I'm trying to authenticate a user with LDAP using PHP. I have the DN for the user which I have checked to be correct. I also have a password. This is the correct password for the user when they authenticate with SamAccountName.

我正在尝试使用 PHP 通过 LDAP 对用户进行身份验证。我有我检查过的用户的 DN。我也有密码。这是用户使用 进行身份验证时的正确密码SamAccountName。

I am hoping this is the password to use when authenticating with the DN. There isn't a Distinguished Name specific password for LDAP is there? The following is my code to authenticate using PHP's ldap_bind()function. Am I doing this correct?

我希望这是使用 DN 进行身份验证时使用的密码。没有用于 LDAP 的专有名称特定密码吗？以下是我使用 PHPldap_bind()函数进行身份验证的代码。我这样做正确吗？

$ldaphost="ldap://somehost.com:3268";
$dn = "cn=LastName\, FirstName Dept/Country/ext,OU=Accounts,OU=Location,ou=Division,";
$basedn="dc=abc,dc=enterprise";

if (!($connect = ldap_connect($ldaphost))) {    
  die ("Could not connect to LDAP server"); 
} 

$ldapbind = ldap_bind($connect, "$dn" . "$basedn", $password);

if ($ldapbind) {
   echo "LDAP bind successful...";
} else {
   echo "LDAP bind failed...";
}

The result I get from the above code is :

我从上面的代码得到的结果是：

Warning: ldap_bind() [function.ldap-bind]: Unable to bind to server: Invalid credentials LDAP bind failed...

警告：ldap_bind() [function.ldap-bind]：无法绑定到服务器：无效凭据 LDAP 绑定失败...

From the line where ldap_bind()call is made:

从ldap_bind()拨打电话的线路：

$ldapbind = ldap_bind($connect, "$dn" . "$basedn", $password);

Invalid credentials makes me believe there is something wrong potentially with the DN or password. I have triple checked the DN and there is not an error there as far as I can see.

无效的凭据让我相信 DN 或密码可能有问题。我已经三重检查了 DN，据我所知，那里没有错误。

Any ideas?

有任何想法吗？