[#8582] Subtree search doesn't work with AD admin bindings
Summary Subtree search doesn't work with AD admin bindings
Queue Passwd
Queue Version 3.1.1
Type Bug
State Resolved
Priority 2. Medium
Owners Jan Schneider <jan (at) horde (dot) org>
Requester manilal (at) ejyothi (dot) com
Created 09/17/09 (182 days ago)
Due
Updated 09/18/09 (181 days ago)
Assigned 09/17/09 (182 days ago)
Resolved 09/18/09 (181 days ago)
Attachments passwd-adv2.patch Download
Milestone 3.1.2
Patch No

History
09/18/09 CVS Commit Comment #7 Reply to this comment
Changes have been made in CVS for this ticket:

MFH: Add option to configure referrals for LDAP driver 
(manilal@ejyothi.com, Request #8582).
http://cvs.horde.org/diff.php/passwd/config/backends.php.dist?rt=horde&r1=1.41.2.5&r2=1.41.2.6&ty=u
http://cvs.horde.org/diff.php/passwd/docs/CHANGES?rt=horde&r1=1.79.2.33&r2=1.79.2.34&ty=u
http://cvs.horde.org/diff.php/passwd/lib/Driver/ldap.php?rt=horde&r1=1.41.2.11&r2=1.41.2.12&ty=u
09/18/09 Jan Schneider Comment #6
Assigned to Jan Schneider
State ⇒ Resolved
Milestone ⇒ 3.1.2		 Reply to this comment
Committed, thanks!
09/18/09 CVS Commit Comment #5 Reply to this comment
Changes have been made in CVS for this ticket:

Add option to configure referrals for LDAP driver 
(manilal@ejyothi.com, Request #8582).
http://cvs.horde.org/diff.php/passwd/config/backends.php.dist?rt=horde&r1=1.50&r2=1.51&ty=u
http://cvs.horde.org/diff.php/passwd/docs/CHANGES?rt=horde&r1=1.112&r2=1.113&ty=u
http://cvs.horde.org/diff.php/passwd/lib/Driver/ldap.php?rt=horde&r1=1.61&r2=1.62&ty=u
09/18/09 Jan Schneider Deleted Attachment: passwd-ad.patch
 
09/18/09 manilal (at) ejyothi (dot) com Comment #4
New Attachment: passwd-adv2.patch Download		 Reply to this comment
I agree, it makes more sense to make the code uniform. I have modified 
the patch with Jan's suggestions. please review the new patch.
09/17/09 Jan Schneider Comment #3
State ⇒ Feedback		 Reply to this comment
To allow more flexibility, I know prefer the way we've done that in 
Turba, i.e. not adding a configuration setting for AD, but adding 
configurations for LDAP settings that are necessary for AD, and 
document them. Take a look at the following patches:

http://cvs.horde.org/diff.php/turba/config/sources.php.dist?r1=1.97.6.38&r2=1.97.6.39

http://cvs.horde.org/diff.php/turba/lib/Driver/ldap.php?r1=1.54.4.20&r2=1.54.4.21
09/17/09 manilal (at) ejyothi (dot) com Comment #2
New Attachment: passwd-ad.patch		 Reply to this comment
A patch is prepared to disable LDAP_OPT_REFERRALS in the ldap driver. 
I have also added a configuration parameter in backends.php.dist to 
specify whether the LDAP server is an AD server. Kindly review the 
patch.
09/17/09 manilal (at) ejyothi (dot) com Comment #1
State ⇒ Unconfirmed
Patch ⇒
Milestone ⇒
Queue ⇒ Passwd
Summary ⇒ Subtree search doesn't work with AD admin bindings
Type ⇒ Bug
Priority ⇒ 2. Medium		 Reply to this comment
Subtree search doesn't seems to be working when binding with admin 
credentials in Active Directory. Thus _lookupDN returns "User not 
found", even if the username and password are provided correctly. The 
subtree search work flawlessly in Horde_Auth and it occurs only in 
LDAP driver used in Passwd.