Wednesday 26 May 2010 2:55:02 am
Hi there. I am also trying to set up LDAP but it still doesn't work. Here is what I did: Users I created a user with login id "eZLDAP" on our Domain-Controller (Windows SBS 2008). After that I created the same user inside of eZ Publish. Settings in override/ldap.ini.append.php
[LDAPSettings]
LDAPDebugTrace=enabled
# Set LDAP version number
LDAPVersion=3
# Set to true if use LDAP server
LDAPEnabled=true
# LDAP host
LDAPServer=sbs2008
# Port nr for LDAP, default is 389
LDAPPort=389
# Specifies the base DN for the directory.
LDAPBaseDn=DC--Office,DC--local
# If the server does not allow anonymous bind, specify the user name for the bind here.
LDAPBindUser=eZLDAP
# If the server does not allow anonymous bind, specify the password for the bind here.
LDAPBindPassword=******
# Could be sub, one, base.
LDAPSearchScope=sub
# Use the equla sign to replace "=" when specify LDAPBaseDn or LDAPSearchFilters
LDAPEqualSign=--
# Add extra search requirment. Uncomment it if you don't need it.
# Example LDAPSearchFilters[]=objectClass--inetOrgPerson
LDAPSearchFilters[]
# LDAP attribute for login. Normally, uid
LDAPLoginAttribute=uid
# Could be id or name
LDAPUserGroupType=id
# Default place to store LDAP users. Could be content object id or group name for LDAP user group,
# depends on LDAPUserGroupType.
LDAPUserGroup[]=5
# LDAP attribute type for user group. Could be name or id
LDAPUserGroupAttributeType=name
# LDAP attribute for user group. For example, employeetype. If specified, LDAP users
# will be saved under the same group as in LDAP server.
LDAPUserGroupAttribute=employeetype
# LDAP attribute for First name. Normally, givenname
LDAPFirstNameAttribute=givenname
# LDAP attribute for Last name. Normally, sn
LDAPLastNameAttribute=sn
# LDAP attribute for email. Normally, mail
LDAPEmailAttribute=mail
# LDAP encoding is utf-8 or not
Utf8Encoding=false
# if 'enabled' you can move LDAP users to a different group and they will not
# be automatically moved back (to the group they are configured to be placed in)
# when the user logs in again.
KeepGroupAssignment=disabled Settings in override/site.ini.append.php
[UserSettings]
LoginHandler[]=LDAP
LoginHandler[]=standard If I want to login with my own username/password I get the fopllowing debug output: Notice: eZLDAPUser::loginUser May 26 2010 11:40:35
array (
'stage' => '1/5: Connecting and Binding to LDAP server',
'LDAPServer' => 'sbs2008',
'LDAPPort' => '389',
'LDAPBindUser' => 'eZLDAP',
'LDAPVersion' => '3',
)
Error: eZLDAPUser::loginUser() May 26 2010 11:40:35
Cannot initialize connection for LDAP server
Is there anything to setup on servers' side? Any ideas why I cannot connect? Would be nice to get some help. Thanks a lot!
Linux is like a wigwam; no windows, now gates, and apache inside!
|