Portada
Re:Inscription par requêtes LDAP (1 viewing) (1) Guest
Favoured: 0
|
|
|
TOPIC: Re:Inscription par requêtes LDAP
|
BOYEAU (User)
Fresh Lemon
Posts: 3
|
|
Re:Inscription par requêtes LDAP 6 Months, 3 Weeks ago
|
Karma: 0
|
|
bonjour,
avez-vous des nouvelles pour ce problème,
car j'ai aussi le même soucis
d'avance merci de votre réponse
Cordialement
py
|
|
|
|
 Logged
|
|
|
The administrator has disabled public write access.
|
taltos (Visitor)
Fresh Lemon
Posts: 11
|
|
Re:Inscription par requêtes LDAP 6 Months, 3 Weeks ago
|
Karma: 0
|
voila mon config-ldap.php
| Code: |
<?php
/*
* LimeSurvey
* Copyright (C) 2007 The LimeSurvey Project Team / Carsten Schmitz
* All rights reserved.
* License: GNU/GPL License v2 or later, see LICENSE.php
* LimeSurvey is free software. This version may have been modified pursuant
* to the GNU General Public License, and as distributed it includes or
* is derivative of works licensed under the GNU General Public License or
* other free or open source software licenses.
* See COPYRIGHT.php for copyright notices and details.
*
* $Id: config-ldap.php 3614 2007-11-09 20:11:32Z leochaton $
*/
/*********** LDAP Parameters and Functions ***********************
*
* - First define your ldap servers and remember the serverId
* - Then define your ldap_query and 'attach' it to the serverId
******************************************************************/
/*********************************************/
/* LDAP servers */
/*********************************************/
$serverId=0;
// Define the server DNS name or IP Address
// If encryption is enabled, make sure the name given here
// corresponds to the certificate's identity
$ldap_server[$serverId]['server'] = "IP serveur AD";
// Define the TCP port on which the LDAP server is listenning
// This should be 389 for standard LDAP servers
// or 686 for standard LDAPS connections
$ldap_server[$serverId]['port'] = "389";
// Define the ldap protocol to use
// 'ldapv2' and 'ldapv3' are supported
$ldap_server[$serverId]['protoversion'] = "ldapv3";
// Define the encryption method to use
// 'ldaps' is supported for 'ldapv2' servers
// 'start-tls' is supproted for 'ldapv3' servers
// 'none' is supproted for no encryption at all
// Don't forget to setup your CA's certificate in
// the openldap ldap.conf file
$ldap_server[$serverId]['encrypt'] = "none";
// Define the referral option
// 'false' is recommended for ActiveDirectory servers
$ldap_server[$serverId]['referrals'] = false;
// Define the authentication used to bind to the directory
// We currently support simple authentication
// If anonymous bind must be performed, comment the following two lines
$ldap_server[$serverId]['binddn'] = "cn=administrateur,cn=users,dc=entrepirse,dc=fr";
$ldap_server[$serverId]['bindpw'] = "password";
/********* Copy for more definitions *****
// $serverId++;
// $ldap_server[$serverId]['server'] = "IP serveur";
// $ldap_server[$serverId]['port'] = "389";
// $ldap_server[$serverId]['protoversion'] = "ldapv3";
// $ldap_server[$serverId]['encrypt'] = "none";
// $ldap_server[$serverId]['referrals'] = false;
// $ldap_server[$serverId]['binddn'] = "uid=administrateur,ou=users,dc=entreprise,dc=fr";
// $ldap_server[$serverId]['bindpw'] = "password";
*****************************************/
/**********************************************************************/
/* Predefined Queries for Token Imports */
/* */
/* This sample query definition is just an fake template: do not */
/* expect it to do something intelligent on your directory */
/* Instead have a look at the online documentation: */
/* - Section Installation, paragraph LDAP_Settings */
/* And for Active Directory tips: */
/* - Section Installation FAQ, paragraph */
/* How_do_I_configure_LDAP_settings_to_work_with_Active_Directory_ */
/**********************************************************************/
$query_id=0;
// First define the serverId on which you want to run the query
$ldap_queries[$query_id]['ldapServerId'] = 0;
// Give a name that will appear on the user interface
$ldap_queries[$query_id]['name'] = 'Utilisateurs de l'entreprise';
// Define the ldap base used for user searches
$ldap_queries[$query_id]['userbase'] = 'ou=services,dc=entreprise,dc=fr';
// $ldap_queries[$query_id]['userbase'] = 'ou=users,dc=entreprise,dc=fr';
// Define the user filter to apply
// Must begin with '(' and end with ')'
$ldap_queries[$query_id]['userfilter'] = '(&(objectCategory=Person)(objectClass=user)(!(email=*))(!(userAccountControl=514)))';
// $ldap_queries[$query_id]['userfilter'] = '(objectClass=samaccountname)';
// Define how deep under the userbase you want to search
// 'sub' means: search on the entire subtree
// 'one' means: only search 1 level under the userbase
// 'base' means: only search the userbase DN entry
$ldap_queries[$query_id]['userscope'] = 'sub';
// Define the user's attribute that provides the firstname
// do not use capital letters in the attribute name
// for instance use 'givenname' and not 'givenName'
$ldap_queries[$query_id]['firstname_attr'] = 'givenname';
// Give the user's attribute that provides the lastname
// do not use capital letters in the attribute name
$ldap_queries[$query_id]['lastname_attr'] = 'sn';
// Give the user's attribute that provides the email address
// do not use capital letters in the attribute name
// If multivalued, only the first entry is read
$ldap_queries[$query_id]['email_attr'] = 'mail';
// Optionnally give the user's attributes that provides the
// token, language, attr1 and attr2 piece of information
// do not use capital letters in the attribute name
// if unused, leave empty or comment the lines
//$ldap_queries[$query_id]['token_attr'] = ''; // Leave empty for Auto Token generation bu phpsv
//$ldap_queries[$query_id]['language'] = '';
//$ldap_queries[$query_id]['attr1'] = '';
//$ldap_queries[$query_id]['attr2'] = '';
/********** Other queries examples ********************/
// This query is an example of a group search in which group members are DNs
// The query runs in two steps:
// 1- Look for user candidates matching the group filter part
// 2- Then, Apply a user filter to user candidates found in step 1
$query_id++;
$ldap_queries[$query_id]['ldapServerId'] = 0;
$ldap_queries[$query_id]['name'] = 'Administrator group';
// Define a group filter (base, filter, scope)
$ldap_queries[$query_id]['groupbase'] = 'ou=groups,dc=mycompany,dc=org';
$ldap_queries[$query_id]['groupfilter'] = '(&(objectClass=groupOfNames)(cn=AdministratorGroup))';
$ldap_queries[$query_id]['groupscope'] = 'sub';
// Define which group's attribute is used to get users' Ids
$ldap_queries[$query_id]['groupmemberattr'] = 'member';
// Define if the groupmemberattr contains users's DNs or NOT
$ldap_queries[$query_id]['groupmemberisdn'] = true;
// Optionnally you can complete the group query with an additionnal
// user filter that will be applied to the user's found by the group search
// Comment the userbase, userfilter, and userscope lines
// if you don't use this extra filter.
$ldap_queries[$query_id]['userbase'] = 'ou=users,dc=mycompany,dc=org';
$ldap_queries[$query_id]['userfilter'] = '(account-status=enabled)';
$ldap_queries[$query_id]['userscope'] = 'sub';
$ldap_queries[$query_id]['firstname_attr'] = 'givenname';
$ldap_queries[$query_id]['lastname_attr'] = 'sn';
$ldap_queries[$query_id]['email_attr'] = 'mail';
$ldap_queries[$query_id]['token_attr'] = ''; // Leave empty for Auto Token generation bu phpsv
$ldap_queries[$query_id]['language'] = '';
$ldap_queries[$query_id]['attr1'] = '';
$ldap_queries[$query_id]['attr2'] = '';
// This query is an example of a group search in which group members are UIDs
// an additionnal user filter is applied to a already found users
$query_id++;
$ldap_queries[$query_id]['ldapServerId'] = 0;
$ldap_queries[$query_id]['name'] = 'Admins via POSIXGroups';
$ldap_queries[$query_id]['groupbase'] = 'ou=group,dc=mycompany,dc=org';
$ldap_queries[$query_id]['groupfilter'] = '(&(cn=admins)(objectclass=posixgroup))';
$ldap_queries[$query_id]['groupscope'] = 'sub';
// Define which attribute within the group entry contains users' IDs
$ldap_queries[$query_id]['groupmemberattr'] = 'memberuid';
// Declare that groupmemberattr contains users' IDs and not DNs
$ldap_queries[$query_id]['groupmemberisdn'] = FALSE;
// Give the name of the attribute in the user entry that matches the
// 'groupmemberattr' value
$ldap_queries[$query_id]['useridattr'] = 'uid';
// Give the base DN used to search the users based on the users' IDs
$ldap_queries[$query_id]['userbase'] = 'ou=people,dc=mycompany,dc=org';
// Optionnally give an additionnal filter to filter users
$ldap_queries[$query_id]['userfilter'] = '(objectclass=*)';
$ldap_queries[$query_id]['userscope'] = 'sub';
$ldap_queries[$query_id]['firstname_attr'] = 'givenname';
$ldap_queries[$query_id]['lastname_attr'] = 'sn';
$ldap_queries[$query_id]['email_attr'] = 'mail';
$ldap_queries[$query_id]['token_attr'] = ''; // Leave empty for Auto Token generation bu phpsv
$ldap_queries[$query_id]['language'] = '';
$ldap_queries[$query_id]['attr1'] = '';
$ldap_queries[$query_id]['attr2'] = '';
/********
$query_id++;
//Copy previous definition lines
********/
//DO NOT CHANGE BELOW HERE --------------------
require_once(dirname(__FILE__).'/ldap-functions.php');
?>
en esperant que cela te serve
|
|
|
|
|
Logged
|
|
|
Last Edit: 2008/05/14 15:45 By .
|
|
|
The administrator has disabled public write access.
|
lemeur (Admin)
LimeSurvey Team
Posts: 316
|
|
Re:Inscription par requêtes LDAP 6 Months, 3 Weeks ago
|
Karma: 10
|
|
C'était un problème de binddn mal défini.
Par exemple pour AD cela peut être:
cn=administrateur,cn=users,dc=mondomaine,dc=fr
Thibault
|
|
|
|
Logged
|
|
|
The administrator has disabled public write access.
|
BOYEAU (User)
Fresh Lemon
Posts: 3
|
|
Re:Inscription par requêtes LDAP 6 Months, 3 Weeks ago
|
Karma: 0
|
|
merci beaucoup je vais faire des essai
a bientot
cordialement
|
|
|
|
Logged
|
|
|
The administrator has disabled public write access.
|
BOYEAU (User)
Fresh Lemon
Posts: 3
|
|
Re:Inscription par requêtes LDAP 6 Months, 3 Weeks ago
|
Karma: 0
|
C'est tout bon
encore merci  |
|
|
|
Logged
|
|
|
The administrator has disabled public write access.
|
|
 |
|
|
