Thinking loudly, if you can en-light me, please jump
I must admit, I’m a zero for what it concerns ldap (openldap or samba4 ad), I know to use, but with a lot of effort, anyway it is not the purpose of this post.
sometime if you can read it, you have one part solved of your problem, hence the necessity of a contrib.
first why phpldapadmin…there is plenty documentations, I know there is other software, I’m hearing you
I want to do a phpldapadmin with two modes (two users)
readonly : $sssd->bindDN() and $sssd->bindPassword()
'cn=ldapservice,dc=stephdl,dc=dyndns,dc=org' #openldap
"cn=NS7DEV5,cn=Computers,dc=stephdl,dc=dyndns,dc=org" #samba4
kamikaze mode (write access) ??? and ???
cn=libuser,dc=stephdl,dc=dyndns,dc=org
CN=Administrator,CN=Users,dc=stephdl,dc=dyndns,dc=org
for the kamikaze mode what is the sssd function to obtain the relevant name and password of users with write permissions
I know that for openldap we could use ‘cn=libuser,dc=directory,dc=nh’ but it is not nice
I could do two types of authentication with pro and cons
-
apache
with this authentication, it is a convenient way to login with for example the user admin, but we let in apache all the security role. -
ldap
here the security is managed directly by ldap(openldap or samba4 ad), but if the password is secured, except for the password of ‘administrator’ it is not easy to find it. You needs to go to your terminal for libuser and ldapservice, and for the user ‘cn=NS7DEV5,cn=Computers,dc=stephdl,dc=dyndns,dc=org’ the password can be found only by the perl snippet $sssd->bindPassword()
One more question to @davidep, soon I figure that the write access to samba4 AD will be the user admin ?