Tickets :: [#8582] Subtree search doesn't work with AD admin bindings

6.0.0-beta1

7/4/25

Summary	Subtree search doesn't work with AD admin bindings
Queue	Passwd
Queue Version	3.1.1
Type	Bug
State	Resolved
Priority	2. Medium
Owners	jan (at) horde (dot) org
Requester	manilal (at) ejyothi (dot) com
Created	09/17/2009 (5769 days ago)
Due
Updated	09/18/2009 (5768 days ago)
Assigned	09/17/2009 (5769 days ago)
Resolved	09/18/2009 (5768 days ago)
Github Issue Link
Github Pull Request
Milestone	3.1.2
Patch	No

09/18/2009 02:31:59 PM	CVS Commit	Comment #7	Reply to this comment
Changes have been made in CVS for this ticket: MFH: Add option to configure referrals for LDAP driver (manilal@ejyothi.com, ~~Request #8582~~). http://cvs.horde.org/diff.php/passwd/config/backends.php.dist?rt=horde&r1=1.41.2.5&r2=1.41.2.6&ty=u http://cvs.horde.org/diff.php/passwd/docs/CHANGES?rt=horde&r1=1.79.2.33&r2=1.79.2.34&ty=u http://cvs.horde.org/diff.php/passwd/lib/Driver/ldap.php?rt=horde&r1=1.41.2.11&r2=1.41.2.12&ty=u

09/18/2009 02:30:32 PM	Jan Schneider	Comment #6 Assigned to Jan Schneider State ⇒ Resolved Milestone ⇒ 3.1.2	Reply to this comment
Committed, thanks!

09/18/2009 02:30:04 PM	CVS Commit	Comment #5	Reply to this comment
Changes have been made in CVS for this ticket: Add option to configure referrals for LDAP driver (manilal@ejyothi.com, ~~Request #8582~~). http://cvs.horde.org/diff.php/passwd/config/backends.php.dist?rt=horde&r1=1.50&r2=1.51&ty=u http://cvs.horde.org/diff.php/passwd/docs/CHANGES?rt=horde&r1=1.112&r2=1.113&ty=u http://cvs.horde.org/diff.php/passwd/lib/Driver/ldap.php?rt=horde&r1=1.61&r2=1.62&ty=u

09/18/2009 02:26:57 PM	Jan Schneider	Deleted Original Message

09/18/2009 06:02:17 AM	manilal (at) ejyothi (dot) com	Comment #4 New Attachment: passwd-adv2.patch	Reply to this comment
I agree, it makes more sense to make the code uniform. I have modified the patch with Jan's suggestions. please review the new patch.

09/17/2009 10:00:42 AM	Jan Schneider	Comment #3 State ⇒ Feedback	Reply to this comment
To allow more flexibility, I know prefer the way we've done that in Turba, i.e. not adding a configuration setting for AD, but adding configurations for LDAP settings that are necessary for AD, and document them. Take a look at the following patches: http://cvs.horde.org/diff.php/turba/config/sources.php.dist?r1=1.97.6.38&r2=1.97.6.39 http://cvs.horde.org/diff.php/turba/lib/Driver/ldap.php?r1=1.54.4.20&r2=1.54.4.21

09/17/2009 05:56:25 AM	manilal (at) ejyothi (dot) com	Comment #2 New Attachment: passwd-ad.patch	Reply to this comment
A patch is prepared to disable LDAP_OPT_REFERRALS in the ldap driver. I have also added a configuration parameter in backends.php.dist to specify whether the LDAP server is an AD server. Kindly review the patch.

09/17/2009 05:36:25 AM	manilal (at) ejyothi (dot) com	Comment #1 Priority ⇒ 2. Medium Type ⇒ Bug Summary ⇒ Subtree search doesn't work with AD admin bindings Queue ⇒ Passwd Milestone ⇒ Patch ⇒ No State ⇒ Unconfirmed	Reply to this comment
Subtree search doesn't seems to be working when binding with admin credentials in Active Directory. Thus _lookupDN returns "User not found", even if the username and password are provided correctly. The subtree search work flawlessly in Horde_Auth and it occurs only in LDAP driver used in Passwd.