more ldap server

Please post here if you have problems in using Wing FTP Server.
Post Reply
andrydo
Posts: 2
Joined: Fri Jun 11, 2021 10:09 am

more ldap server

Post by andrydo »

Hi all,
I'm using "wing ftp server" 6.5.6 (windows) in our dmz zone.
I need to enter more than one ldap server in "Authentication settings" tab.
I can't open dns requests throught the firewall so i can use only the "hosts" file.
The question is:
may i enter more than one name (or ip) in "ldap host information" (this may be a "single point of failure")?

Inside your board i found the following suggestions:
viewtopic.php?f=4&t=3142" rel="nofollow"
&
viewtopic.php?f=6&t=3264" rel="nofollow"
The second is still right for me (expecially the need to install a special "luasocket library")?

King Regards
FTP
Site Admin
Posts: 1935
Joined: Tue Sep 29, 2009 6:09 am

Re: more ldap server

Post by FTP »

Please have a look at this blog article first: https://www.wftpserver.com/blog/ftp-ser ... tp-server/" rel="nofollow

Then modify the event script like this:

Code: Select all

local ldapServer1 = "192.168.1.111"
local ldapServer2 = "192.168.1.222"
local bindDN = "cn=%Name,cn=users,dc=wftpserver,dc=com"
local bindPass = "%Password"
if c_TestLDAP("%Domain", ldapServer1, 389, 3, 0, bindDN, bindPass) or c_TestLDAP("%Domain", ldapServer2, 389, 3, 0, bindDN, bindPass) then
	bSelfAuthenticated = true
end
You need to replace the first three lines into your own server addresses and bind DN.
andrydo
Posts: 2
Joined: Fri Jun 11, 2021 10:09 am

Re: more ldap server

Post by andrydo »

Thanks for you suggestions.

I just needed to get some clarification on the strings to be inserted in "local BindDN= and "local BindPass="
Are %Name and %Password" parameters entered by the user at logon time?

Are these different from the parameters we entered in the "Bind Dn" field in "bind using simple authentication"?
In "Bind Dn" field we entered:
"CN=g******g,CN=Users,DC=pam,DC=local" where g******G is the user can query our AD tree.

Best Regards
FTP
Site Admin
Posts: 1935
Joined: Tue Sep 29, 2009 6:09 am

Re: more ldap server

Post by FTP »

Yes, the variables "%Name" and "%Password" means username and password entered by the client.
And the bind DN variable is similar, you can try the following bind DN string:
local bindDN = "CN=%Name,CN=Users,DC=pam,DC=local"
Post Reply