$wgLDAPSearchStrings = array(
"LehighLDAP"=>"cn=USER-NAME,ou=specificdept,ou=f-s,dc=my,dc=un
iversity,dc=edu"
);
What I can do in other applications is get rid of the ou elements and
just leave the dc elements and it will search down. But when
I do this
here, it doesn't work, but returns a bad password error.
Is there a way to generalize this search string or do I need
to include
all of the specific search string trees? And if the latter,
what is the
syntax to include multiple search strings?
That is straight bind configuration. You need to use the search
configuration (remove $wgLDAPSearchStrings from your config):
$wgLDAPSearchAttributes = array(
'LehighLDAP' => 'cn'
);
$wgLDAPBaseDNs = array(
'LehighLDAP' => 'dc=my,dc=university,dc=edu'
);
Notice you may need a proxy agent, because most LDAP configurations
don't allow for anonymous searching:
$wgLDAPProxyAgent = array(
'exampleNonADDomain' =>
'cn=proxyagent,ou=specificdept,ou=f-s,dc=my,dc=university,dc=edu'
);
$wgLDAPProxyAgentPassword = array(
'exampleNonADDomain' => 'eX@mP1eP$$wRd'
);
You can put the proxyagent anywhere you want; you may already have one
available, or your LDAP configuration may allow anonymous searches.
V/r,
Ryan Lane