The Auth_msad class provides an experimental MSAD extension of the LDAP implementation of the Horde authentication system.

Required parameters:

   'basedn'       The base DN for the AD server.
   'hostspec'     The hostname of the AD server.
   'uid'          The username search key.
   'filter'       The LDAP formatted search filter to search for users. This
                  setting overrides the 'objectclass' method below.
   'objectclass'  The objectclass filter used to search for users. Can be a
                  single objectclass or an array.

Optional parameters:

   'binddn'       The DN used to bind to the MSAD server
   'password'     The password used to bind to the MSAD server

Copyright 2007-2009 The Horde Project (http://www.horde.org/)

See the enclosed file COPYING for license information (LGPL). If you did not receive this file, see http://opensource.org/licenses/lgpl-license.php.

• author: Francois Helly <fhelly@bebop-design.net>
• since: Horde 3.2

Located in /Auth/Auth/msad.php (line 39)

Auth
   |
   --Auth_ldap
      |
      --Auth_msad

Inherited Variables

Inherited from Auth_ldap

Auth_ldap::$capabilities
Auth_ldap::$_ds

Inherited from Auth

Auth::$_authCredentials
Auth::$_params

Constructor Auth_msad (line 48)

Constructs a new MSAD authentication object.

• access: public

Auth_msad Auth_msad ([array $params = array()])

• array $params: A hash containing connection parameters.

addUser (line 111)

Add a set of authentication credentials.

• return: True on success or a PEAR_Error object on failure.
• access: public

mixed addUser (string $accountName, array $credentials)

• string $accountName: The user sAMAccountName to find.
• array $credentials: The credentials to be set.

---

Redefinition of:

Auth_ldap::addUser()

Add a set of authentication credentials.

removeUser (line 170)

Remove a set of authentication credentials.

• return: True on success or a PEAR_Error object on failure.
• access: public

mixed removeUser (string $accountName)

• string $accountName: The user sAMAccountName to remove.

---

Redefinition of:

Auth_ldap::removeUser()

Remove a set of authentication credentials.

resetPassword (line 262)

Reset a user's password. Used for example when the user does not remember the existing password.

• return: The new password on success or a PEAR_Error object on failure.

mixed resetPassword (string $user_id)

• string $user_id: The user id for which to reset the password.

updateUser (line 210)

Update a set of authentication credentials.

• return: True on success or a PEAR_Error object on failure.

mixed updateUser ( $oldId,  $newId, array $credentials, string $oldID, string $newID)

• string $oldID: The old userId.
• string $newID: The new userId.
• array $credentials: The new credentials
• $oldId
• $newId

---

Redefinition of:

Auth_ldap::updateUser()

Update a set of authentication credentials.

Inherited Methods

Inherited From Auth_ldap

Auth_ldap::Auth_ldap()
Auth_ldap::addUser()
Auth_ldap::listUsers()
Auth_ldap::removeUser()
Auth_ldap::updateUser()

Inherited From Auth

Auth::addHook()
Auth::addLogoutParameters()
Auth::addUser()
Auth::authenticate()
Auth::clearAuth()
Auth::exists()
Auth::factory()
Auth::genRandomPassword()
Auth::getAuth()
Auth::getAuthDomain()
Auth::getBareAuth()
Auth::getCredential()
Auth::getCryptedPassword()
Auth::getDriver()
Auth::getLoginScreen()
Auth::getLogoutReason()
Auth::getLogoutReasonString()
Auth::getParam()
Auth::getProvider()
Auth::getSalt()
Auth::hasCapability()
Auth::isAdmin()
Auth::isAuthenticated()
Auth::isPasswordChangeRequested()
Auth::listUsers()
Auth::readSessionData()
Auth::removeHook()
Auth::removeUser()
Auth::removeUserData()
Auth::setAuth()
Auth::setCredential()
Auth::singleton()
Auth::transparent()
Auth::updateUser()
Auth::_authenticate()
Auth::_isAdmin()