Thread:Extension talk:LDAP Authentication/Mediawiki authentication to W2K8 LDAP

Hi all ..... i am beginner with this issues ....

I use MediaWiki 1.16.2 on W2K3 Server with IIS 6.0 / MySQL 5.1.33  /  PHP 5.2.9  /  LDAPAuthentication-MW1.16-r61987  / Domain FQDN = bs.privat

In moment MediaWiki works with local authentication but i will use a authentikation to my W2k8 Domain controller and all Users in one group can login to MW.

If i am use the following config in localsettings.php, i can login with local accounts but not with domain accounts.

I have no plan what i can do ... please ... have anyone a idea for me ... ´ LocalSetting // Domain definitions $wgLDAPDomainNames 		= array('bs.privat'); $wgLDAPServerNames 		= array('bs.privat' => "obelix.bs.privat"); $wgLDAPUseLocal 		= true; $wgLDAPSearchAttributes 	= array('bs.privat' => "sAMAccountName"); $wgLDAPBaseDNs			= array('bs.privat' => "dc=bs,dc=privat"); $wgLDAPGroupBaseDNs		= array('bs.privat' => "CN=Users,DC=bs,DC=privat"); $wgLDAPUserBaseDNs		= array('bs.privat' => "CN=Users,DC=bs,DC=privat"); // User proxy $wgLDAPEncryptionType = array("bs.privat" => "clear"); // Group Stuff $wgLDAPGroupUseFUllDN 		= array('bs' => true); $wgLDAPLowerCaseUsername 	= array('bs' => true); $wgLDAPGroupUseRetrievedUsername= array('bs' => false); $wgLDAPGroupObjectclass 	= array('bs' => "group"); $wgLDAPGroupAttribute		= array('bs' => "member"); $wgLDAPGroupNameAttribute	= array('bs' => "cn"); $wgLDAPGroupsUseMemberOf	= array('bs' => true); $wgLDAPSearchStrings 		= array('bs' => "USER-NAME@bs.privat"); $wgMinimalPasswordLength 	= 1; $wgLDAPRequiredGroups		= array('bs' => "CN=WikiUser,CN=Users,DC=bs,DC=privat"); $wgLDAPGroupSearchNestedGroups = array('bs' => true; $wgGroupPermissions['*']['edit']
 * 1) LDAP Authentication
 * 1) Disable EDIT, CREATE or CHANGE any site for everyone not logged in Users (only read !)

DEBUG 2011-02-14 06:55:59 wikidb: Entering validDomain 2011-02-14 06:55:59 wikidb: User is using a valid domain. 2011-02-14 06:55:59 wikidb: Setting domain as: bs.privat 2011-02-14 06:55:59 wikidb: Entering getCanonicalName 2011-02-14 06:55:59 wikidb: Username isn't empty. 2011-02-14 06:55:59 wikidb: Munged username: Bernie 2011-02-14 06:55:59 wikidb: Entering authenticate 2011-02-14 06:55:59 wikidb: 2011-02-14 06:55:59 wikidb: Entering Connect 2011-02-14 06:55:59 wikidb: Using TLS or not using encryption. 2011-02-14 06:55:59 wikidb: Using servers:  ldap://obelix.bs.privat 2011-02-14 06:55:59 wikidb: Connected successfully 2011-02-14 06:55:59 wikidb: Entering getSearchString 2011-02-14 06:55:59 wikidb: Doing an anonymous bind 2011-02-14 06:55:59 wikidb: Entering getUserDN 2011-02-14 06:55:59 wikidb: Created a regular filter: (sAMAccountName=Bernie) 2011-02-14 06:55:59 wikidb: Entering getBaseDN 2011-02-14 06:55:59 wikidb: basedn is CN=Users,DC=bs,DC=privat 2011-02-14 06:55:59 wikidb: Using base: CN=Users,DC=bs,DC=privat 2011-02-14 06:55:59 wikidb: Couldn't find an entry 2011-02-14 06:55:59 wikidb: userdn is: 2011-02-14 06:55:59 wikidb: User DN is blank 2011-02-14 06:55:59 wikidb: Entering strict. 2011-02-14 06:55:59 wikidb: Returning false in strict. 2011-02-14 06:55:59 wikidb: Entering allowPasswordChange 2011-02-14 06:55:59 wikidb: Entering modifyUITemplate 2011-02-14 06:55:59 wikidb: Allowing the local domain, adding it to the list.