Can't get LDAP authentication to work

Events happening in the community are now at Drupal community events on www.drupal.org.
mhkc's picture
Posted by mhkc on September 15, 2011 at 4:57pm

Hi - (sorry for the cross post of this message ie: http://groups.drupal.org/node/172894#comment-584679).

We're trying to get the LDAP function working but so far without success. We've got another site using the ldap authentication module and it works like a charm. For some reason on open scholar it just will not recognize the ldap restriction.

  • We've tried a fresh install of the site and database to ensure the default settings are in place.

  • The only module we added was the ldap authentication module (since the openscholar ldap page indicates that this is meant to work in conjunction with the other app)

  • We've tried activating just one or the other or both of the ldap modules with no success.

At present anonymous users can create accounts and web sites, no restrictions. Are we being dense, or are we completely missing a key configuration element?

Any assistance very much appreciated.
MHK

Comments

got it

Posted by mhkc on September 16, 2011 at 5:03pm
mhkc's picture

I figured out the problem, and for the record I was being dense.

solution?

Posted by irshaad.alha on November 1, 2011 at 1:19am
irshaad.alha's picture

Hello,

Can you share what you did to solve your issue, i seem to be in the same predicament with openscholar v12.

Thanks.

LDAP Not working

Posted by Jeana_with_a_j on November 1, 2011 at 1:27pm
Jeana_with_a_j's picture

We're also having problems. LDAP modules are in place, but anyone can still create an account.

here are my settings

Posted by mhkc on November 4, 2011 at 1:11pm
mhkc's picture

Hi - here are the settings I'm using, for what they're worth. All of the information for the config came from my technical system admin.

** SETTINGS TAB **

  • AUTHENTICATION MODE
    --- Choose authentication mode: Mixed mode
    --- Choose user conflict resolve procedure: Disallow login and log the conflict

  • SECURITY OPTIONS
    --- Do not store user passwords: checked
    --- Sync LDAP: UNchecked

  • LDAP UI OPTIONS
    --- Remove password change: UNchecked (because we are using mixed mode, but you may want to check depending on your config)
    --- Alter email field on user edit form: do nothing

** ADD SERVER **
- SERVER SETTINGS
--- Name: whatever you want...
--- LDAP Server: ldap://123.456.789.0/o=MyServerName (note that it is the LETTER 'o' [ohhhhh] after the slash)
--- LDAP port: 389 (default setting)
--- Use Start-TLS: UNchecked
--- Store passwords....: UNchecked

  • LOGIN PROCEDURE
    --- Base DNS: o=BaseDNS (as above, that is an ohhhhh before the = ; you may have more than one DNS...)
    --- Username Attribute: cn (for eDir) or sAMAccountName (for Active Directory)
    --- Email Attribute: mail (in my case)
    --- PHP to Transform...: empty
    --- PHP Filter: empty

  • ADVANCED CONFIGURATION
    --- DN for non-anonymous search: userid
    --- Password for non-anonymous search: password

THIS is where I was being dense. I hadn't put these credentials in so the connection wasn't set. After I put in the user/pass for an account that was within the LDAP and saved the settings it all worked like a charm.

Hope this helps.
MHK

OpenScholar

Group organizers

Group notifications

This group offers an RSS feed. Or subscribe to these personalized, sitewide feeds: