Jump to:

23459 Posts in 18906 Topics by 2877 members

General Questions

SilverStripe Forums » General Questions » Auth External - Active Directory

General questions about getting started with SilverStripe that don't fit in any of the categories above.

Moderators: martimiz, Sean, biapar, Willr, Ingo, swaiba, simon_w

Page: 1
Go to End
Author Topic: 1324 Views
  • Mo
    Avatar
    Community Member
    508 Posts

    Auth External - Active Directory Link to this post

    Hi All,

    I was wondering if anyone has got this working? I am trying this using the LDAP config, following the tutorial in the docs (http://doc.silverstripe.org/doku.php?id=modules:auth_ext_ad), but I am having no luck.

    The Active Directory server in question is on my work network, and I can ping the server fine. I also noticed that the ldapsearch options provided don't work for me, though it is an LDAP V3 server. I can get ldapsearch working, if I change the string quite drastically.

    Any ideas? Are those docs out of date?

    Cheers,

    Mo

  • Mo
    Avatar
    Community Member
    508 Posts

    Re: Auth External - Active Directory Link to this post

    No one had any luck with this?

  • jand
    Avatar
    Community Member
    30 Posts

    Re: Auth External - Active Directory Link to this post

    Hi Mo, may I ask if you have an update on this? Did you get it working in the end?

  • Mo
    Avatar
    Community Member
    508 Posts

    Re: Auth External - Active Directory Link to this post

    Unfortunately not, using ldapsearch returns a list of users fine, but Silverstripe cant seem to authenticate against that list.

    Got me stumped!

    Mo

  • jand
    Avatar
    Community Member
    30 Posts

    Re: Auth External - Active Directory Link to this post

    a pity
    thanks for the reply anyway

  • polkowc
    Avatar
    Community Member
    2 Posts

    Re: Auth External - Active Directory Link to this post

    I have this working (I think I've got everythign you need to change in bold

    _config.php

    Authenticator::register_authenticator('ExternalAuthenticator');
    Authenticator::set_default_authenticator('ExternalAuthenticator');
    ExternalAuthenticator::setAuthDebug('/tmp/sstripe_debug.log');
    ExternalAuthenticator::createSource('domain','LDAP','User Directory');
    ExternalAuthenticator::setAnchorDesc('User ID');
    ExternalAuthenticator::setAuthSSLock('domain',false);
    ExternalAuthenticator::setAuthServer('domain',fqdn.of.domain.controller);
    ExternalAuthenticator::setOption('domain', 'basedn', 'ou=SomeOU,dc=fabrikam,dc=com');
    ExternalAuthenticator::setOption('domain', 'attribute', 'sAMAccountName');
    ExternalAuthenticator::setAutoAdd('domain', 'Default Domain');
    ExternalAuthenticator::setOption('domain', 'firstname_attr', 'givenName');
    ExternalAuthenticator::setOption('domain', 'surname_attr', 'sn');
    ExternalAuthenticator::setOption('domain', 'email_attr', 'mail');
    ExternalAuthenticator::setOption('domain', 'bind_as','cn=SomeUser,ou=SomeOU,dc=fabrikam,dc=com');
    ExternalAuthenticator::setOption('domain', 'bind_pw','SomePass');

    domain is the short domain name

    1324 Views
Page: 1
Go to Top

Want to know more about the company that brought you SilverStripe? Then check out SilverStripe.com

Comments on this website? Please give feedback.