Discussion :

[Alex63530]

Bonjours,
Je débute avec ezPublish, et je souhaite que les utilisateurs puissent se logger directement sur notre AD (de 2003).

Je suis donc allez dans mes dossier /settings/site.ini
afin d'y rajouter la ligne: LoginHandler[]=LDAP
Ainsi que dans site.ini.apprend.php

Puis je suis allez dans ldap.ini afin d'y paramétrer la connexion.

[LDAPSettings]
# Enable tracing the the ldap login, outputs extensive debug info for use during setup
# NOTE: Do not keep this enabled on production setup as login name and passwords will be
# logged to logfiles or outputted if DebugOutput settings are enabled.
LDAPDebugTrace=enabled
# Set LDAP version number
LDAPVersion=3
# Determines whether the LDAP library automatically follows referrals returned by LDAP servers or not.
# set to 1 to enable
LDAPFollowReferrals=1
# Set to true if use LDAP server
LDAPEnabled=true
# LDAP host
LDAPServer=adresse IP
# Port nr for LDAP, default is 389
LDAPPort=389
# Specifies the base DN for the directory.
LDAPBaseDn=DC--alpha,DC--net
# If the server does not allow anonymous bind, specify the user name for the bind here.
LDAPBindUser=
# If the server does not allow anonymous bind, specify the password for the bind here.
LDAPBindPassword=
# Could be sub, one, base.
LDAPSearchScope=sub
# Use the equla sign to replace "=" when specify LDAPBaseDn or LDAPSearchFilters
LDAPEqualSign=--
# Add extra search requirment. Uncomment it if you dont need it.
# Example LDAPSearchFilters[]=objectClass--inetOrgPerson

LDAPSearchFilters[]
# LDAP attribute for login. Normally, uid
LDAPLoginAttribute=sAMAccountName
# Could be id or name
LDAPUserGroupType=Editors
# Default place to store LDAP users. Could be content object id or group name for LDAP user group,
# depends on LDAPUserGroupType.
LDAPUserGroup[]
LDAPGroupMappingType=GetGroupsTree
LDAPUserGroupClass=organizationalUnit
LDAPUserGroupAttribute=cn
LDAPGroupMemberAttribute=members
# Group mapping settings:
# Root node id where LDAP groups are created, node id: 5 is used if blank
LDAPGroupRootNodeId=5
# Possible values: UseGroupAttribute (old style group assigning using LDAPUserGroupAttribute setting),
# SimpleMapping (using LDAPUserGroupMap array for name-to-name group mapping), and GetGroupsTree
# (automatic name-to-name group mapping, creating groups as needed)
LDAPGroupMappingType=SimpleMapping
# When 'LDAPGroupMappingType' is set to 'UseGroupAttribute', this setting decides whether groups that
# are not found in eZ Publish, should be created.
LDAPCreateMissingGroups=enabled
# Base LDAP dn which should be used to fetch user group objects from LDAP
LDAPGroupBaseDN=OU--Utilisateurs,OU--Comptables,DC--domaine,DC--ville,DC--societe,DC--fr
# LDAP user group class
LDAPGroupClass=exampleGroupDAClassName
# Attribute which should be used to obtain name of an LDAP group
# Required then 'LDAPGroupMappingType' is set to 'GetGroupsTree' or 'SimpleMapping'
# and when 'LDAPGroupMappingType' is set to 'UseGroupAttribute' and 'LDAPUserGroupAttributeType' is 'dn'
LDAPGroupNameAttribute=cn
# Attribute of LDAP user which should be used to obtain groups which user(group) belongs to.
# Required then 'LDAPGroupMappingType' is set to 'GetGroupsTree' or 'SimpleMapping'
LDAPGroupMemberAttribute=member
# Attribute which contain description of LDAP group, optional
LDAPGroupDescriptionAttribute=
# Group names map (from LDAP to ezpublish user-groups),
# used then 'LDAPGroupMappingType' is set to 'SimpleMapping'
LDAPUserGroupMap[]

# LDAP attribute type for user group. Could be name, id or dn
LDAPUserGroupAttributeType=id
# LDAP attribute for user group. For example, employeetype. If specified, LDAP users
# will be saved under the same group as in LDAP server.
# Depends on the value of LDAPUserGroupAttributeType:
# name: attribute holding name of group
# id: attribute holding nummeric id of group
# dn: attribute holding DN of group
LDAPUserGroupAttribute=cn
# LDAP attribute for First name. Normally, givenname
LDAPFirstNameAttribute=givenname
# If cn (common name) is used for first name, sn (Last name) will be removed from first name
LDAPFirstNameIsCommonName=false
# LDAP attribute for Last name. Normally, sn
LDAPLastNameAttribute=sn
# LDAP attribute for email. Normally, mail
LDAPEmailAttribute=mail
# For use if LDAP does not return mail, creates one using login name + email suffix, like '@ez.no'
'LDAPEmailEmptyAttributeSuffix='
# LDAP encoding is utf-8 or not
Utf8Encoding=false
# if 'enabled' you can move LDAP users to a different group and they will not
# be automatically moved back (to the group they are configured to be placed in)
# when the user logs in again.
KeepGroupAssignment=disabled

Voila si quelqu'un pouvez m'aider a corriger les erreurs, merci d'avance.

[Alex63530]

Voila, j'ai continuer a chercher de mon coter et j'ai trouver la solution.
A savoir que les champs bindUser et BindPassword doivent être rentrer voici mes rajouts:

LDAPBindUser=nomdeCompte@alpha.net
LDAPBindPassword=Password du nom de compte

A savoir aussi qu'un utilisateur pour pouvoir ce connecter est dans l'obligation d'avoir dans son compte AD une adresse mail, un nom et un prénom de renseigner