Active Directory Integration
ldaps failed (6 posts)

  1. fredwen
    Posted 3 years ago #

    Our AD doesn't seem to support TLS so in order to have ldap traffic secured ldaps on port 636 is the only way to go. I tried tricks mentioned in FAQs such as using ldaps:// prefix but connection still failed. Not much clue is given by test tool.
    My hunch is that AD usually uses a self-signed SSL cert so WP/PHP doesn't trust it. Is there any way to ignore SSL verification, especially trusted root CA?
    Other diagnostic tips are appreciated.


  2. fredwen
    Posted 3 years ago #

    I figured out the solution myself!
    For Version 1.1.4 of this plug-in, on line 420 of file ad_ldap\adLDAP.php in function connect(), add following line:
    ldap_set_option($this->_conn, LDAP_OPT_REFERRALS, 0);

  3. aswinnair
    Posted 3 years ago #

    I tried this, but ldaps is still failing. Any other clue?

    WP verion 3.5.1

  4. aswinnair
    Posted 3 years ago #

    Can somebody help? Only port 389 WITHOUT TLS is working. Port 389 with TLS and LDAPS with port 636 are failing..

  5. fredwen
    Posted 3 years ago #

    If you are on Windows,
    1. create C:\OpenLDAP\sysconf\ldap.conf (Yes, it MUST be this path because it's hard-coded in the dll)
    2. put this line at the top:
    TLS_REQCERT never
    3. Save, stop/start apache.

    See http://php.net/manual/en/function.ldap-bind.php for other clue.

  6. sobrien808
    Posted 2 years ago #

    fredwen's solution worked for me on linux, just edit /etc/openldap/ldap.conf and add
    TLS_REQCERT never
    to the bottom and restart apache.
    Which I guess is the first FAQ so, uh, you probably already know that...

Topic Closed

This topic has been closed to new replies.

About this Plugin

  • Active Directory Integration
  • Frequently Asked Questions
  • Support Threads
  • Reviews

About this Topic