Tiki LDAP auth -> Open LDAP password encoding - SSHA? SSH? MD5? SMD5? CRYPT?
I am having trouble getting my Tiki sites to authenticate off of an OpenLDAP server. Originally I had them authenticating off of the OpenLDAP implementation that comes with the Zimbra email and collaboration server however I'm trying to get to an OpenLDAP solution for single sign on across web, jabber, Linux hosts, windows hosts, email, etc. Zimbra does some non-standard things with their LDAP which effects use with Samba so I'm switching to a standard OpenLDAP for centralized auth. The Tiki sites were working perfectly authenticating off of the Zimbra OpenLDAP but now pointing them to a standard OpenLDAP I keep getting the "Invalid username or password".
Setup
VMware Ubuntu 6-06 LTS Linux virtual machine
MySQL 5
VMware Ubuntu 6-06 LTS Linux virtual machine
Apache 2.x
Tiki 1.9.9
with change made to ..\lib\userslib.php
$options"version" = $tikilib->get_preference("auth_ldap_version", "3");
VMware Ubuntu 7-10 Linux virtual machine
OpenLDAP (slapd 2.3.35)
The parameters in Tiki match perfectly the parameters in OpenLDAP (as far as I can tell). The only thing I can think of is that the passwords in OpenLDAP are SSHA encoded. Does Tiki require them to be encoded in a particular way? SSHA? SHA? MD5? SMD5? CRYPT? It is unclear how the passwords were being encoded in the Zimbra OpenLDAP.
I've set up a non-administrative bind user in LDAP and tried that in the Tiki - according to the syslog entries for ldap, Tiki is binding as this user and authentication is transferred - but somehow it is breaking.
Thanks in advance for any advice offered.
Eric