I'll hit up on the FQDN issue. I don't think though, that the LDAP server has a DNS entry. I'm assuming that if they don't, I can do it with a host entry.
On your second correction, the corrected version is what I had at one time, I dropped it attempting things.
However, I think your last recommendation is the correct one. I had pretty much decided that it was a cert issue, but couldn't get the exact information on what I needed to do to correct it. Your blog looks like it had it all along. Will try that this evening or tomorrow, and see what I get.
On Tue, Sep 22, 2009 at 4:12 PM, Lane, Ryan Ryan.Lane@ocean.navo.navy.milwrote:
$wgLDAPServerNames = array( "FOSAWiki"=>"192.168.1.5" );
This needs to be the fully qualified domain name of the LDAP server, not the IP address.
$wgLDAPSearchStrings = array( "FOSAWiki"=>"cn=USER-NAME,ou=LEVEL2,ou=LEVEL1,o=ORGANIZATION" ); $wgLDAPUseSSL = array( "{Wiki Identity variable}"=>"ssl" );
This should be:
$wgLDAPUseSSL = array( "FOSAWiki"=>"ssl" );
Notice that even after setting this, you may still have SSL issues. If you have SSL issues, see:
http://ryandlane.com/wprdl/2009/06/16/using-the-ldap-authentication-plugin-f or-mediawiki-the-basics-part-2/#configuring-the-ssl-trust
V/r,
Ryan Lane
MediaWiki-l mailing list MediaWiki-l@lists.wikimedia.org https://lists.wikimedia.org/mailman/listinfo/mediawiki-l