Thread:Extension talk:LDAP Authentication/How to specify multiple base dn

Hi,

We are using mediawiki ver 1.15.x,php version:PHP 5.5.9-1ubuntu4.5,ldap extension as LdapAuthentication-MW1.15-r45350.tar.gz and mysql 5.5.39-36.0 in the ubuntu linux 14.04 LTS. Our requirement mediawiki needs to be integrated with Active Directory authentication. Our AD server have lots of basedn's and we were trying to configure Global catalog but it's not working. So we are planning to specify multiple base dn for alternative and we tried all the ways but no luck. So please let me know how to specify multiple base dn ?

My Setup:

require_once( 'extensions/LdapAuthentication/LdapAuthentication.php' ); $wgAuth = new LdapAuthenticationPlugin;

$wgLDAPDomainNames = array( "TS-LDAP" );

$wgLDAPServerNames = array( "TS-LDAP"=>"cbr-xx-c01.cl.rp.abc.in cbr-xx-c02.cl.rp.abc.in" );

$wgLDAPEncryptionType = array( "TS-LDAP" => "ssl" );

$wgLDAPSearchAttributes = array( "TS-LDAP" => "sAMAccountName" );

$wgLDAPBaseDNs = array( "TS-LDAP" => "dc=ct,dc=rp,dc=abc,dc=in dc=eo,dc=rp,dc=abc,dc=in");


 * 1) Group Lookup:

$wgLDAPProxyAgent = array( "TS-LDAP" => "CN=ts,OU=General ID,dc=ct,dc=rp,dc=abc,dc=in" );

$wgLDAPProxyAgentPassword = array( "TS-LDAP" => "123456a" );

$wgLDAPGroupUseFullDN = array( "TS-LDAP"=>true );

$wgLDAPGroupsUseMemberOf = array( "TS-LDAP" => true );

$wgLDAPGroupUseRetrievedUsername = array( "TS-LDAP" => true );

$wgGroupPermissions['*']['read'] = false;

//The objectclass of the groups we want to search for $wgLDAPGroupObjectclass = array( "TS-LDAP"=>"group" );

//The attribute used for group members $wgLDAPGroupAttribute = array( "TS-LDAP"=>"member" );

//The naming attribute of the group $wgLDAPGroupNameAttribute = array( "TS-LDAP"=>"cn" );

$wgLDAPRetrievePrefs = array( "TS-LDAP" => true );

$wgLDAPPreferences = array( "TS-LDAP" => array( "email"=>"mail","realname"=>"displayname","nickname"=>"displayname" ) );

$wgLDAPGroupSearchNestedGroups = array( "TS-LDAP"=>true );

$wgLDAPDebug = 4;

$wgDebugLogGroups["ldap"] = "/tmp/ldapdebug.log";

Note: If we try any single basedn, it is working fine. But how to specify multiple basedn's ?

Regards, Varad