Posts Tagged unicodePwd
Victory! Change Active Directory Password via LDAP through browser
Posted by evan in Uncategorized on January 13th, 2010
I had to give up on PHP and go to Perl, but it turned out not to be so bad. Users can now change their Active Directory passwords via a self-service web page that doesn’t require admin credentials. The Perl code is below. Authentication to the script is done via .htaccess LDAP authentication, so the REMOTE_USER env variable is assumed to contain the user’s username (sAMAccountName) by the time this script is called. There is a simple check for $ENV{HTTPS} to ensure the script is called via SSL, and AD requires password changes to be done via ldaps, so the whole thing should be encrypted end to end.
LDAP-Active Directory authentication, Part 3
Posted by evan in Uncategorized on January 8th, 2010
So I got everything working with .htaccess and AD/LDAP authentication. Just add LDAPVerifyServerCert Off to the httpd config to let Apache authenticate against an AD server with a self-signed certificate (without dealing with the annoyance of putting the cert on each Apache server).
With that piece of the puzzle largely solved, I moved on to another: how will users change their passwords (which are all stored in Active Directory)? For users running Windows this is pretty trivial — they can do it right in Windows when they’re logged into the domain. But what about Linux users? I figured the easiest thing to do would be to make a web form to do this. The user would login (with the http/LDAP auth I previously setup) and the form would ask for their password (twice) and update it in Active Directory. Sounds pretty simple to me. I think if this were OpenLDAP it probably would be, but being AD, it’s not.
-
Recent tracks- Pink Floyd – Goodbye Cruel World March 12, 2010
- Pink Floyd – Another Brick In The Wall (Part III) March 12, 2010
- Pink Floyd – Don't Leave Now March 12, 2010
- Pink Floyd – One of My Turns March 12, 2010
- Pink Floyd – Young Lust March 12, 2010
- Pink Floyd – Empty Spaces March 12, 2010
- Pink Floyd – Goodbye Blue Sky March 12, 2010
- Pink Floyd – Mother March 12, 2010
- Pink Floyd – Another Brick In The Wall (Part II) March 12, 2010
- Pink Floyd – The Happiest Days of Our Lives March 12, 2010
- Slickdeals
- Dell EPP Dell Mini 10 Netbook: Atom N450 1.66 GHz, 10.1" 1024x600 Screen w/ Webcam, 1GB DDR2, 160GB HDD, WiFi, 6-Cell Battery, Intel NM10 Express, Windows 7 Starter $244 March 12, 2010[…]
- Yamaha RX-V365 5.1-Channel Digital Home Theater Receiver $130 March 12, 2010[…]
- Restaurant.com 80% off: $25 Gift Certificates $2 or $3, $10 Gift Certificates $0.80 March 12, 2010[…]
- Victoria's Secret: Free Shipping + Free Secret Rewards Card valued at least $10 with any order, no minimum. Beauty Items $2+, Panties 5 for $25, and more March 12, 2010[…]
- GoGamer Sale: Raven Squad: Hidden Dagger for PC $5, Supreme Commander 2 (PC) $34, Mass Effect 2 (PC) $30, Dragon Age Origins: Awakenings (PC) $33, Assasin's Creed (Xbox 360 & PS3) $35, + More + S/h March 12, 2010[…]
- Dell EPP Dell Mini 10 Netbook: Atom N450 1.66 GHz, 10.1" 1024x600 Screen w/ Webcam, 1GB DDR2, 160GB HDD, WiFi, 6-Cell Battery, Intel NM10 Express, Windows 7 Starter $244 March 12, 2010