Thread:Extension talk:LDAP Authentication/IIS SSO AD LDAP Issue, wrong username, Ghost Users (2)

So I am having a hard time describing this correctly but here it goes.


 * User 1 goes to main page, Extension kicks in and logs in user.
 * User 2 from a second machine goes to same main page and MediaWiki tells User 2 that they are user 1.

Version Info:
 * MediaWiki	1.20.3
 * PHP	5.3.24 (cgi-fcgi)
 * MySQL	5.1.72-community

2014-01-03 22:19:50 SERVER01 wikidb975: 2.0f Entering AutoAuthSetup. 2014-01-03 22:19:50 SERVER01 wikidb975: 2.0f wgLDAPAutoAuthUsername and wgLDAPAutoAuthDomain is not null, adding hooks. 2014-01-03 22:19:53 SERVER01 wikidb975: 2.0f Entering AutoAuthSetup. 2014-01-03 22:19:53 SERVER01 wikidb975: 2.0f wgLDAPAutoAuthUsername and wgLDAPAutoAuthDomain is not null, adding hooks. 2014-01-03 22:19:53 SERVER01 wikidb975: 2.0f Entering AutoAuthentication. 2014-01-03 22:19:53 SERVER01 wikidb975: 2.0f User is already logged in. 2014-01-03 22:19:53 SERVER01 wikidb975: 2.0f Entering allowPasswordChange 2014-01-03 22:19:53 SERVER01 wikidb975: 2.0f Entering getDomain 2014-01-03 22:19:53 SERVER01 wikidb975: 2.0f Entering getDomain 2014-01-03 22:19:53 SERVER01 wikidb975: 2.0f Entering NoLogout. 2014-01-03 22:19:53 SERVER01 wikidb975: 2.0f Entering AutoAuthSetup. 2014-01-03 22:19:53 SERVER01 wikidb975: 2.0f wgLDAPAutoAuthUsername and wgLDAPAutoAuthDomain is not null, adding hooks. 2014-01-03 22:19:54 SERVER01 wikidb975: 2.0f Entering AutoAuthSetup. 2014-01-03 22:19:54 SERVER01 wikidb975: 2.0f wgLDAPAutoAuthUsername and wgLDAPAutoAuthDomain is not null, adding hooks. 2014-01-03 22:19:57 SERVER01 wikidb975: 2.0f Entering AutoAuthSetup.

require_once("$IP/includes/GlobalFunctions.php"); require_once( "$IP/extensions/LdapAuthentication/LdapAutoAuthentication.php" ); require_once( "$IP/extensions/LdapAuthentication/LdapAuthentication.php" );

$wgLDAPDebug = 1; $wgDebugLogGroups['ldap'] = '/temp/debug.log';

$wgLDAPDomainNames = array("DOMAIN"); $wgLDAPServerNames = array("DOMAIN"=>"bocgdcw01.DOMAIN.anotherdomain.root"); $wgLDAPEncryptionType = array( "DOMAIN" => "ssl" ); $wgLDAPAutoAuthDomain = "DOMAIN"; $wgLDAPProxyAgent = array("DOMAIN"=>"CN=SVC-IISAppPool,OU=Enabled SVC-Accounts,DC=DOMAIN,DC=anotherdomain,DC=root"); $wgLDAPProxyAgentPassword = array("DOMAIN"=>"xxxxxxxx");

$wgLDAPBaseDNs = array("DOMAIN"=>"DC=DOMAIN,DC=anotherdomain,DC=root"); $wgLDAPSearchAttributes = array( "DOMAIN" => "sAMAccountName" ); $wgLDAPPreferences = array(	'DOMAIN' => array( 'email' => 'mail','realname' => 'cn','nickname' => 'sAMAccountName'), ); if (isset($_SERVER["REMOTE_USER"])) { $wgLDAPAutoAuthUsernamePre = preg_replace( '/@.*/', '', $_SERVER["REMOTE_USER"]); $wgLDAPAutoAuthUsername = preg_replace("/^[^\\\]+\\\/", "", $wgLDAPAutoAuthUsernamePre); }

AutoAuthSetup;