Hi, > Chris, > > 1) Shouldn't the OU security permissions be set within the AD itself? > 2) If the above is done, then the user account that's being authenticated > shouldn't be able to access privileged information.
1) Not sure. The permissions I'm after is similar to that of NTFS permissions on the file system. Essentially, it is a way to restrict an application to read certain OU's or Objects completely, making it invisible. FYI... http://technet.microsoft.com/en-us/library/cc785913(WS.10).aspx 2) This is completely irrelevant to authentication. See point 1 above. > Just curious, are you using phpldapadmin? A modified version of adLDAP, http://adldap.sourceforge.net/ Regards, Chris. -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php