WordPress.org

Ready to get started?Download WordPress

Forums

Active Directory Integration
Can only authenticate one user (6 posts)

  1. jdavis2@jscc.edu
    Member
    Posted 8 months ago #

    When using the test tool, I can authenticate one user, but no others. The user that was able to authenticate is a domain admin account. I tried another domain admin account and it didn't work.

    I've tried setting Base DN to ou=xx,dc=yy,dc=zz.
    I've tried setting Base DN to just dc=yy, dc=zz.
    I've tried leaving Base DN blank.

    I get the same results, even with Base DN blank. That single user can authenticate but no others can. I tried adding the suffix @ourdomain.foo, but that broke the one user that could authenticate.

    Any ideas?

    http://wordpress.org/plugins/active-directory-integration/

  2. jdavis2@jscc.edu
    Member
    Posted 8 months ago #

    More data...

    I wrote a short PHP script to test ldap connectivity from this server.

    <?php
    $c = ldap_connect("myserver");
    $b = ldap_bind($c, "user1","password1");
    ?>

    works fine, but

    <?php
    $c = ldap_connect("myserver");
    $b = ldap_bind($c, "user2","password2");
    ?>

    throws an error...

    Warning: ldap_bind() [function.ldap-bind]: Unable to bind to server: Invalid credentials in [line of code in file]

  3. jdavis2@jscc.edu
    Member
    Posted 8 months ago #

    Okay, so I finally figured out that if I add @our.domain.foo as a suffix, then I can authenticate, but adding @domain.foo still doesn't work. Now I'm trying to figure out how to allow only users in a particular OU.

    Feel free to jump in here... }:-)

  4. jdavis2@jscc.edu
    Member
    Posted 8 months ago #

    oh, and this PHP code works...

    <?php
    $c = ldap_connect("myserver");
    $b = ldap_bind($c, "user2@our.domain.foo","password2");
    ?>
  5. jdavis2@jscc.edu
    Member
    Posted 8 months ago #

    SOLVED!

    I was able to authenticate just employees by putting all employees into an AD group, checking the box under the Authorization tab that says 'Users are authorized for login only when they are members of a specific AD group.', and putting the group name in the blank. That killed my admin user, but now only employees can log in to WordPress.

    Thanks, me, you were a great help!!! }:-)

  6. cmwwebfx
    Member
    Posted 7 months ago #

    LOL... nice. Thanks to YOU... well done. Now I need to ask a question for my own thread.

Reply

You must log in to post.

About this Plugin

About this Topic