[horde] LDAP issue: DN for user not found

Andy Dorman adorman at ironicdesign.com
Fri Aug 1 20:25:44 UTC 2014


On 07/30/2014 01:14 PM, Martin Hoefling wrote:
> Hello Folks,
>
> since upgrading to Horde 5.2.0, I get the following log messages:
>
> [horde] DN for user not found [pid 6446 on line 886 of
> "/opt/horde/pear/php/Horde/Ldap.php"]
>
> My ldap and auth section in config/conf.php looks like this:
>
> $conf['ldap']['hostspec'] = 'ldaphostname;
> $conf['ldap']['tls'] = false;
> $conf['ldap']['version'] = 3;
> $conf['ldap']['user']['uid'] = 'uid';
> $conf['ldap']['user']['objectclass'] = array('shadowAccount',
> 'inetOrgPerson', 'posixAccount');
> $conf['ldap']['user']['filter_type'] = 'objectclass';
> $conf['ldap']['bindas'] = 'user';
> $conf['ldap']['useldap'] = true;
> $conf['auth']['admins'] = array('martin');
> $conf['auth']['checkip'] = true;
> $conf['auth']['checkbrowser'] = true;
> $conf['auth']['resetpassword'] = false;
> $conf['auth']['alternate_login'] = false;
> $conf['auth']['redirect_on_logout'] = false;
> $conf['auth']['list_users'] = 'input';
> $conf['auth']['params']['basedn'] = 'dc=myorg,dc=com';
> $conf['auth']['params']['scope'] = 'sub';
> $conf['auth']['params']['ad'] = false;
> $conf['auth']['params']['uid'] = 'uid';
> $conf['auth']['params']['encryption'] = 'ssha';
> $conf['auth']['params']['newuser_objectclass'] = array('shadowAccount',
> 'inetOrgPerson', 'posixAccount');
> $conf['auth']['params']['filter'] = '(objectclass=shadowAccount)';
> $conf['auth']['params']['password_expiration'] = 'no';
> $conf['auth']['params']['driverconfig'] = 'horde';
> $conf['auth']['driver'] = 'ldap';
> $conf['auth']['params']['count_bad_logins'] = false;
> $conf['auth']['params']['login_block'] = false;
> $conf['auth']['params']['login_block_count'] = 5;
> $conf['auth']['params']['login_block_time'] = 5;
>
> Binding to LDAP is allowed anonymously, write access to some of the
> params only by the actual user / ldap admin.
> Any ideas what could be wrong here?
>
> Best
>
> Martin

Martin, sorry to take so long...I have compared your ldap/auth conf to 
ours and the only diffs I see (aside from the obvious since we have 
different LDAP dbs) is we have ldap-user-bindn which is the same as our 
auth-params-basedn.

$conf['ldap']['user']['binddn'] = 'ou=addresses,o=antespam.com';

$conf['auth']['params']['basedn'] = 'ou=addresses,o=antespam.com';

But I doubt that is your problem.

-- 
Andy Dorman



More information about the horde mailing list