[horde] ldap authentication with horde 2.2.5

Edwin Culp eculp at encontacto.net
Wed Aug 18 04:51:46 PDT 2004


Quoting dju` <dju.ml at elegiac.net>:

> Edwin Culp wrote:
>> Quoting dju` <dju.ml at elegiac.net>:
>>
>>> Hello,
>>>
>>> I'm trying to use a LDAP backend for authing users on horde. However,
>>> horde needs to bind with a specific "login" account before searching for
>>> username and password.
>>>
>>> Here is my configuration:
>>>
>>> $conf['auth']['driver'] = 'ldap';
>>> $conf['auth']['params']['hostspec'] = 'ldap';
>>> $conf['auth']['params']['port'] = '389';
>>> $conf['auth']['params']['basedn'] = 'ou=users,dc=domain,dc=tld';
>>> $conf['auth']['params']['uid'] = 'uid';
>>> $conf['auth']['params']['username'] = 'uid=login,dc=domain,dc=tld';
>>> $conf['auth']['params']['password'] = 'password';
>>
>>
>> I'm confused.  It could be because of your version.  I have no
>> idea what 2.2.5 is unfortunately.  I have a couple of questions:
>>
>>   Where did you find the last two lines of your configuration?
>
> I've looked into /lib/Prefs/ldap.php ($Revision: 1.14.2.20) which has
> these settings. but /lib/Auth/ldap.php ($Revision: 1.5.2.6) doesn't.
>
>>   Do you not have the following or similar:
>>
>> $conf['auth']['params']['binddn'] = 'cn=manager,o=domain.tld';
>> $conf['auth']['params']['password'] =
>> 'supersecretldaprootpassword';
>
> tried with binddn param, didn't change anything.

What does your slapd.conf or equivalent give you as an err?
I am sure that you changed the binddn to coincide with your
slapd.conf and that the password in the configuration file is in
plan text, haven't you?

>
>>
>>   Do you have a horde/config/conf.xml?  (That will help me with
>> the version)
>
> I don't have such file. I'm running horde-2.2.5 on Gentoo.
Cool thanks, I now have an idea where you are coming from even if
I don't know what 2.2.5 and gentoo are :)
>
>>
>> On other apps like turba I configure the binddn dynamically to
>> the user credentials but that will only work in Horde, AFAIK. if
>> you have one of the older versions that isn't conf.xml  I've
>> never been able to get dynamic configuration to work since it
>> went in.
>>
>> Worse case would be that using a configuration like:
>>
>> $conf['auth']['params']['hostspec'] = 'localhost';
>> $conf['auth']['params']['basedn'] = 'ou=people,o=o=domain.tld';
>> $conf['auth']['params']['binddn'] = 'cn=manager,o=o=domain.tld';
>> $conf['auth']['params']['password'] = 'supersecretrootpassword';
>> $conf['auth']['params']['uid'] = 'mail';
>> $conf['auth']['params']['objectclass'] = array('person');
>> $conf['auth']['params']['filter_type'] = 'objectclass';
>> $conf['auth']['driver'] = 'ldap';
>>
>> will work
>
> no, it didn't do the trick.

You did change the dn's, password, objectclass, hostspec, to your
server's ldap configuration, didn't you?   Again what error do
you get from slapd.log?
That should give us a pretty good clue to the issue.

ed
>
> Maybe files revision can give you more information? Thanks for feedback.
> --
> --dju`
> --
> Horde mailing list - Join the hunt: http://horde.org/bounties/#horde
> Frequently Asked Questions: http://horde.org/faq/
> To unsubscribe, mail: horde-unsubscribe at lists.horde.org






More information about the horde mailing list