LDAP Password backend
Presentation
LDAP is the default password backend. If password policy is used, the flag "pwdReset" is set to TRUE when the user reset his password by mail.Configuration
Set the password backend:passwordDB => LDAP,
If no password backend is configured, LDAP is choosen by default.
Parameters are the same as LDAP authentication backend.
You can also set these:
- ldapPpolicyControl: set to '1' to use LDAP password policy.
- ldapSetPassword: set to '1' to use the LDAP extended operation "password modify" instead of standard modify operation.
- ldapChangePasswordAsUser: set to '1' to perfom password modification with credentials of connected user. This requires to active the portalRequireOldPassword option too.
- portalRequireOldPassword: set to '1' to require old password when changing the password.
- mailLDAPFilter: filter to use with user submitted email. By default:
(&(mail=$mail)(objectClass=inetOrgPerson))
Active Directory
Just adapt the search filter:
mailLDAPFilter => '(&(mail=$mail)(objectClass=person))',