|
|||||||||
|
|||||||||
| |||||||||
|
|||||||||
|
|||||||||
| |||||||||
|
|
|
| |||||||||
 |
|
|
«
Previous Thread
|
Next Thread
»
|
Thread Tools | Search this Thread |
Rating: 
|
Display Modes |
Dev Shed Forums Sponsor:
|
|
|
|
#136
August 2nd, 2006, 06:41 PM
|
|||
|
|||
|
Instructions for setting up SSL and LDAP
Quote:
I've read through this long thread but didn't see links to instructions on the process of setting up an Active Directory LDAP to accept SSL connections. Maybe I missed it but if someone has that information, I would greatly appreciate it.
|
|
#137
August 16th, 2006, 05:50 AM
|
|||
|
|||
|
After some hours of research I found an article which tells me how to setup the SSL part for this topic...
It is on: http://greg.cathell.net/php_ldap_ssl.html With that artical, and the code on Page 7 on this forum, it worked for my situation.
|
|
#138
September 20th, 2006, 03:58 PM
|
|||
|
|||
Ssl Ssl Ssl
I also have this SSL problem.
I have a Windows XP computer running PHP 5.1.6 and Apache 2.x. in ldap.conf file I was using TLS_REQCERT never and I could make SSL connections. Then I installed IIS 5.1. Now I can't make the SSL connection. I read the whole thread but couldn't solve the problem. It seems like it doesn't even read the ldap.conf file anymore.
|
|
#139
September 20th, 2006, 04:40 PM
|
|||
|
|||
Oh, at last I found it what the problem was.
The problem was the permission on certificates. You need to set the permission wide enough PHP can read them! Do not pass over this point when you are trying to establish a secure connection as it took my many hours to find! I hope this will help other people trying to establish secure connection.
|
|
#140
November 17th, 2006, 02:04 PM
|
|||
|
|||
|
Hey,
I noticed that people had trouble getting ldaps to work w/ php. I found that you need to have /etc/openldap/ldap.conf configured e.g. have entries like this tls_checkpeer yes tls_cacertfile /srv/certs/certauth.pem tls_reqcert never Usually, one uses the /etc/ldap.conf file which PHP doesn't use. If you use ldaps for user authentication on a linux box using PAM/SASL the /etc/ldap.conf file is used. To be safe keep both /etc/ldap.conf and /etc/openldap/ldap.conf identical.
|
|
#141
July 4th, 2007, 04:22 AM
|
|||
|
|||
|
howto configure ssl
a bit offtopic, but i'll try.
So, I also want to change the user's password using ldap and php, from debian, the ad is on a windows 2003 server. now i'm not a linux expert, how can I enable the ssl in debian/php/apache2? btw, its guaranteed that the windows side uses ssl?
|
|
#142
August 20th, 2007, 02:55 PM
|
|||
|
|||
|
Hey guys I am having the same problems cant connect using ldaps:// . I have tried everything in the link acropia provided to greg.cathell website
1. Configure PHP to load the LDAP and SSL modules 2. Copy DLL files to Windows system32 directory 3. Place ldap.conf file in C:\openldap\sysconf 5. Obtain certificate for AD server (.cer file) 6. Convert cert from .cer to .pem format 7. Install the certificate by referencing it in the ldap.conf file I did all but 4. Enable SSL over LDAP on Windows Domain Controller because I am on Windows XP. I am able to connect the AD fine and create a user (even though the account is disable off the bat) but I cant change the password. If anyone can help me try to get ldaps:// to working. Windows XP SP2 Using XAMPP Windows 1.6.3a (could this be the problem)
|
|
#144
August 21st, 2007, 05:28 AM
|
|||
|
|||
HELP ME (Add: Constraint violation)
I'm connect to the Active directory server (Windows 2000), and after I bind with the admin account, I can show all users...etc.
And when I want to add an user, the page return this : Warning: ldap_add() [function.ldap-add]: Add: Constraint violation in /home/intranet/form_test/test.php on line 92 This is my code : PHP Code:
Help me please !  THX all and good luck.
|
|
#145
August 26th, 2007, 08:58 PM
|
|||
|
|||
|
thanks to all of you I have found how to modificate datas in my AD.
First of all I had to connect through SSL. Whithout SSL I can search my users whereever he is (we have a lot of personalised Organisational Units). For that I use basedn = "" and connect to the port 3268 . But in SSL I cannot use an empty basedn, even if I use 3269 instead of 646. My big problem is that I can only find users if they are in the Users "folder" instead of one of our OU. Do you know how to search in the whole active directory with SSL ? I've been looking for that on the internet for days !
|
|
#146
August 26th, 2007, 09:04 PM
|
|||
|
|||
|
Quote:
I had this very same error when one of the lines was not correct. I had written $adduserAD["location"] instead of $adduserAD["physicaldeliveryofficename"], you should try to comment the lines one by one...
|
|
#147
October 16th, 2007, 04:38 AM
|
|||
|
|||
|
This works for me!
First of all i have two seperate servers for this setup. One AD-controller and one webserver My webserver is running Ubuntu and apache, i have used this on IIS and that works too! First of all i have a setup an stunnel between the AD box and the webserver box (stunnel dot org) Here is my PHP code: PHP Code:
|
Del.icio.us
Digg
Google
Spurl
Blink
Furl
Simpy
Y! MyWeb
