LDAP server definitions

From phpLDAPadmin

Jump to: navigation, search

NOTE: config.php has changed in PLA 1.2.x when defining your LDAP servers. Also note, that custom queries are no longer defined in config.php, instead they are now XML templates. For configuration of earlier PLA versions, look at an revision of this page.

config.php also holds the configuration to your LDAP servers.

PLA can be used with multiple LDAP servers. Each server definition starts with


Followed by configuration parameters, defined using the following syntax:


For example:

  • If you have 1 LDAP server, and you want to set the name for your LDAP server to "OpenLDAP 2.2.13", then you would have:
$servers->setValue('server','name','OpenLDAP 2.2.13');
  • If you wanted PLA to talk to two LDAP servers, then you config.php would be like this:
$servers->setValue('server','name','OpenLDAP 2.2.13');
$servers->setValue('server','name','Fedora Directory 7.1');

phpLDAPadmin will check your configuration file and return an error if you use an invalid KEY or INDEX.

LDAP Server Configuration

The available KEYS and INDEXs, with their default value is listed in the following table:

appearance password_hash Server:appearance:password hash
show_create Server:appearance:show create
visible Server:appearance:visible
auto_number dn DN to bind to LDAP server.
enable Enable the Auto Number feature.
mechanism Auto Number mechanism to use.
min Minimum numbers to return.
pass Password for DN when binding to the LDAP server.
search_base Server:auto number:search base
uidpool_dn uidpool DN. Depreciated
custom pages_prefix Server:custom:pages prefix
login allowed_dns Restrict login to a list of DNs.
anon_bind Enable anonymous bind login to the server.
attr Attribute to use when logging in.
auth_type Configure where PLA gets authenticate information.
base List of base DNs to use for authentication.
bind_id DN to bind to the LDAP server.
bind_pass DN password to bind to the LDAP server.
class Server:login:class
dn The DN used to bind to the LDAP server. Depreciated
fallback_dn Server:login:fallback dn
pass The Password used to bind to the LDAP server. Depreciated
string Server:login:string
timeout Server:login:timeout
proxy attr Proxy environment variables attribute mapping.
sasl mech Server:sasl:mech
realm Server:sasl:realm
authz_id Server:sasl:authz id
id_regex Server:sasl:authz id regex
authz_id_replacement Server:sasl:authz id replacement
props Server:sasl:props
server auth_type Configure where PLA stores authenticate information. Depreciated
base LDAP server Base DNs.
branch_rename Server:server:branch rename
custom_attrs Custom operational attributes to be treated as regular attributes
custom_sys_attrs Custom regular attributes to be treated as operational attributes
force_may Force MUST attributes to be treated as MAY attributes.
hide_noaccess_base Server:server:hide noaccess base
low_bandwidth Server:server:low bandwidth
name Server:server:name
host Hostname or IP address for the LDAP server.
hostwr Server:server:hostwr
port Server:server:port
portwr Server:server:portwr
read_only Server:server:read only
sasl Enable SASL communication with the LDAP server.
schema_oclass_default Server:server:schema oclass default
tls Enable TLS communication with the LDAP server.
unique attrs Attributes to keep unique.
dn DN to bind to LDAP server.
pass Password for DN when binding to the LDAP server.

Personal tools