Is there a way to modify the ldap module such that there is the option to first search the ldap (or AD) directory THEN search the drupal database if no user is found?

Presently the only options are to first search drupal, then ldap OR only search ldap.

Or am I mistaken that the 'only search ldap' option will do what I am asking?

Comments

pablobm’s picture

pablobm commented

Hi rout. That happens with the "LDAP only" option. I should include a more explicit description there.

What actually happens when you activate the "LDAP only" option is:

  • For users who are not yet on the DB, only LDAP works(obviously)
  • If the user exists on the DB, and he is marked as having accessed via LDAP before, he can only get in using LDAP authentication.
  • If the user exists and he is not marked as LDAP user, then LDAP authentication and then Drupal authentication are tried.

I just set up a wiki for this project which I hope to populate with useful information about this module in the near future.

rout’s picture

rout commented
Status: Active » Closed (fixed)
rout’s picture

rout commented
Status: Closed (fixed) » Closed (works as designed)