If you want to subscribe to this forum, use your Facebook account, or send us an email to forum - at - multiotp - dot - net and we will send you back an invitation.

Problem with connection to MS ActiveDirectory (LDAP library not installed)

edited April 2014 in General
multiotp v. 4.2.2 (and 4.2.4 beta)
Hi,
I have tried to make connection to MS AD and I got an "critical System Error: PHP LDAP library is not installed". Can you tell me which library it try searching? I have checked event log on the AD server - there isn't connection from multiotp's server.
Thanks.

Comments

  • Hello,

    Your PHP web server must have LDAP support.

    If you are working with a Windows server, you will need the libraries php_ldap.dll, libeay32.dll and ssleay32.dll.
    If you are working with a Debian or Ubuntu Linux server, just do apt-get install php5-ldap.

    For further information, check the PHP documentation: http://www.php.net/manual/en/ldap.installation.php

    Best regards,

    Andre
  • edited April 2014
    Yes, I work with Windows server.
    I thought that multiotp has his own webserver .\multiotp\webservice\mongoose.exe, doesn't it? Mongoose has those dlls. Also I've put dlls to c:\php4 - I've got this path from "multiotp -phpinfo".
    Thanks.
  • Hello,

    If you want to use the multiotp.exe provided in the zipped distribution, you will have to use the one which is in the alternate folder. When using the multiotp.exe file, you are using an embedded PHP engine. As LDAP need external libraries to work, you have to use the version that is in the alternate folder in order to have all the necessary dependencies available.

    Check it and keep us in touch!

    Happy synchronizing

    Regards,

    Andre
  • edited April 2014
    Thanks a lot, it works.
    I moved to a root folder (c:\multiotp) five files from .\alternate folder (multiotp.exe, libeay32.dll, ssleay32.dll, php5ts.dll and php-embed.ini), changed path to extensions in php-embed.ini. I can sync with AD now.
    But I have one more question: how can I check status of the user account in the multiotp? I can check such status in AD with key -ldap-user-info, but I can't find key for accounts in multiotp.
    Thanks.
  • Hello,

    Good point, the status of the user account cannot be checked using command line right now.

    I add this request for an upcoming release in the next days.

    Regards,

    Andre
  • edited April 2014
    Starting with release 4.2.4.1, a new option -user-info is available!
    Regards,
    Andre
This discussion has been closed.