从php脚本添加用户后，LDAP登录无效

I have code which added user to the ladp server in php

function ldapAddUser($ldap_conn, $ou_dn, $firstName, $lastName, $username, $pwdtxt, $email) {

$dn = "CN=$firstName $lastName," . $ou_dn;
$ldaprecord['givenName'] = $firstName;
$ldaprecord['sn'] = $lastName;
$ldaprecord['mail'] = $email;
$ldaprecord['objectclass'] = array("top", "person", "organizationalPerson", "user");
$ldaprecord["sAMAccountName"] = $username;

$ldaprecord["userprincipalname"] = $username . '@test.local';
$ldaprecord["UserAccountControl"] = "544";

$r = ldap_add($ldap_conn, $dn, $ldaprecord);
var_dump($r);

$encodedPass = array('userpassword' =>  "{SHA}" . base64_encode( sha1( $newPassw, TRUE ) ));

echo "Change password ";
if (ldap_mod_replace($ldap_conn, $dn, $encodedPass)) {
    echo "succeded";
} else {
    echo "failed";
}

$group_name = "CN=LDAP Testing,OU=Test,DC=test,DC=local";
$group_info['member'] = $dn;// User's DN is added to group's 'member' array
ldap_mod_add($ldap_conn,$group_name,$group_info);

}

**user will add successfully but after added user when I tried to login with that user it did not allow me to login and give error like **

Blockquote

Error Binding to LDAP: 80090308: LdapErr: DSID-0C0903C5, comment: AcceptSecurityContext error, data 52e, v23f0

for login

function login($username, $password) {

$ip = "XX.XX.XX.XX";  // WAN IP goes here;
$ldap_url = "ldap://$ip";
$ldaps_url = "ldaps://$ip";
$ldap_domain = 'test.local';
$ldap_dn = "dc=test,dc=local";
define('LDAP_OPT_DIAGNOSTIC_MESSAGE', 0x0032);
// Unsecure - WORKS
$ldap_conn = ldap_connect($ldap_url) or die("Could not connect to LDAP server ($ldap_url)");
ldap_set_option($ldap_conn, LDAP_OPT_PROTOCOL_VERSION, 3);
ldap_set_option($ldap_conn, LDAP_OPT_REFERRALS, 0);
echo $password;
$result = ldap_bind($ldap_conn, "$username@$ldap_domain", $password);
if (!$result) {
    if (ldap_get_option($ldap_conn, LDAP_OPT_DIAGNOSTIC_MESSAGE, $extended_error)) {
        echo "Error Binding to LDAP: $extended_error";
    } else {
        echo "Error Binding to LDAP: No additional information is available.";
    }
}

}

but it will work if I will manually login into the interface with admin login and then reset the password for added user then user will successfully login with my login function .

Please provide suggestion if any one have idea

Thanks Pratik

写回答
好问题 0 提建议
追加酬金
关注问题
分享
邀请回答
编辑收藏删除结题
收藏举报

1条回答默认最新

关注

码龄粉丝数原力等级 --

被采纳

被点赞

采纳率
doudundian9558 2015-07-30 12:53
关注
Try using this for password hashing

function hash_password($password) // SSHA with random 4-character salt { $salt = substr(str_shuffle(str_repeat('ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789',4)),0,4); return '{SSHA}' . base64_encode(mhash(MHASH_SHA1,$password.$salt). $salt); }
解决无用
评论打赏
分享
举报

评论

按下Enter换行，Ctrl+Enter发表内容

报告相同问题？

关注问题

PHP从活动目录中读取用户信息 php
2019-08-18 17:57

回答 1 已采纳 You have to decide which accounts you want to read. Using the filter (cn=*), you are telling AD to
PHP LDAP，ldap_search只返回少数用户 php
2017-03-06 15:55

回答 1 已采纳 try to play with the scope (it can be sub, one, or base), if you want all entries from child OUs,
PHP脚本中的PHP LDAP调试输出 php
2014-12-15 08:55

回答 1 已采纳 Thanks to Redirect Windows cmd stdout and stderr to a single file I can answer my own question. Th
ldap php bind,密码包含&符号时,php ldap_bind失败
2021-04-08 13:05

洋葱庄的博客 ”总是返回’无效凭据’我在互联网上看过几个帖子,但似乎都没有正确地逃过这些帖子.我正在使用PHP版本5.3.8-ZS(Zend服务器)这是我的类构造函数中的设置：ldap_set_option($this->_link, LDAP_OPT_PROTOCOL_...
PHP LDAP会话持久性 php
2019-02-04 15:31

回答 1 已采纳 The problem is not about LDAP, the problem is about HTTP. HTTP is a stateless protocol whereas LD
使用LDAP / PHP从Active Directory检索分发列表 php
2016-06-10 10:53

回答 1 已采纳 You said you are trying to "Retrieve Distributions lists" and yet your LDAP filter is to retrieve
从外部访问phpldap管理员 php
2015-12-07 22:19

回答 1 已采纳 I could access by correcting the url : it is a secure one, so using https://@IP-internet-box/myorg
centos重启后php环境启动失败,centos7重启php环境
2021-04-28 09:38

weixin_39745269的博客 apache启动systemctl start httpd中止systemctl stop httpd重启systemctl restart httpd或者phpservice httpd stophtmlservice httpd startjavaservice httpdrestartmysqlmysql启动systemctl start mysqld中止...
ldap搜索PHP后未定义的范围 php
2016-05-30 14:37

回答 1 已采纳 I'm pretty sure your filter is quirky. From what I read there your filter actually looks this for
使用php中的LDAP用户从Active Directory自动完成文本框 jquery php
2015-08-25 06:39

回答 2 已采纳 I found a way out! Just had to change the onclick in readcountry.php as shown below :
LDAP CHANGE PASSWORD PHP php ssl
2018-06-06 04:04

回答 1 已采纳 You need to be on a secured connection to modify a password (and probably other security related o
linux的ldap攻击脚本,PentesterLab 新手教程（三）：LDAP攻击
2021-05-13 16:06

小高恭喜发财的博客包含以下主要的漏洞：Code injection (代码注入)Commands injection(命令行注入)XSS(跨站脚本)SQL injections(sql注入)File include(文件包含)LDAP attack...
PHP LDAP绑定AD与服务器的用户帐户 php
2014-07-30 14:11

回答 1 已采纳 As you run it from server itself, and you just want to read I would try to use : ... if(ldap_bind
基于PHP酒店管理系统的设计与实现-附源码112260
2023-10-25 15:57

全栈工程司的博客酒店管理系统主要功能模块包括首页、个人中心、清洁工管理、用户管理、套房类型管理、酒店客房管理、套房预订管理、入驻登记管理、退房登记管理、清洁等级管理、维修登记管理、系统管理、在线客服管理等，采取面对...
CentOS上PHP源码安装和配置
2023-04-18 09:57

Shaoxi Zhang的博客此文是在CentOS 7上已经部署了Nginx的基础上进行的我们现在在这个基础上安装PHP 7。PHP里面概念挺多的，没想到安装这个PHP需要花那么多时间去查资料。虽然还有很多没搞懂，但查询过程中也让我对Linux更加的理解。做...
没有解决我的问题, 去提问

悬赏问题

¥15 关于#stm32#的问题：CANOpen的PDO同步传输问题
¥20 yolov5自定义Prune报错，如何解决？
¥15 电磁场的matlab仿真
¥15 mars2d在vue3中的引入问题
¥50 h5唤醒支付宝并跳转至向小荷包转账界面
¥15 算法题：数的划分，用记忆化DFS做WA求调
¥15 chatglm-6b应用到django项目中，模型加载失败
¥15 CreateBitmapFromWicBitmap内存释放问题。
¥30 win c++ socket
¥15 C# datagridview 栏位进度

从php脚本添加用户后，LDAP登录无效

1条回答 默认 最新

悬赏问题

1条回答默认最新