Check out <a href="http://adldap.sourceforge.net/">http://adldap.sourceforge.net/</a>. It's a PHP Library to
access Active Directory using the ldap features of PHP. It
provides a usable object and has many useful methods for getting group
membership information.<br>
<br>
I had to hack it up a little bit to get it to accept parameters via the
contructor rather than hard code them into the class, but it was easy
enough to accomplish.<br><br><div><span class="gmail_quote">On 8/15/05, <b class="gmail_sendername">Wyatt, Rich</b> <<a href="mailto:RWyatt@bsbdesign.com">RWyatt@bsbdesign.com</a>> wrote:</span><blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;">
<div>
<p><span style="font-size: 10pt; font-family: Arial; color: blue;">Hello
gents/ladies… </span></p>
<p><span style="font-size: 10pt; font-family: Arial; color: blue;"> </span></p>
<p><span style="font-size: 10pt; font-family: Arial; color: blue;">I'm
not new to PHP but am new to this group.<span>
</span>My question deals with using PHP and ldap_search to query the Active
Directory.<span> </span>I want to check AD to see if
a user is a member of a specific group or if the user is a member of a group
that is part of a group (this is what I really want)… </span></p>
<p><span style="font-size: 10pt; font-family: Arial; color: blue;"> </span></p>
<p><span style="font-size: 10pt; font-family: Arial; color: blue;">I
can already return group membership – but I guess what I'm looking
for is a way to do the following:</span></p>
<p><span style="font-size: 10pt; font-family: Arial; color: blue;"> </span></p>
<p><span style="font-size: 10pt; font-family: Arial; color: blue;">Joe
wants access to a page… </span></p>
<p><span style="font-size: 10pt; font-family: Arial; color: blue;"> </span></p>
<p><span style="font-size: 10pt; font-family: Arial; color: blue;">Joe
is part of "Super Admins" which is a member of "Another Admin"
group.<span> </span></span></p>
<p><span style="font-size: 10pt; font-family: Arial; color: blue;"> </span></p>
<p><span style="font-size: 10pt; font-family: Arial; color: blue;">Joe
doesn't have "member of" listing for "Another Admin"
group.<span> </span>How can I check the AD with
PHP/LDAP to tell me that Joe is OK for this page b/c he is part of a group that
has membership to the required group?</span></p>
<p><span style="font-size: 10pt; font-family: Arial; color: blue;"> </span></p>
<p><span style="font-size: 10pt; font-family: Arial; color: blue;">Does
this make sense?<span> </span>If so – anybody have
any thoughts?</span></p>
<p><span style="font-size: 10pt; font-family: Arial; color: blue;"> </span></p>
<p><span style="font-size: 10pt; font-family: Arial; color: blue;">Thanks
in advance.</span></p>
<p><span style="font-size: 10pt; font-family: Arial; color: blue;"> </span></p>
<p><b><span style="font-size: 10pt; color: navy;">Rich
S. Wyatt</span></b></p>
<p><span style="font-size: 10pt; color: navy;">Webmaster</span><span style="color: blue;"></span></p>
<p><strong><span style="color: navy;">Bloodgood
Sharp Buster Architects and Planners, Inc.</span></strong><span style="color: blue;"></span></p>
<p><span style="font-size: 10pt; color: navy;">Corporate-Des Moines</span><span style="color: blue;"></span></p>
<p><span style="font-size: 10pt; color: navy;">Office: 515.273.3020<span> </span>Fax: 515.221.3272</span></p>
<p><u><span style="color: navy;"><a href="http://www.bsbdesign.com" target="_blank" onclick="return top.js.OpenExtLink(window,event,this)"><span style="font-size: 10pt; color: navy;">www.bsbdesign.com</span></a></span></u>
<u><span style="font-size: 10pt; color: navy;"> </span></u><span style="color: blue;"></span></p>
<p><em><span style="font-size: 10pt; font-family: Arial; color: black;">National Experience, Regional Sensitivity</span></em><span style="color: black;"></span></p>
<p> </p>
</div>
<div><p></p><hr>
NOTICE: This email (including attachments) is covered by the Electronic
Communications Privacy Act, 18 U.S.C. 2510-2521, is confidential and
may be legally privileged. If you are not the intended recipient, you
are hereby notified that any retention, dissemination, distribution, or
copying of this communication is strictly prohibited. Please reply to
the sender that you have received the message in error then delete it.
<p></p></div>
<br>_______________________________________________<br>ciapug mailing list<br><a onclick="return top.js.OpenExtLink(window,event,this)" href="mailto:ciapug@cialug.org">ciapug@cialug.org</a><br><a onclick="return top.js.OpenExtLink(window,event,this)" href="http://cialug.org/mailman/listinfo/ciapug" target="_blank">
http://cialug.org/mailman/listinfo/ciapug</a><br><br><br></blockquote></div><br>