Skip to content

Latest commit

 

History

History
79 lines (55 loc) · 2 KB

troubleshooting.md

File metadata and controls

79 lines (55 loc) · 2 KB

Troubleshooting

Creating and Setting a Users Password

To set a users password when you've created a new one, you need to enable their account, then set their password.

For example:

// Construct a new user instance.
$user = $provider->make()->user();

// Set the user profile details.
$user->setAccountName('jdoe');
$user->setFirstName('John');
$user->setLastName('Doe');
$user->setCompany('ACME');
$user->setEmail('jdoe@acme.com');

// Save the new user.
if ($user->save()) {
    // Enable the new user (using user account control).
    $user->setUserAccountControl(512);

    // Set new user password
    $user->setPassword('Password123');

    // Save the user.
    if($user->save()) {
        // The password was saved successfully.
    }
}

Retrieving All Records Inside a Group

To retrieve all records inside a particular group (including nested groups), use the rawFilter() method:

// The `memberof:1.2.840.113556.1.4.1941:` string indicates
// that we want all nested group records as well.
$filter = '(memberof:1.2.840.113556.1.4.1941:=CN=MyGroup,DC=example,DC=com)';

$users = $provider->search()->rawFilter($filter)->get();

I'm connected but not getting any search results!

The first thing you need to ensure is your base_dn in your configuration.

Your base_dn needs to identical to the base DN on your domain. Even one mistyped character will result in no search results.

If you also include an ou in your base DN (ex. ou=Accounting,dc=corp,dc=acme,dc=org), you will only receive results inside the Accounting OU.

Once you're connected to your LDAP server, retrieve the Root DSE record.

Here's a full example:

$providers = [
    'default' => [
        'base_dn' => '',
        '...',
    ]
];

$ad = new \Adldap\Adldap($providers);

try {
    $provider = $ad->connect();
    
    $root = $provider->search()->getRootDse();
    
    // ex. Returns 'dc=corp,dc=acme,dc=org'
    die($root->getRootDomainNamingContext());

} catch (\Adldap\Auth\BindException $e) {
}