douqi0090 2013-10-29 04:43
浏览 77
已采纳

LDAP - 列出组

I need to list all groups within a certain group using PHP. This is what I have so far:

<?php
$ldap_dn = "ou=People,dc=something,dc=something,dc=something,dc=au";
$ldap_svr = "ldap.server.somewhere";
$ldap_domain = "domain.somewhere";
$conn=ldap_connect($ldap_svr) or die("Cannot connect to LDAP server!");

ldap_set_option ($conn, LDAP_OPT_REFERRALS, 0);
ldap_set_option($conn, LDAP_OPT_PROTOCOL_VERSION, 3);

ldap_bind($conn,"user@domain.somewhere","password");


$filter ="(ou=*)";
$justthese = array("ou");

$result=ldap_list($conn, $ldap_dn, $filter, $justthese) or die("No search data found."); 

$info = ldap_get_entries($conn, $result);

for ($i=0; $i < $info["count"]; $i++) {
    echo $info[$i]["ou"][0] . '<br />';
}
?>

This returns a list of groups, one of whch is 'Students', but I want to list all groups within 'Students'. How can I do this?

EDIT

Thanks to Fluffeh the Microsoft LDAP plugin allows me to search active directorys so I can tailor my PHP script accordingly, e.g. $ldap_dn = "ou=Units,ou=Groups,dc=somewhere,dc=somewher,dc=somewhere,dc=au";

So my mostly working code is:

<?php
$ldap_dn = "ou=Units,ou=Groups,dc=somewhere,dc=somewher,dc=somewhere,dc=au";
$ldap_svr = "ldap.server.somewhere";
$ldap_domain = "domain.somewhere";
$conn=ldap_connect($ldap_svr) or die("Cannot connect to LDAP server!");

ldap_set_option ($conn, LDAP_OPT_REFERRALS, 0);
ldap_set_option($conn, LDAP_OPT_PROTOCOL_VERSION, 3);

ldap_bind($conn,"user@domain.somewhere","password");


$filter ="(cn=*)";
$justthese = array('cn');

$result=ldap_list($conn, $ldap_dn, $filter, $justthese) or die("No search data found."); 

$info = ldap_get_entries($conn, $result);

for ($i=0; $i < $info["count"]; $i++) {
    echo $info[$i]["cn"][0] . '<br />';
}
?>
  • 写回答

1条回答 默认 最新

  • doudou1897 2013-10-29 04:47
    关注

    You need to actually pass the search to it. Currently you are using:

    $filter ="(ou=*)";

    This will need to change to contain 'Students'. While I am no LDAP expert, I would guess at the following:

    $filter ="(cn=Students)";

    Most of the LDAP stuff I have done has been sheer trial and error rather than knowing what I am doing, but this might put you on the right path.

    There is also a Microsoft plugin - Active Directory Explorer you can use to at least browse the LDAP so that you know what to search for and under what branch.

    本回答被题主选为最佳回答 , 对您是否有帮助呢?
    评论

报告相同问题?

  • LDAP - 列出 php
    2013-10-29 04:43
    回答 1 已采纳 You need to actually pass the search to it. Currently you are using: $filter ="(ou=*)"; This wi
  • PHP LDAP - 获取内部字段 php
    2016-09-29 05:54
    回答 2 已采纳 You can retrieve them using '+' as attribute-name. So you should be able to fetch them using ldap
  • LDAP - 服务器A - >服务器B - > LDAP php
    2018-06-12 15:44
    回答 1 已采纳 System specific ... httpd_can_connect_ldap (seen through getsebool -a | grep http | grep ldap for
  • 2022Java面试题,非常全面
    2022-04-10 19:30
    清野有沙的博客 目录 JAVA基础 MySql MyBatis Spring SpringMVC SpringBoot Linux Redis 跨域问题 若依框架 jwt(token) Docker Thymeleaf MySQL存储过程 JAVA基础 ...2.引用数据类型:数,类...
  • PHP LDAP会话持久性 php
    2019-02-04 15:31
    回答 1 已采纳 The problem is not about LDAP, the problem is about HTTP. HTTP is a stateless protocol whereas LD
  • LDAP - 从DN中提取CN值 php
    2013-10-31 02:06
    回答 1 已采纳 I made this sample test: <?php $sample = "CN=FMDHS-PLM-WebTest-3,OU=Permission,OU=Groups,DC=un
  • LDAP CHANGE PASSWORD PHP php ssl
    2018-06-06 04:04
    回答 1 已采纳 You need to be on a secured connection to modify a password (and probably other security related o
  • [转]信息安全相关理论题(四)
    2019-02-18 15:53
    Herry_Lee的博客 26、____表示邮件服务器返回代码为临时性失败(xx代表任意数)。 A、 2xx B、 3xx C、 4xx D、 5xx 您的答案: 标准答案: C 27、买家称购买商品异常后的正确操作是立即咨询官方客服。 A、 正确 ...您的答案: 标准答案:...
  • 安装没有root的PHP LDAP模块 linux php
    2011-11-30 03:58
    回答 3 已采纳 Unfortunately there is none. Even if you get sources and compile it, you will still need to modify
  • php / ldap - 绑定失败,但errorno不执行 php
    2010-03-23 15:12
    回答 2 已采纳 The problem is most likely that ldap_errno takes the ldap connection resource, and as ldap_bind fa
  • PHP - 使用sAMAccountName通过简单绑定连接到LDAP php
    2018-06-20 10:11
    回答 1 已采纳 You will need to do a 3-step approach: Bind to the directory with a known user Search the direct
  • 专业英语缩写汇总
    2020-06-04 08:10
    Moliay的博客 Certificate Revocation List(证书撤消列表) 由授权机构(CA)发布和维护的文档,该文档列出已被授权机构撤消的证书。 CGI 公用网关接口。用于初始化软件服务的服务器方接口。说明 Web 服务器如何与同一计算机上...
  • PHPLDAP成员 php windows
    2016-05-13 11:37
    回答 1 已采纳 You might want to have a look at this stack-overflow question to see how to solve it without a lib
  • 安全阵列(08-01-08)
    2008-01-15 06:18
    ftai08的博客 <!--if (top.location != self.location) { top.location=self.location;}//-->#usrbar{padding:4px 10px 3px 0;font-size:12px;height:19px;line-height:19px;color:#000000;font-family:A
  • 【转】CMS5
    2009-06-30 23:40
    Arctton的博客 不过这些都是纯商业性系统,价格很高,一般个人建站,建议选取一些国外比较有名的开源系统,如 Mambo、Drupal、Tikiwiki、PhpNuke、 PostNuke、Xoops、Tikipro、不过这些全是基于php + mysql的,众所周知,php和...
  • 没有解决我的问题, 去提问

悬赏问题

  • ¥100 嵌入式系统基于PIC16F882和热敏电阻的数字温度计
  • ¥15 cmd cl 0x000007b
  • ¥20 BAPI_PR_CHANGE how to add account assignment information for service line
  • ¥500 火焰左右视图、视差(基于双目相机)
  • ¥100 set_link_state
  • ¥15 虚幻5 UE美术毛发渲染
  • ¥15 CVRP 图论 物流运输优化
  • ¥15 Tableau online 嵌入ppt失败
  • ¥100 支付宝网页转账系统不识别账号
  • ¥15 基于单片机的靶位控制系统