Try putting your ldap service account in the ldap ACL instead of "*".
Then put the ldap service account credentials in the config.php under the main bindDN and bindPass: $ldapservers->SetValue($i,'login','dn','service_account_name'); $ldapservers->SetValue($i,'login','pass','service_account_password'); ----- Original Message ----- From: Tim Gustafson <[email protected]> To: [email protected] <[email protected]> Sent: Fri Feb 05 14:54:59 2010 Subject: [phpldapadmin-users] BindDN and BindPassword for UID Searching? Hi, We have a "closed" OpenLDAP server - that is, you have to authenticate using a DN and password before you can search for anything. My users log into phpLdapAdmin with just their user ID (the "uid" field) and password. phpLdapAdmin is configured as follows: $ldapservers->SetValue($i,'login','attr','uid'); $ldapservers->SetValue($i,'login','string','uid=<username>,ou=People,dc=foo'); However, users can't see to log in; phpLdapAdmin keeps saying: > Authenticate to server > Bad username or password. Please try again. If I add an ACL like this to the top of my OpenLDAP file, I'm able to log in: access to attrs=entry,uid by * read But that opens up our user list to the public, which we don't want. Is there any configuration option I can set to tell phpLdapAdmin to bind to OpenLDAP with a "service account" to perform the DN search (or whatever it's doing when people log in) before re-binding with the users own credentials to fix this? Tim Gustafson Baskin School of Engineering UC Santa Cruz [email protected] 831-459-5354 ------------------------------------------------------------------------------ The Planet: dedicated and managed hosting, cloud storage, colocation Stay online with enterprise data centers and the best network in the business Choose flexible plans and management services without long-term contracts Personal 24x7 support from experience hosting pros just a phone call away. http://p.sf.net/sfu/theplanet-com _______________________________________________ phpldapadmin-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/phpldapadmin-users ------------------------------------------------------------------------------ The Planet: dedicated and managed hosting, cloud storage, colocation Stay online with enterprise data centers and the best network in the business Choose flexible plans and management services without long-term contracts Personal 24x7 support from experience hosting pros just a phone call away. http://p.sf.net/sfu/theplanet-com _______________________________________________ phpldapadmin-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/phpldapadmin-users
