PHP Function Ldap_StartTLS

Articles about php function ldap_start_tls

The problem occurs when trying to use the encrypted LDAP protocol (ldaps) over port 389 while using the unencrypted LDAP protocol (ldap). LDAP servers configured with both start-TLS and ldaps running simultaneously on the same port (389) break configuration by displaying "Config invalid, cannot connect" messages.

Adding a simple stub to bind to LDAP over TLS resolves the issue and allows LDAP authentication to work again. This is done by using ldap_set_option($ds, LDAP_OPT_PROTOCOL_VERSION, 3) in the code below. These are the top rated real world PHP examples of ldap_start_tls extracted from open source projects. You can rate examples to help us improve the quality of examples. Thank you for your help! - Paul Dixon, ITS.

Andreas Behr - CTO of DesertCoderz
You are a developer and looking for Shopware projects?
Apply Now!

ldap_start_tls example

throw new LdapException('Invalid connection string: '.$this->config['connection_string']);
        } else {
            $this->connection = $connection;
        }

        foreach ($this->config['options'] as $name => $value) {
            if (!\in_array(ConnectionOptions::getOption($name), self::PRECONNECT_OPTIONS, true)) {
                $this->setOption($name$value);
            }
        }

        if ('tls' === $this->config['encryption'] && false === @ldap_start_tls($this->connection)) {
            throw new LdapException('Could not initiate TLS connection: '.ldap_error($this->connection));
        }
    }

    private function disconnect(): void
    {
        if ($this->connection) {
            ldap_unbind($this->connection);
        }

        $this->connection = null;
        
Home | Imprint | This part of the site doesn't use cookies.