LDAP auth (anon bind is not good)

Get help with installation and running phpBB 3.0.x here. Please do not post bug reports, feature requests, or MOD-related questions here.
Scam Warning
Forum rules
END OF SUPPORT: 1 January 2017 (announcement)
Locked
eliast
Registered User
Posts: 1
Joined: Sat Nov 04, 2006 12:05 am

LDAP auth (anon bind is not good)

Post by eliast »

Hy all! I've dled the latest cvs beta to try if LDAP authentication works. instllation went through, all ok.

but.
I could not successfully set up a connection to my openldap server, because phpbb does an anonymous bind and then search for the admin account. This simply not supported by our server. We have a user for each and every application we use, and users cannot bind to our ldap backend, only applications can. (so we don't have to deal with security permissions for users, only for applications, and it's significally less to do) And then applications seeks for the userdata based on the mail attribute.

So is it possible to set up a non anonymous ldap connection/authentication? And then the forum users not to be authenticated but searched for data in the directory? I don't know if I could explain my problem correctly, sorry for my english...
Graham
Former Team Member
Posts: 8462
Joined: Tue Mar 19, 2002 7:11 pm
Location: UK
Contact:

Post by Graham »

This will not be possible with the standard LDAP authentication plugin with phpBB 3.0

It is possible however to write your own plugin which implements the functionality you desire
"So Long, and Thanks for All the Fish"

phpBB Useful Links: Knowledge Base | Userguide | Forum Search | MOD Database | Styles Database
My Links: Blog!
Locked

Return to “[3.0.x] Support Forum”