Drastically shorten your training time with WalkMe's advanced online training solution that Guides your trainees to action.
Course Of The Month
8 days, 1 hour left to enrollBecome a Premium Member and unlock a new, free course in leading technologies each month.
Solved
Using LDAP in PHP to get Active Directory info always returns Invalid credentials
Posted on 2008-10-06
Let me preface this question with, I am not a sys admin by any means. I am a LAMP developer attempting to use PHP's LDAP extension to authenticate users of a PHP application against my client's Active Directory accounts.
Setup:
Box 1:
Windows 2003 running Apache 2.2 and PHP 5.2
Box 2:
Windows box running Active Directory
The sys admin send me a screenshot of the Active Directory tree. My account was located on:
domain: area1.area2.local
ad host machine: box2
My account is in the Our Users -> Our Department -> Our Team folder.
$connection = ldap_connect('box2'); <------- works
ldap_bind($connection,'cn=
Any ideas?
Setup:
Box 1:
Windows 2003 running Apache 2.2 and PHP 5.2
Box 2:
Windows box running Active Directory
The sys admin send me a screenshot of the Active Directory tree. My account was located on:
domain: area1.area2.local
ad host machine: box2
My account is in the Our Users -> Our Department -> Our Team folder.
$connection = ldap_connect('box2'); <------- works
ldap_bind($connection,'cn=
Any ideas?
[X]
Welcome to Experts Exchange
Add your voice to the tech community where 5M+ people just like you are talking about what matters.
- Help others & share knowledge
- Earn cash & points
- Learn & ask questions
3-
2
5 Comments
Active 2 days ago
Can you take a look through the user notes on http://docs.php.net/ldap_bind
The code ...
if (ldap_set_option($ldapLink
{
echo "Using LDAP v3";
}else{
echo "Failed to set version to protocol 3";
}
May be required for you as well as other settings.
The code ...
if (ldap_set_option($ldapLink
{
echo "Using LDAP v3";
}else{
echo "Failed to set version to protocol 3";
}
May be required for you as well as other settings.
Active 3 days ago
I am sure the info is correct because I am using it to login to the VPN. Thanks for the shot though.
Active 2 days ago
I've only done a little playing with LDAP.
Here is the code I used as my first test.
I'm using this from the command line.
Usage :
ldap_search <username> <password> <searchElement> <seachValue>
e.g.
ldap_search RQuadling blahblahblah sn Q*
will use my credentials to look for all entities that have a SN (surname) element that starts with Q.
If you change LDAP_Server to the server name and DOMAIN to the domain.
Here is the code I used as my first test.
I'm using this from the command line.
Usage :
ldap_search <username> <password> <searchElement> <seachValue>
e.g.
ldap_search RQuadling blahblahblah sn Q*
will use my credentials to look for all entities that have a SN (surname) element that starts with Q.
If you change LDAP_Server to the server name and DOMAIN to the domain.
<?php
$ds=ldap_connect('LDAP_Server.DOMAIN'); // must be a valid LDAP server!
$dn="DC=DOMAIN";
if ($ds)
{
$r=ldap_bind($ds, 'DOMAIN\\' . $argv[1], $argv[2]);
$sr = ldap_search($ds, $dn, $argv[3] . '=' . $argv[4]);
if (0 == $sr)
{
echo ldap_errno($ds), ':', ldap_error($ds), ':';
}
else
{
$info = ldap_get_entries($ds, $sr);
print_r($info);
}
ldap_close($ds);
var_dump($ds);
}
Featured Post
Question has a verified solution.
If you are experiencing a similar issue, please ask a related question
Active Directory security has been a hot topic of late, and for good reason. With
90%
of the world’s organization using this system to manage access to all parts of their IT infrastructure, knowing how to protect against threats and keep vulnerabil…
Recently, Microsoft released a best-practice guide for securing Active Directory. It's a whopping 300+ pages long. Those of us tasked with securing our company’s databases and systems would, ideally, have time to devote to learning the ins and outs…
This tutorial will walk an individual through the steps necessary to join and promote the first Windows Server 2012 domain controller into an Active Directory environment running on Windows Server 2008.
Determine the location of the FSMO roles by lo…
Polish reports in Access so they look terrific. Take yourself to another level. Equations, Back Color, Alternate Back Color. Write easy VBA Code. Tighten space to use less pages. Launch report from a menu, considering criteria only when it is filled…
Suggested Courses
Course of the Month8 days, 1 hour left to enroll
729 members asked questions and received personalized solutions in the past 7 days.
Join the community of 500,000 technology professionals and ask your questions.