Hello,
Should start off my saying I do not know about Active Directory
specifically, but I have used the PHP LDAP support a lot against other
directory servers.
What I see straight off is that $user_dn does not look like a
distinguished name. I would have expected something like:
$user_dn = uid=username,ou=people,dc=mydomain,dc=myschools,dc=org;
Also, while you can bind as someone, you may not need to. Just to see
if you can get anything back you might try binding anonymously and just
printing something the common name.
Finally, it can really be helpful to test your queries with a simple
ldap tool like ldapsearch. If you have access to a Linux box somewhere
ldapsearch is just part of the tool set.
Bill
--On Tuesday, February 25, 2003 10:06:21 PM -0500 Ezra Nugroho
[EMAIL PROTECTED] wrote:
This one is really puzzling...
It has taken me days..
I need to do an LDAP search to an Active Directory server.
I was able to connect and bind to the server fine, but my searches
are always in vain. OK, here we go:
box name: mydomain-71.mydomain.myschools.org
domain name: mydomain.myschools.org
user to search: [EMAIL PROTECTED]
(names and and passwords are of course ficticious)
my code:
?
$user_dn = [EMAIL PROTECTED];
$base_dn = dc=mydomain,dc=myschools,dc=org;
$server = mydomain-71.mydomain.myschools.org;
echo $conn = ldap_connect($server);
echo AUTH: . $bind = ldap_bind($conn, $user_dn,password);
$user = ez;
$filter = (|(name=$name*)(displayname=$name*)(cn=$name*));
$res = ldap_search($conn,$base_dn,$filter);
$info = ldap_get_entries($conn, $res);
print_r($info);
?
it gives me:
Resource id #1
AUTH: 1
Warning: LDAP: Unable to perform the search: can't contact LDAP
server in ldap_test.php on line 16
Warning: ldap_get_entres(): supplied argument is not a valid ldap
result resource blah blah...
Now, I was able to connect and authenticate to it, but why
ldap_search() says that I can't connect to it?
If I change $base_dn to
dc=mydomain-71,dc=mydomain,dc=myschools,dc=org; The error message
is changed to :
Unable to perform the search: No such object in ldap_test.php on line
16.
It doesn't complain about not being able to connect anymore! But of
course the search fails because the domain really is only
mydomain.myschools.org.
What on earth did I do wrong??
Thanks,
-
This mail sent through IMP: http://horde.org/imp/
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
+
| Bill MacAllister
| 14219 Auburn Road
| Grass Valley, CA 95949
| Phone: 530-272-8555
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
