Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

Login to ldap with uid instead of cn in DN input

Tags:

ldap

I'm running into a problem using LDAP to authenticate logins.

I already created a user with all basic info and try to login through phpldapadmin with detail :

Login DN: cn=Sample User,ou=people,dc=example,dc=om
Password: xxxx

then it can login.

But when i try to use with this :

Login DN: uid=sampleuser,ou=people,dc=example,dc=om
Password: xxxx

it never works (cannot login).

Please tell me what should i config?

like image 956
Lidya Kartika Avatar asked Aug 11 '13 22:08

Lidya Kartika

People also ask

What are three ways to LDAP authenticate?

LDAP v3 supports three types of authentication: anonymous, simple and SASL authentication.

What is LDAP login DN?

The administrator bind DN is the user name and password configured for LDAP authentication. The administrator bind DN is used only for querying the directory server and so this user must have privileges to search the directory.

How do I bind DN in LDAP?

When configure Ldap server profile , need to know what is the Bind_DN and password on your Active directory server. Login to firewall GUI: Device > Server Profiles > lDAP > Bind-DN and paste the same.

What is uid in LDAP?

UidNumber the UID or UserId) which is a number assigned by Linux and UNIX to each user on the system. This number is used to identify the user to the system and to determine which system resources the user can access. UidNumber is the AttributeType used in LDAP for the storing the number.

2 Answers

If the LDAP client is using a simple BIND operation, then the BIND DN must exist. The simple BIND operation takes as arguments at least the DN and a password.

Consider the following entries:

dn: cn=sample user,ou=people,dc=example,dc=com
objectClass: top
objectClass: inetOrgPerson
cn: sample user
uid: sampleuser

is not the same entry as:

dn: uid=sampleuser,ou=people,dc=example,dc=com
objectClass: top
objectClass: inetOrgPerson
cn: sample user
uid: sampleuser

even though the attributes are identical (the SN which is required by inetOrgPerson is omitted in this example). Th DN is the primary key and must be used with the simple BIND operation. The entries given above, are two complete separate entries with two different DNs.

like image 192
Terry Gardner Avatar answered Oct 21 '22 22:10

Terry Gardner

I know its bit outdated but i was facing same problem. Thing is as Terry described that full dn's are different. You can fix this by forcing phpldapadmin to create users with uid as first key in dn.

You can change

<rdn>cn</rdn>

to

<rdn>uid</rdn>

in file

/etc/phpldapadmin/templates/creation/posixAccount.xml

That will create every posixAccount as:

dn: uid=sampleuser,ou=people,dc=example,dc=com
like image 30
penumbra Avatar answered Oct 21 '22 23:10

penumbra
Sign in to Comment

Related questions

How to bind (authenticate) a user with ldap3 in python3
Open LDAP vs apacheDS
Java LDAP - Add group to user issue - Error code 53 - WILL_NOT_PERFORM [duplicate]
LDAP/AD filter - "objectclass not equal to" is not working
Does Python 3 have LDAP module?
How to obtain email of the logged in user in powershell
Can AuthnProviderAlias ldap work with Apache2.4.x?
ASP.NET 5 / MVC 6 On-Premises Active Directory
How to securely store credentials per session in Flask
Using LDAP for authentication in iOS
Novell LDAP C# - Novell.Directory.Ldap - Has anybody made it work?
Enumerate all users in LDAP with PHP
Strict less than operator in LDAP search filter?
Is it possible to send LDAP "requests" via telnet?
Spring Security and multiple ldap configuration
ASP.NET refuses to respect my authority.
ActiveDirectoryMembershipProvider - "Unable to establish secure connection"
What is LDAP anonymous binding?
Get all possible attributes and all objectClasses from openLDAP in PHP
How to install GSSAPI Python module?

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!