Hello, I was actually wondering if the PHP implementation of an LDAP client encodes the password before being sent, or if it sends the password in plain-text. The most information I've got on this subject, so far, is from http://adldap.sourceforge.net/faq.php Q. Why am I getting poor performance with Windows 2003 Server? A. Microsoft figured out that plain text passwords aren't a good thing and tightened the security on Windows 2003 Server. The passwords floating around with 2000 server were all encrypted but there are some new timeout problems during negotiation (I think). Anyways, I've set another LDAP option in version 1.2 to force encrypted passwords, and it has resolved this issue. After looking through their source code, this information seems to be for modifying passwords or creating a user. I would assume that passwords are plain text without SSL when using ldap_bind(). Thanks, -- Ray Hauge Application Development Lead American Student Loan Services www.americanstudentloan.com ________________________________ From: Alain Roger [mailto:raf.news@xxxxxxxxx] Sent: Thursday, November 30, 2006 6:15 AM To: Ray Hauge; PHP General List Subject: Re: LDAP password question Hi Ray, the question is for which reason you need to know something about the pwd ? to log on ? if yes, it's not needed. I personally did like that : 1. with login + pwd given by user, i try to bind. 2. if bind works, it means that user login+pwd are equal to AD login+pwd. 3. if error during bind, so error in pwd or login. that's all. Alain On 11/30/06, Ray Hauge <ray.hauge@xxxxxxxxxxxxxxxxxxxxxxx> wrote: I'm working on integrating an application with an AD server, and I was wondering if the password is encrypted at all, or if I need to go through the troubles of setting up ldaps:// I checked the documentation, but I couldn't find any information about plain-text vs. encrypted. Thanks! -- Ray Hauge Application Development Lead American Student Loan Services www.americanstudentloan.com -- Alain ------------------------------------ Windows XP SP2 PostgreSQL 8.1.4 Apache 2.0.58 PHP 5
