> Hello,
>
> I'm trying to use a LDAP backend for authing users on horde. However,
> horde needs to bind with a specific "login" account before searching for
> username and password.
>
> Here is my configuration:
>
> $conf['auth']['driver'] = 'ldap';
> $conf['auth']['params']['hostspec'] = 'ldap';
> $conf['auth']['params']['port'] = '389';
> $conf['auth']['params']['basedn'] = 'ou=users,dc=domain,dc=tld';
> $conf['auth']['params']['uid'] = 'uid';
> $conf['auth']['params']['username'] = 'uid=login,dc=domain,dc=tld';
> $conf['auth']['params']['password'] = 'password';

I'm confused.  It could be because of your version.  I have no
idea what 2.2.5 is unfortunately.  I have a couple of questions:

   Where did you find the last two lines of your configuration?
   Do you not have the following or similar:

$conf['auth']['params']['binddn'] = 'cn=manager,o=domain.tld';
$conf['auth']['params']['password'] =
'supersecretldaprootpassword';

   Do you have a horde/config/conf.xml?  (That will help me with
the version)

On other apps like turba I configure the binddn dynamically to
the user credentials but that will only work in Horde, AFAIK. if
you have one of the older versions that isn't conf.xml  I've
never been able to get dynamic configuration to work since it
went in.

Worse case would be that using a configuration like:

$conf['auth']['params']['hostspec'] = 'localhost';
$conf['auth']['params']['basedn'] = 'ou=people,o=o=domain.tld';
$conf['auth']['params']['binddn'] = 'cn=manager,o=o=domain.tld';
$conf['auth']['params']['password'] = 'supersecretrootpassword';
$conf['auth']['params']['uid'] = 'mail';
$conf['auth']['params']['objectclass'] = array('person');
$conf['auth']['params']['filter_type'] = 'objectclass';
$conf['auth']['driver'] = 'ldap';

will work

good luck

ed

>
> Problem is, horde doesn't care about username and password settings, so
> it tries to search ldap anonymously, which returns no entry:
>
> Aug 17 23:32:24 [slapd] conn=56 fd=10 ACCEPT from IP=192.168.0.254:36118
> (IP=0.0.0.0:389)_
> Aug 17 23:32:24 [slapd] conn=56 op=0 SRCH
> base="ou=users,dc=domain,dc=tld" scope=2 filter="(uid=dju)"_
> Aug 17 23:32:24 [slapd] conn=56 op=0 SRCH attr=uid_
> Aug 17 23:32:24 [slapd] <= bdb_equality_candidates: (uid) index_param
> failed (18)_
> Aug 17 23:32:24 [slapd] conn=56 op=0 SEARCH RESULT tag=101 err=0
> nentries=0 text=_
> Aug 17 23:32:25 [slapd] conn=56 op=1 UNBIND_
> Aug 17 23:32:25 [slapd] conn=56 fd=10 closed_
>
> Any help would be appreciated, thanks.
> --
> --dju`
> --
> Horde mailing list - Join the hunt: http://horde.org/bounties/#horde
> Frequently Asked Questions: http://horde.org/faq/
> To unsubscribe, mail: horde-unsubscribe at lists.horde.org

More information about the horde mailing list