I’m trying to authenticate againest an ldap server I’ve created. The user password is

Question

0

Asked: May 24, 20262026-05-24T07:57:57+00:00 2026-05-24T07:57:57+00:00

I’m trying to authenticate againest an ldap server I’ve created. The user password is

0

I’m trying to authenticate againest an ldap server I’ve created. The user password is stored within ldap as sha hash. However when I try accessing the userPassword attribute it doesn’t exist. I have to login as the manager. Am assuming this isn’t a very good idea on a production server. is there a way around this?

Report

Leave an answer
Cancel reply

You must login to add an answer.

Need An Account,

1 Answer

Editorial Team · Answer 1 · 2026-05-24T07:57:58+00:00

It does not make sense to return the password field. You may simply authenticate against the ldap server with given credentials.

see this example (reference here: http://php.net/manual/en/ref.ldap.php)

<?php

$user = 'bob';
$password = 'zhlob';
$host = 'myldap';
$domain = 'mydomain.ex';
$basedn = 'dc=mydomain,dc=ex';
$group = 'SomeGroup';

$ad = ldap_connect("ldap://{$host}.{$domain}") or die('Could not connect to LDAP server.');
ldap_set_option($ad, LDAP_OPT_PROTOCOL_VERSION, 3);
ldap_set_option($ad, LDAP_OPT_REFERRALS, 0);
@ldap_bind($ad, "{$user}@{$domain}", $password) or die('Could not bind to AD.');
$userdn = getDN($ad, $user, $basedn);
if (checkGroupEx($ad, $userdn, getDN($ad, $group, $basedn))) {
//if (checkGroup($ad, $userdn, getDN($ad, $group, $basedn))) {
    echo "You're authorized as ".getCN($userdn);
} else {
    echo 'Authorization failed';
}
ldap_unbind($ad);
?>

Sign Up

Sign In

Forgot Password

The Archive Base Latest Questions

I’m trying to authenticate againest an ldap server I’ve created. The user password is

Leave an answerCancel reply

1 Answer

Leave an answer
Cancel reply