<html>
<head>
<meta content="text/html; charset=ISO-8859-1"
http-equiv="Content-Type">
</head>
<body bgcolor="#FFFFFF" text="#000000">
Ryan,<br>
<br>
Sorry for not being in touch for so long, I've been ill (and am
still bouncing in and out of hospitals at the moment).<br>
<br>
The best approach with AD settings is to play with ldapsearch until
you find a set of settings that will make it list the user
attributes you need.<br>
<br>
Here's a sample ldapsearch command for you<br>
<br>
<div style="">ldapsearch -x -LLL -E pr=200/noprompt -h 10.20.1.5<a
href="http://dc1.hansondodge.com"></a> -D 'rcain' -w '*****' -b
'DC=peoriariverfrontmuseum,DC=org' -s sub '(sAMAccountName=*)' cn
mail memberOf<br>
</div>
<br>
and play around with that until you find a "-b" setting and a "-D"
setting that works for you.<br>
<br>
Hope that helps!<br>
<br>
Jules.<br>
<br>
<div class="moz-cite-prefix">On 14/02/2013 00:44, Ryan Cain wrote:<br>
</div>
<blockquote
cite="mid:6D6244EF28EF754D90EA87437DDF06FC707CEF@mail01.peoriariverfrontmuseum.org"
type="cite">
<meta http-equiv="Content-Type" content="text/html;
charset=ISO-8859-1">
<style>
<!--
@font-face
{font-family:"Cambria Math"}
@font-face
{font-family:Calibri}
p.MsoNormal, li.MsoNormal, div.MsoNormal
{margin:0in;
margin-bottom:.0001pt;
font-size:11.0pt;
font-family:"Calibri","sans-serif"}
a:link, span.MsoHyperlink
{color:#0563C1;
text-decoration:underline}
a:visited, span.MsoHyperlinkFollowed
{color:#954F72;
text-decoration:underline}
span.EmailStyle17
{font-family:"Calibri","sans-serif";
color:windowtext}
.MsoChpDefault
{font-family:"Calibri","sans-serif"}
@page WordSection1
{margin:1.0in 1.0in 1.0in 1.0in}
div.WordSection1
{}
-->
</style>
<div class="WordSection1">
<p class="MsoNormal">Hi there,</p>
<p class="MsoNormal"> </p>
<p class="MsoNormal">I’ve got ZendTo up and running mostly
successfully, but having a few issues with AD logins. AD
authentication only works for certain users, even if I specify
the exact OU that some of them are in.</p>
<p class="MsoNormal"> </p>
<p class="MsoNormal">I have a ZendTo user sitting in
CN=Users,DC=peoriariverfrontmuseum,DC=org and it is able to
log in just fine. However, my own user account which is in
OU=Users,OU=Operations,OU=PRM,DC=peoriariverfrontmuseum,DC=org
is not able to log in. Below is my AD configuration from
preferences.php. Any help would be much appreciated! Thanks!</p>
<p class="MsoNormal"> </p>
<p class="MsoNormal"> 'authenticator' => 'AD',</p>
<p class="MsoNormal"> 'authLDAPAdmins' =>
array('rcain', 'jmellican'),</p>
<p class="MsoNormal"> 'authLDAPBaseDN1' =>
'DC=peoriariverfrontmuseum,DC=org',</p>
<p class="MsoNormal"> 'authLDAPServers1' =>
array('10.20.1.5','10.20.1.6'),</p>
<p class="MsoNormal"> 'authLDAPAccountSuffix1' =>
'@peoriariverfrontmuseum.org',</p>
<p class="MsoNormal"> 'authLDAPUseSSL1' => false,</p>
<p class="MsoNormal"> 'authLDAPBindUser1' =>
'zendto',</p>
<p class="MsoNormal"> 'authLDAPBindPass1' =>
'********',</p>
<p class="MsoNormal"> 'authLDAPOrganization1' => 'PRM',</p>
<p class="MsoNormal"> </p>
<p class="MsoNormal"><b><span style="font-size:9.0pt;
color:black">Ryan Cain</span></b><span
style="font-size:9.0pt; color:black"><br>
Director of Technology<br>
Peoria Riverfront Museum<br>
O - 309-863-3011</span></p>
<p class="MsoNormal"><span style="font-size:9.0pt; color:black">C
- 309-657-3148<br>
F - 309-863-3054</span></p>
<p class="MsoNormal"><span style="font-size:9.0pt; color:black"><a
moz-do-not-send="true"
href="mailto:rcain@peoriariverfrontmuseum.org"><span
style="color:blue">rcain@peoriariverfrontmuseum.org</span></a></span></p>
</div>
<br>
<span style="font-family:Arial; font-size:10px; color:#ccc;
line-height:12px">DISCLAIMER: The information in this email is
confidential and for the intended recipient only. If you are not
the addressee you may not disclose, copy or distribute the
contents of this email. If received in error, please notify the
sender. We accept no liability in the event of any loss or
damage suffered whilst accessing this email.</span>
<br>
<fieldset class="mimeAttachmentHeader"></fieldset>
<br>
<pre wrap="">_______________________________________________
ZendTo mailing list
<a class="moz-txt-link-abbreviated" href="mailto:ZendTo@zend.to">ZendTo@zend.to</a>
<a class="moz-txt-link-freetext" href="http://mailman.ecs.soton.ac.uk/mailman/listinfo/zendto">http://mailman.ecs.soton.ac.uk/mailman/listinfo/zendto</a></pre>
<br>
<pre class="moz-signature" cols="72">Jules
--
Julian Field MEng MBCS CITP CEng
'Intelligence is quickness to apprehend as distinct from ability,
which is capacity to act wisely on the thing apprehended.'
- Alfred North Whitehead
<a class="moz-txt-link-abbreviated" href="http://www.Zend.To">www.Zend.To</a>
Twitter: @JulesFM
PGP footprint: EE81 D763 3DB0 0BFD E1DC 7222 11F6 5947 1415 B654
</pre>
</blockquote>
</body>
</html>