[horde] [Horde]LDAP auth problems
geoffroy desvernay
dgeo at centrale-marseille.fr
Mon Nov 21 11:23:18 UTC 2011
On 21.11.2011 11:46, geoffroy desvernay wrote:
> Hi.
>
> Re-using this thread as I may have found a bug in Auth_Ldap tha may be
> linked with this case:
>
> After some time debugging with Horde-4.0.11, it seems that with
> $conf['ldap']['bindas'] = 'user';
>
> The config interface fills
> $conf['ldap']['user']['binddn']
> $conf['ldap']['user']['bindpw']
>
> And those are never user (horde binds anonymously to fins user's DN and
> fails)
>
> If i manually change the config, filling $conf['ldap']['binddn'] instead
> of $conf['ldap']['user']['binddn'], I can log in.
(same for bindpw of course)
>
> (Not tested if user's DN is then used, or if this binddn/pw couple is
> used all the time)
>
> I don't know what needs correction: config interface only, or
> _bind(dn,pass) explicitly in findUserDN() ?
>
> HTH,
>
> dgeo
>
There is another error, not solved by this workaround: Each connection
to the login page generates *two* findUserDN()'s, the first always with
an empty login.
In logs:
DN for user not found [pid 4018 on line 875 of
"/usr/local/share/pear/Horde/Ldap.php"]
--
*geoffroy desvernay*
C.R.I - Administration systèmes et réseaux
Ecole Centrale de Marseille
More information about the horde
mailing list