Thread:Extension talk:LDAP Authentication/how to no anonymous bind and can't enable debug

I disable anonymous search in ldap's acl, I don't know about LDAPProxy, I think it just a account for binding. now I can only login the admin user（wiki's uid=1) If I try to login the ldap user, it will tell me no such user and I can't create user. And the SearchAttributes shouldn't be an objectclass ? And the user in log should be all lowcase 'ayaka'

mediawiki-1.19.1 LdapAuthentication-MW1.19-108775 $wgLDAPDomainNames = array("ldaptest"); $wgLDAPServerNames = array("ldaptest"=>"ldap.test.tw"); $wgLDAPUseLocal = false; $wgLDAPEncryptionType = array("ldaptest"=>"ssl"); $wgLDAPOptions = array; $wgLDAPPort = array("ldaptest"=>636); $wgLDAPSearchStrings = array; $wgLDAPProxyAgent = array("ldaptest"=>"cn=webreader,ou=ldapauth,dc=test,dc=tw"); $wgLDAPProxyAgentPassword = array("ldaptest"=>'readpassword'); $wgLDAPSearchAttributes = array("ldaptest"=>"uid"); $wgLDAPBaseDNs = array("ldaptest"=>"ou=web,dc=test,dc=tw"); $wgLDAPGroupBaseDNs = array("ldaptest"=>"ou=Group,ou=web,dc=test,dc=tw"); $wgLDAPUserBaseDNs = array("ldaptest"=>"ou=People,ou=web,dc=test,dc=tw"); $wgLDAPWriterDN = array("ldaptest"=>"cn=webwriter,ou=ldapauth,dc=test,dc=tw"); $wgLDAPWriterPassword = array("ldaptest"=>'writepassword'); $wgLDAPWriteLocation = array("ou=People,ou=web,dc=test,dc=tw"); $wgLDAPAddLDAPUsers = array("ldaptest"=>true); $wgLDAPUpdateLDAP = array("ldaptest"=>true); $wgLDAPPasswordHash = array("ldaptest"=>"crypt"); $wgLDAPMailPassword = array("ldaptest"=>true); $wgLDAPPreferences = array("ldaptest"=>array("email"=>"mail","realname"=>"sn","nickname"=>"cn")); $wgLDAPDisableAutoCreate = array("ldaptest"=>true); $wgLDAPDebug = 3; $wgDebugLogGroups["ldap"] = ("$IP/extensions/LdapAuthentication/debug.log") ; $wgLDAPGroupUseFullDN = array; $wgLDAPLowerCaseUsername = array; $wgLDAPLowerCaseUsernameScheme = array; $wgLDAPGroupUseRetrievedUsername = array; $wgLDAPGroupObjectclass = array; $wgLDAPGroupAttribute = array; $wgLDAPGroupNameAttribute = array; $wgLDAPGroupsUseMemberOf = array; $wgLDAPUseLDAPGroups = array("ldaptest"=>true); $wgLDAPLocallyManagedGroups = array; $wgLDAPGroupsPrevail = array("ldaptest"=>true); $wgLDAPRequiredGroups = array; $wgLDAPExcludedGroups = array; $wgLDAPGroupSearchNestedGroups = array; $wgLDAPAuthAttribute = array; $wgLDAPAutoAuthUsername = ""; $wgLDAPAutoAuthDomain = ""; $wgPasswordResetRoutes['domain'] = true; 2012-08-20 06:33:33 ritsuko wiki: 2.0a Entering validDomain 2012-08-20 06:33:33 ritsuko wiki: 2.0a User is using a valid domain (ldaptest). 2012-08-20 06:33:33 ritsuko wiki: 2.0a Setting domain as: ldaptest 2012-08-20 06:33:33 ritsuko wiki: 2.0a Entering getCanonicalName 2012-08-20 06:33:33 ritsuko wiki: 2.0a Username isn't empty. 2012-08-20 06:33:33 ritsuko wiki: 2.0a Fetched userInfo from memcache. 2012-08-20 06:33:33 ritsuko wiki: 2.0a Username matched a key in memcache, using the fetched name: Ayaka 2012-08-20 06:33:33 ritsuko wiki: 2.0a Entering getCanonicalName 2012-08-20 06:33:33 ritsuko wiki: 2.0a Username isn't empty. 2012-08-20 06:33:33 ritsuko wiki: 2.0a Fetched userInfo from memcache. 2012-08-20 06:33:33 ritsuko wiki: 2.0a Username matched a key in memcache, using the fetched name: 127.0.0.1 2012-08-20 06:33:33 ritsuko wiki: 2.0a Entering getCanonicalName 2012-08-20 06:33:33 ritsuko wiki: 2.0a Username isn't empty. 2012-08-20 06:33:33 ritsuko wiki: 2.0a Fetched userInfo from memcache. 2012-08-20 06:33:33 ritsuko wiki: 2.0a Username matched a key in memcache, using the fetched name: 127.0.0.1 2012-08-20 06:33:33 ritsuko wiki: 2.0a Entering getCanonicalName 2012-08-20 06:33:33 ritsuko wiki: 2.0a Username isn't empty. 2012-08-20 06:33:33 ritsuko wiki: 2.0a Fetched userInfo from memcache. 2012-08-20 06:33:33 ritsuko wiki: 2.0a Username matched a key in memcache, using the fetched name: 127.0.0.1 2012-08-20 06:33:33 ritsuko wiki: 2.0a Entering allowPasswordChange 2012-08-20 06:33:33 ritsuko wiki: 2.0a Entering modifyUITemplate