PHP AD LDAP脚本仅在传递变量时失败

Sample AD LDAP Live Lookup PHP from Helpspot

Okay so I am using the above sample php LDAP script to lookup user info in our ticketing system. I am running into some issues however (these are probably due to my very rudimentary understanding of PHP). I know the script is sort of working because if I hit the URL for the script in my browser it will spit back a list of all users in the domain until it hit the return limit and just stops. I am sure I could get it to spit back more, but that is not really the issue right now. Because I am getting data from my domain I am assuming that my creds and binds are good in the script. We use the credentials, server, etc on all our MFP's for their global address list without issue so I am positive I am good there. The problem arises when you pass anything to it to do a lookup. I receive an error that states:

ldap search failed: Operations error

When I tweak the script to give me a little more info it points me back to this line:

$search = ldap_search($ad, $dn, $filter, $attrs)
          or die ("ldap search failed: ".ldap_error($ad));

Which I had suspected given the error I was getting is present in this line. So I am assuming one of those defined variables is the culprit causing me problems. This is where i start to get lost. I am not understanding why asking it to narrow the results returned would break this? Any suggestions? Or is there anything more I need to share?

写回答
好问题 0 提建议
追加酬金
关注问题
分享
邀请回答
编辑收藏删除结题
收藏举报

1条回答默认最新

dttvb115151 2016-01-25 21:22

关注

Thank you @heiglandreas that post helped me immensely. Using the script being run in that section I was able to grab some pieces that allowed my script to function properly. I am not sure exactly why my environment didn't care for my first script, I suspect the change in location in the script of certain steps and the changed formatting of the bind helped. My script now looks like:

    <?php
header('Content-type: text/xml');

$hostname="ldap://SERVER IP ADDRESS";
$ds=ldap_connect($hostname, 389);
$user = "domain\username";
$pswd = "PASSWORD";
ldap_set_option ($ds, LDAP_OPT_REFERRALS, 0) or die('Unable to set LDAP opt referrals');
ldap_set_option($ds, LDAP_OPT_PROTOCOL_VERSION, 3) or die('Unable to set LDAP protocol version');

if ($ds)
{
$dn = "DC=DOMAIN,DC=local";

if (!($ldapc=ldap_bind($ds, $user, $pswd))) { 
    echo "<p>Error:" . ldap_error($ds) . "</p>"; 
    echo "<p>Error number:" . ldap_errno($ds) . "</p>"; 
    echo "<p>Error:" . ldap_err2str(ldap_errno($ds)) . "</p>"; 
    die;
} 

$attributes = array('employeeID','givenname','sn','mail','telephoneNumber');

if(!empty($_GET['customer_id'])){   //If an ID is passed in use that to make a direct lookup

    $filter = 'employeeID='.$_GET['customer_id'].'*';   

}elseif(!empty($_GET['email'])){            //If no ID then try email

    $filter = 'mail='.$_GET['email'].'*';

}elseif(!empty($_GET['last_name'])){    //If no ID or email then search on last name

    $filter = 'sn='.$_GET['last_name'].'*';



}elseif(!empty($_GET['first_name'])){   //Try first name if no ID,email,last name

    $filter = 'givenname='.$_GET['first_name'].'*'; 

}else{
    $filter = 'sn='.'*';    //Return everyone
}


$search = ldap_search($ds, $dn, $filter, $attributes)
          or die ("ldap search failed: ".ldap_error($ds));

$entries = ldap_get_entries($ds, $search);

echo '<?xml version="1.0" encoding="utf-8"?>';
}
?>
<livelookup version="1.0" columns="first_name,last_name, email">
        <?php for ($i=0; $i < $entries["count"]; $i++) : ?>
        <customer>
                <customer_id><?php if(isset($entries[$i]['employeeID'][0])){ echo htmlspecialchars($entries[$i]['employeeID'][0]); } ?></customer_id>
                <first_name><?php if(isset($entries[$i]['givenname'][0])){ echo htmlspecialchars($entries[$i]['givenname'][0]); } ?></first_name>
                <last_name><?php if(isset($entries[$i]['sn'][0])){ echo htmlspecialchars($entries[$i]['sn'][0]); } ?></last_name>
                <email><?php if(isset($entries[$i]['mail'][0])){ echo htmlspecialchars($entries[$i]['mail'][0]); } ?></email>
                <phone><?php if(isset($entries[$i]['telephonenumber'][0])){ echo htmlspecialchars($entries[$i]['telephonenumber'][0]); } ?></phone>
                <!-- Add custom elements here. Simply add them to $attrs above and then output the tag like the others here -->
        </customer>
        <?php endfor; ?>
</livelookup>

<?php ldap_unbind($ds); ?>

报告相同问题？

关注问题

如何在2个php文件之间传递变量 html javascript php
2017-04-05 12:49

回答 2 已采纳 login.php <?php include("authenticate.php"); That essentially acts like pasting the contents
在AD LDAP中查找用户 php
2019-03-07 09:48

回答 1 已采纳 Your query is indeed invalid. In LDAP query syntax, a "this OR that" condition is written as (|(t
adldap2 laravel它只返回'false' laravel php
2019-04-23 01:04

回答 1 已采纳 Normaly a "false" is returned if there is an error in your Query or LDAP Settings. You could try t
FamstCGI安装PHP,（转）Lighttpd 的安装配置
2021-03-16 23:38

weixin_39750195的博客 07-16 01:06lighttpd(http://lighttpd.net/)和apache一样是开源的，与apache相比，虽然功能不及apache完善，稳定性也不如apache，但是，不管是服务静态页面，还是服务动态内容(CGI，PHP)，它都比apache快，用于ad ...
PHP LDAP会话持久性 php
2019-02-04 15:31

回答 1 已采纳 The problem is not about LDAP, the problem is about HTTP. HTTP is a stateless protocol whereas LD
无法在新的PHP IIS服务器上启用LDAP扩展 php
2016-08-03 13:27

回答 2 已采纳 OK, I have resolved this, been away for a week, came back to look at it again... Turns out at the
Laravel 5.5中的AdLdap2问题 laravel php
2017-10-27 13:48

回答 2 已采纳 The issue is solved. I installed the LDAP libraries and recompiled the PHP with LDAP from scratch
ldap在开源平台中的应用
2020-03-21 14:19

段义文的博客 ldap在开源平台中的应用LDAP结构Jenkins配置jenkins的ldap服务Role-Based StrategyGitlab LDAP结构简单的人员划分大致如下： - ou=service - ou=jenkins - ou=gitlab - ou=禅道 - ou=... - ou=人事行政 - ou=...
LDAP身份验证失败时无法显示模式弹出窗口 php
2019-05-15 12:52

回答 2 已采纳 Just echoing the script won't work here, at best your browser will end up running a script that re
PHP LDAP绑定AD与服务器的用户帐户 php
2014-07-30 14:11

回答 1 已采纳 As you run it from server itself, and you just want to read I would try to use : ... if(ldap_bind
PHP脚本中的PHP LDAP调试输出 php
2014-12-15 08:55

回答 1 已采纳 Thanks to Redirect Windows cmd stdout and stderr to a single file I can answer my own question. Th
LDAP安全防护说明
2021-06-01 22:57

securitysun的博客 3、参数化XPath查询，将需要构建的XPath查询表达式，以变量的形式表示，变量不是可以执行的脚本。 4、通过MD5、SSL等加密算法，对于数据敏感信息和在数据传输过程中加密，即使某些非法用户通过非法手法获取数据包，...
LDAP CHANGE PASSWORD PHP php ssl
2018-06-06 04:04

回答 1 已采纳 You need to be on a secured connection to modify a password (and probably other security related o
域控启用ldap_samba+ldap实现linux域控
2020-12-24 13:48

任成奇的博客系统AS4.1所需软件：openldap、samba、phpldapadmin-0.9.8.2.tar.gz、smbldap-tools-0.9.2.tgz(添加、管理域帐户)。安装好openldap、samba(见配置文件)[root@pdc samba]# ..."|uniq[global]workgroup = ldap.comnet...
PHP 函数大全
2018-03-02 18:48

且听海啸的博客 a函数说明abs 绝对值acos 反余弦acosh 反双曲余弦addcslashes 以 C 语言风格使用反斜线转义字符串中的字符addslashes 使用反斜线引用字符串apache_child_terminate 在本次请求结束后终止 apache 子进程...
没有解决我的问题, 去提问

悬赏问题

¥15 对于相关问题的求解与代码
¥15 ubuntu子系统密码忘记
¥15 信号傅里叶变换在matlab上遇到的小问题请求帮助
¥15 保护模式-系统加载-段寄存器
¥15 电脑桌面设定一个区域禁止鼠标操作
¥15 求NPF226060磁芯的详细资料
¥15 使用R语言marginaleffects包进行边际效应图绘制
¥20 usb设备兼容性问题
¥15 错误(10048): “调用exui内部功能”库命令的参数“参数4”不能接受空数据。怎么解决啊
¥15 安装svn网络有问题怎么办

码龄粉丝数原力等级 --

PHP AD LDAP脚本仅在传递变量时失败

1条回答默认最新

码龄粉丝数原力等级 --

悬赏问题

PHP AD LDAP脚本仅在传递变量时失败

1条回答 默认 最新

悬赏问题

1条回答默认最新