Hey,
I am trying to configure LDap to authenticate a user by the group they are contained in within Active Directory on a mediawiki site, At the moment i have cofigured LDap so that any user within active directory can logon to the wiki but i want to limit it down to a certain group.
I have being trying to solve this for a few days and have tried enless amounts of different code but nothing has been working..
Below is some of the code that i have already tried, i am using PHP & IIS not Apache... I am really stuck on this so any suggestions would be great !
require_once( "includes/LdapAuthentication.php" );
$wgAuth = new LdapAuthenticationPlugin();
$wgLDAPDomainNames = array( "MyDomain" );
$wgLDAPServerNames = array( "MyDomain"=>"example.eu.ad.site.com" );
$wgLDAPSearchStrings = array( "MyDomain"=>"MyDomain\USER-NAME" );
$wgLDAPUseSSL = false;
$wgLDAPUseLocal = false;
$wgMinimalPasswordLength = 1;
$wgLDAPRetrievePrefs = false;
$wgLDAPBaseDNs = array( "MyDomain"=>"dc=eu,dc=ad,dc=site,dc=com" );
$wgLDAPRequiredGroups = array( "MyDomain"=> array("CN=editors,OU=users,OU=branch,DC=eu,DC=ad,DC=site,DC=com") );
$wgLDAPGroupUseFullDN = array( "MyDomain"=> false );
$wgLDAPGroupObjectclass = array( "MyDomain"=>"*" );
$wgLDAPGroupAttribute = array( "MyDomain"=>"USER-NAME" );
$wgLDAPGroupSearchNestedGroups = array( "MyDomain"=> false );
require_once( "includes/LdapAuthentication.php" );
$wgAuth = new LdapAuthenticationPlugin();
$wgLDAPDomainNames = array( "MyDomain" );
$wgLDAPServerNames = array( "MyDomain"=>"rexample.eu.ad.site.com" );
$wgLDAPEncryptionType = "clear";
$wgLDAPSearchStrings = array( "Dirdub01"=>"USER-NAME@MyDomain" );
$wgLDAPUseSSL = false;
$wgLDAPUseLocal = false;
$wgMinimalPasswordLength = 1;
$wgLDAPRetrievePrefs = false;
$wgLDAPRequiredGroups = array( "MyDomain"=> array("cn=editors,ou=users,ou=branch,dc=eu,dc=ad,dc=site,dc=com") );
$wgLDAPGroupUseFullDN = array( "MyDomain"=> false );
$wgLDAPGroupObjectclass = array( "MyDomain"=>"*" );
$wgLDAPGroupAttribute = array( "dirdub01"=>"SAMAccountNAme" );
$wgLDAPGroupSearchNestedGroups = array( "MyDomain"=> false );
Thanks,
Karl
I am trying to configure LDap to authenticate a user by the group they are contained in within Active Directory on a mediawiki site, At the moment i have cofigured LDap so that any user within active directory can logon to the wiki but i want to limit it down to a certain group.
I have being trying to solve this for a few days and have tried enless amounts of different code but nothing has been working..
Below is some of the code that i have already tried, i am using PHP & IIS not Apache... I am really stuck on this so any suggestions would be great !
require_once( "includes/LdapAuthentication.php" );
$wgAuth = new LdapAuthenticationPlugin();
$wgLDAPDomainNames = array( "MyDomain" );
$wgLDAPServerNames = array( "MyDomain"=>"example.eu.ad.site.com" );
$wgLDAPSearchStrings = array( "MyDomain"=>"MyDomain\USER-NAME" );
$wgLDAPUseSSL = false;
$wgLDAPUseLocal = false;
$wgMinimalPasswordLength = 1;
$wgLDAPRetrievePrefs = false;
$wgLDAPBaseDNs = array( "MyDomain"=>"dc=eu,dc=ad,dc=site,dc=com" );
$wgLDAPRequiredGroups = array( "MyDomain"=> array("CN=editors,OU=users,OU=branch,DC=eu,DC=ad,DC=site,DC=com") );
$wgLDAPGroupUseFullDN = array( "MyDomain"=> false );
$wgLDAPGroupObjectclass = array( "MyDomain"=>"*" );
$wgLDAPGroupAttribute = array( "MyDomain"=>"USER-NAME" );
$wgLDAPGroupSearchNestedGroups = array( "MyDomain"=> false );
require_once( "includes/LdapAuthentication.php" );
$wgAuth = new LdapAuthenticationPlugin();
$wgLDAPDomainNames = array( "MyDomain" );
$wgLDAPServerNames = array( "MyDomain"=>"rexample.eu.ad.site.com" );
$wgLDAPEncryptionType = "clear";
$wgLDAPSearchStrings = array( "Dirdub01"=>"USER-NAME@MyDomain" );
$wgLDAPUseSSL = false;
$wgLDAPUseLocal = false;
$wgMinimalPasswordLength = 1;
$wgLDAPRetrievePrefs = false;
$wgLDAPRequiredGroups = array( "MyDomain"=> array("cn=editors,ou=users,ou=branch,dc=eu,dc=ad,dc=site,dc=com") );
$wgLDAPGroupUseFullDN = array( "MyDomain"=> false );
$wgLDAPGroupObjectclass = array( "MyDomain"=>"*" );
$wgLDAPGroupAttribute = array( "dirdub01"=>"SAMAccountNAme" );
$wgLDAPGroupSearchNestedGroups = array( "MyDomain"=> false );
Thanks,
Karl