https://community.hpe.com/t5/operating-system-openvms/ldap-amp-csws/m-p/5332313#M45434 <P>Hi Jack,</P><P>&nbsp;</P><P>Given you've already found some PHP code to extract the user's credentials from the browser, I'd be inclined to explore the PHP LDAP module.&nbsp; I'm not familiar with it (nor with Active Directory in any detail) so the following is offered as general advice.</P><P>&nbsp;</P><P>Going back to basics, there are two general ways of authenticating a user against an LDAP directory: one is to log in (bind) to the directory as the user, the other is to compare the supplied password against the password stored in the directory.&nbsp; Choosing one over the other will be influenced by what is easier to do with that particular LDAP server and what the application needs to do once it's authenticated.</P><P>&nbsp;</P><P>If you're not particularly wedded to CSWS take a look at WASD instead.&nbsp; It has better performance than CSWS, has some really good tools for debugging HTTP requests, and has a number of authentication mechanisms supported out-of-the-box.&nbsp; I think there are users on the WASD mailing list who have done what you're trying to do.&nbsp; <A href="http://wasd.vsm.com.au/" target="_blank">http://wasd.vsm.com.au/</A></P><P><BR />Regards,</P><P>Jeremy Begg</P> Thu, 15 Sep 2011 02:33:27 GMT Jeremy Begg 2011-09-15T02:33:27Z https://community.hpe.com/t5/operating-system-openvms/ldap-amp-csws/m-p/5332019#M45433 <P>OpenVMS V8.3</P><P>CSWS/Apache</P><P>CSWS_PHP</P><P>&nbsp;</P><P>I need to authenticate Windows IE users against Active Directory.&nbsp; I have found PHP code which requests the encoded Windows userid &amp; password from Internet Explorer.&nbsp; Now I'm lost as to how to do the authentication.</P><P>&nbsp;</P><P>Do I enable the PHP LDAP module? (can't find any documentation on how to use it)</P><P>&nbsp;</P><P>Do I enable LDAP in CSWS? (then how do I get the UserID/pwd to CSWS from the PHP code?)</P><P>&nbsp;</P><P>As is obvious, this is all new to me.&nbsp; Couldn't find help in my search of CSWS related docs or searching this forum.</P><P>&nbsp;</P><P>TIA</P> Wed, 14 Sep 2011 18:25:23 GMT https://community.hpe.com/t5/operating-system-openvms/ldap-amp-csws/m-p/5332019#M45433 Jack Trachtman 2011-09-14T18:25:23Z https://community.hpe.com/t5/operating-system-openvms/ldap-amp-csws/m-p/5332313#M45434 <P>Hi Jack,</P><P>&nbsp;</P><P>Given you've already found some PHP code to extract the user's credentials from the browser, I'd be inclined to explore the PHP LDAP module.&nbsp; I'm not familiar with it (nor with Active Directory in any detail) so the following is offered as general advice.</P><P>&nbsp;</P><P>Going back to basics, there are two general ways of authenticating a user against an LDAP directory: one is to log in (bind) to the directory as the user, the other is to compare the supplied password against the password stored in the directory.&nbsp; Choosing one over the other will be influenced by what is easier to do with that particular LDAP server and what the application needs to do once it's authenticated.</P><P>&nbsp;</P><P>If you're not particularly wedded to CSWS take a look at WASD instead.&nbsp; It has better performance than CSWS, has some really good tools for debugging HTTP requests, and has a number of authentication mechanisms supported out-of-the-box.&nbsp; I think there are users on the WASD mailing list who have done what you're trying to do.&nbsp; <A href="http://wasd.vsm.com.au/" target="_blank">http://wasd.vsm.com.au/</A></P><P><BR />Regards,</P><P>Jeremy Begg</P> Thu, 15 Sep 2011 02:33:27 GMT https://community.hpe.com/t5/operating-system-openvms/ldap-amp-csws/m-p/5332313#M45434 Jeremy Begg 2011-09-15T02:33:27Z