I've just successfully configured wpDirAuth to work with our LDAP, and much seems good. I have several questions at this point:
- The "Lost Password" link shows up on the login page for both LDAP authenticated and existing users, though it's only applicable for the latter. Is there a way to hide this for LDAP authenticated users, since they are supposed to update their passwords via our institutional link?
- I just discovered what seems to be a password security issue with LDAP-authenticated users, which I'll email you separately...not sure if it's due to wpDirAuth, our LDAP server, or something else, but it's crazy.
- We have a number of existing users whom I'd like to convert to LDAP-authenticated users. They registered using their institutional login as username. The only distinguishing characteristic I see in wp_usermeta is that wpDirAuthFlag is set to 1. If we do so manually for existing users, would this then authenticate logins against our LDAP?
Thanks again for the great plugin, and appreciate input on the above.