<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
<html>
<head>
<meta content="text/html; charset=ISO-8859-1"
http-equiv="Content-Type">
</head>
<body bgcolor="#ffffff" text="#000000">
<br>
<br>
On 03/08/2010 15:48, Brad Beckenhauer wrote:
<blockquote cite="mid:4C57E5E7020000680005B0BE@smtp.aafp.org"
type="cite">
<meta content="text/html; charset=ISO-8859-1"
http-equiv="Content-Type">
<meta name="GENERATOR" content="MSHTML 8.00.7600.16588">
<div>Hi Jules,</div>
<div> </div>
<div>I noticed that there is
a authenticator /lib/NSSLDAPAuthenticator.php but the preferences.php
file does not have a corresponding section on implementing it.</div>
</blockquote>
I've never had an LDAP server to test it against. If you fancy
contributing the section, then that would be much appreciated!<br>
<blockquote cite="mid:4C57E5E7020000680005B0BE@smtp.aafp.org"
type="cite">
<div> I have access to SLES servers that supports OPEN LDAP and
thought I'd give it a whirl instead of the AD or IMAP authenticators.</div>
<div> </div>
<div>The NSSADAuthenticator.php has a section on howto implement it
in the preferences.php file but the NSSLDAPAuthenticator.php does not
have an example.</div>
</blockquote>
It should be much the same as the AD one, as that uses LDAP anyway.<br>
<blockquote cite="mid:4C57E5E7020000680005B0BE@smtp.aafp.org"
type="cite">
<div> </div>
<div>I'm going to "try" configuring the LDAP Auth in the
preferences.php as I have SLES system I can authenticate against.</div>
<div> </div>
<div>I'm "guessing" that the preferences file needs something like
the below to work:</div>
<div> </div>
<div> //<br>
// Settings for the LDAP authenticator.<br>
//<br>
// "authLDAPServers" Array of hostnames to try binding to<br>
// "authLDAPBaseDN" Base distinguished name for search/bind<br>
// "authLDAPAdmins" Cheap way to grant admin privs to users; an<br>
// array of uname's<br>
'authenticator' => 'LDAP',<br>
'authLDAPServers' => array('192.168.1.1','192.168.1.2'),<br>
'authLDAPBaseDN' => 'ou=users,o=domain',</div>
<div> 'authLDAPUseSSL' => false,
<<<<< option does not appear to be currently supported
in v3.59</div>
</blockquote>
That looks good. If you gunzip the attached file and drop it on the top
of your /opt/zendto/lib/NSSLDAPAuthenticator.php file, then you should
get the "authLDAPUseSSL" option you want.<br>
<blockquote cite="mid:4C57E5E7020000680005B0BE@smtp.aafp.org"
type="cite">
<div> </div>
<div>Can the LDAP library be tweaked to allow the use of the
authLDAPUseSSL option in the preferences file? (If my humble
interpretation that it is not currently implemented is correct).</div>
</blockquote>
Done, see above.<br>
<br>
If it works, please let me know and I'll put it in the next release.<br>
<pre class="moz-signature" cols="72">Jules
--
Julian Field MEng CITP CEng
<a class="moz-txt-link-abbreviated" href="http://www.ZendTo.com">www.ZendTo.com</a>
Need help fixing or optimising your systems?
Contact me!
Need help getting you started solving new requirements from your boss?
Contact me!
PGP footprint: EE81 D763 3DB0 0BFD E1DC 7222 11F6 5947 1415 B654
Follow me at twitter.com/JulesFM
</pre>
</body>
</html>