Title: authLdap Author: heiglandreas Published: 8 сар 27, 2010 Last modified: 4 сар 16, 2025 --- Search plugins ![](https://s.w.org/plugins/geopattern-icon/authldap.svg) # authLdap By [heiglandreas](https://profiles.wordpress.org/heiglandreas/) [Download](https://downloads.wordpress.org/plugin/authldap.3.1.3.zip) * [Details](https://mn.wordpress.org/plugins/authldap/#description) * [Reviews](https://mn.wordpress.org/plugins/authldap/#reviews) * [Installation](https://mn.wordpress.org/plugins/authldap/#installation) * [Development](https://mn.wordpress.org/plugins/authldap/#developers) [Support](https://wordpress.org/support/plugin/authldap/) ## Description Use your existing LDAP as authentication-backend for your wordpress! So what are the differences to other WordPress-LDAP-Authentication-Plugins? * Flexible: You are totaly free in which LDAP-backend to use. Due to the extensive configuration you can freely decide how to do the authentication of your users. It simply depends on your filters * Independent: As soon as a user logs in, it is added/updated to the WordPress’ user-database to allow wordpress to always use the correct data. You only have to administer your users once. * Failsafe: Due to the users being created in WordPress’ User-database they can also log in when the LDAP-backend currently is gone. * Role-Aware: You can map WordPress’ roles to values of an existing LDAP-attribute. For more Information on the configuration have a look at https://github.com/heiglandreas/ authLdap ## Installation 1. Upload the extracted folder `authLdap` to the `/wp-content/plugins/` directory 2. Activate the plugin through the ‘Plugins’ menu in WordPress 3. Configure the Plugin via the ‘authLdap’-Configuration-Page. ## FAQ ### Where can I find more Informations about the plugin? Go to https://github.com/heiglandreas/authLdap ### Where can I report issues with the plugin? Please use the issuetracker at https://github.com/heiglandreas/authLdap/issues ### Where can I report sensitive security issues with the plugin? In essence: Report a security vulnerability at https://github.com/heiglandreas/authLdap/ security/advisories/new Please see https://github.com/heiglandreas/authLdap/blob/master/SECURITY.md for more details ## Reviews ![](https://secure.gravatar.com/avatar/8a273749eb9f0fe4aaed19e400356ab4892ef1bf430d54276bcc5a2ee6e32cec? s=60&d=retro&r=g) ### 󠀁[Best LDAP plugin, best support, thanks a lot Andreas !](https://wordpress.org/support/topic/best-ldap-plugin-best-support-thanks-a-lot-andreas/)󠁿 [sriviere](https://profiles.wordpress.org/sriviere/) 4 сар 7, 2024 Best LDAP plugin, best support with this essential group mapping feature 🙂 All the best from Oleron Island ! ![](https://secure.gravatar.com/avatar/d294487c36b42151ab4cde8985a58c31e00f7612a9bb54373703c228ce815188? s=60&d=retro&r=g) ### 󠀁[Simple but Powerful Enough](https://wordpress.org/support/topic/simple-but-powerful-enough/)󠁿 [rozmansi](https://profiles.wordpress.org/rozmansi/) 12 сар 16, 2022 Clean setup, works with OpenLDAP, works with WP 6.1, free. ![](https://secure.gravatar.com/avatar/a51518ba88e8fdc4ca7c1c3c76e9c06a91d2cfc59348dbc7f9f6d1a0dea96e7c? s=60&d=retro&r=g) ### 󠀁[Nice with group mapping](https://wordpress.org/support/topic/nice-with-group-mapping/)󠁿 [boutmos](https://profiles.wordpress.org/boutmos/) 6 сар 28, 2022 I use it since 2 years for an Intranet an it work fine. I was afraid it was broken for WP 6.0 but, it is something else who went wrong in my functions.php Tested with success on Wordpres 6.0 ![](https://secure.gravatar.com/avatar/91a439fd6af3f735fd5731e33e5151659c6d973844fc551bad9d8c38a1b1fa82? s=60&d=retro&r=g) ### 󠀁[Great, lightweight plugin](https://wordpress.org/support/topic/great-lightweight-plugin-20/)󠁿 [Christopher Sem](https://profiles.wordpress.org/leoniscsem/) 1 сар 15, 2022 Very flexible plugin, stable codebase, excellent documentation. I especially like the clean configuration interface, which enables me to set the LDAP search filters easily. Plus, you don’t really have to do much – the default settings are what you need when authenticating against an openLDAP instance. ![](https://secure.gravatar.com/avatar/07a20c9f56b2b62f304e1e3820aec06f9bf96bd4fd2533749b0e738042fb6e6c? s=60&d=retro&r=g) ### 󠀁[Works perfectly and has group mapping!](https://wordpress.org/support/topic/works-perfectly-and-has-group-mapping/)󠁿 [Karolina Vyskocilova](https://profiles.wordpress.org/vyskoczilova/) 8 сар 10, 2020 This plugin is the only one in WP.org which works out of the box, it’s super easy to set up and even has user group mapping included. Thanks once again and totally recommended to every one. Karolina ![](https://secure.gravatar.com/avatar/3446250f49314c21f9e3b38e5e5be0acb2081b3d2efd435b33491fb6746a5431? s=60&d=retro&r=g) ### 󠀁[Working very well with Active directory](https://wordpress.org/support/topic/working-very-well-with-active-directory/)󠁿 [tom8254](https://profiles.wordpress.org/tom8254/) 12 сар 27, 2018 the ldap plugin is working as I thought.~! group mapping too. Thank you for making this plugin. [ Read all 19 reviews ](https://wordpress.org/support/plugin/authldap/reviews/) ## Contributors & Developers “authLdap” is open source software. The following people have contributed to this plugin. Contributors * [ heiglandreas ](https://profiles.wordpress.org/heiglandreas/) [Translate “authLdap” into your language.](https://translate.wordpress.org/projects/wp-plugins/authldap) ### Interested in development? [Browse the code](https://plugins.trac.wordpress.org/browser/authldap/), check out the [SVN repository](https://plugins.svn.wordpress.org/authldap/), or subscribe to the [development log](https://plugins.trac.wordpress.org/log/authldap/) by [RSS](https://plugins.trac.wordpress.org/log/authldap/?limit=100&mode=stop_on_copy&format=rss). ## Changelog #### 3.1.3 * Add testing with WP 6.8 #### 3.1.2 * Fixed bug when filter uses different field than WordPress username is taken from #### 3.1.1 * Removed sensitive parameters from logs #### 3.1.0 * Improve error logging #### 3.0.4 * Fix PHP7.4 issue with dereferencing associative arrays #### 3.0.3 * Fix further issues with PHP7.4 #### 3.0.2 * Fix an issue with annotations in PHP7.4 #### 3.0.1 * Fix admin interface when no group mappings are set up #### 3.0.0 * Internal split of code to prepare for better testability and allowing in the future authorization without authentication #### 2.6.3 * Internal fixes and adding some more end-to-end tests #### 2.6.2 * Fix issue with Groups not being updated on existing accounts (see https://github. com/heiglandreas/authLdap/issues/250 for details) #### 2.6.0 * Fix reducing assigned WordPress roles to single role on login when WordPress roles shall be kept * Add Behavioural testing and first 3 scenarios #### 2.5.9 * Adds information about security-contacts * Addresses CVE-2023-41655 #### 2.5.8 * Fix regression from 2.5.7 #### 2.5.7 * Fix regressions from 2.5.4 * Fix CI system #### 2.5.4 * Update Tested up to #### 2.5.3 * Fix issue with broken role-assignement in combination with WooCommerce * Fix spelling issue * Allow DN as role-definition #### 2.5.0 * Ignore the order of capabilities to tell the role. In addition the filter `editable_roles` can be used to limit the roles #### 2.4.11 * Fix issue with running on PHP8.1 #### 2.4.9 * Improve group-assignement UI #### 2.4.8 * Make textfields in settings-page wider #### 2.4.7 * Replace deprecated function * Fix undefined index * Add filter for retrieving other params at login (authLdap_filter_attributes) * Add do_action after successfull login (authLdap_login_successful) #### 2.4.0 * Allow to use environment variables for LDAP-URI configuration #### 2.3.0 * Allow to not overwrite existing WordPress-Users with LDAP-Users as that can be a security issue. #### 2.1.0 * Add search-base for groups. This might come in handy for multisite-instances #### 2.0.0 * This new release adds Multi-Site support. It will no longer be possible to use this plugin just in one subsite of a multisite installation! * Adds a warning screen to the config-section when no LDAPextension could be found * Fixes an issue with the max-length of the username #### 1.5.1 * Fixes an issue with escaped backslashes and quotes #### 1.5.0 * Allows parts of the LDAP-URI to be URLEncoded * Drops support for PHP 5.4 #### 1.4.20 * Allows multiple LDAP-servers to be queried (given that they use the same attributes) * Fixes issue with URL-Encoded informations (see https://github.com/heiglandreas/ authLdap/issues/108) #### 1.4.19 * Adds support for TLS #### 1.4.14 * Update to showing password-fields check (thanks to @chaplina) #### 1.4.13 * Removed generation of default email-address (thanks to @henryk) * Fixes password-hashing when caching passwords (thanks to @litinoveweedle) * Removes the possibility to reset a password for LDAP-based users (thanks to @chaplina) * Removes the password-change-Email from 4.3 on (thanks to @litinoveweedle) * Fixes double authentication-attempt (that resulted in failed authentication) ( thanks to @litinoveweedle) #### 1.4.10 * Cleanup by removing deprecated code * Fixes issues with undefined variables * Enables internal option-versioning * Setting users nickname initially to the realname instead of the uid * Fixes display of password-change possibility in users profile-page #### 1.4.9 * Fixed an issue with changing display name on every login * Use proper way of looking up user-roles in setups w/o DB-prefix #### 1.4.8 * Updated version string #### 1.4.7 * Use default user to retrieve group menberships and not logging in user. * return the UID from the LDAP instead of the value given by the user * remove unnecessary checkbox * Adds a testsuite * Fixes PSR2 violations […] #### 1.2.1 * Fixed an issue with group-ids * Moved the code to GitHub (https://github.com/heiglandreas/authLdap) #### 1.1.0 * Changed the login-process. Now users that are not allowed to login due to missing group-memberships are not created within your blog as was the standard until Version 1.0.3 – Thanks to alex@tayts.com * Changed the default mail-address that is created when no mail-address can be retrieved from the LDAP from me@example.com to $username@example.com so that a new user can be created even though the mail address already exists in your blog – Also thanks to alex@tayts.com * Added support for WordPress-Table-prefixes as the capabilities of a user are interlany stored in a field that is named “$tablePrefix_capabilities” – again thanks to alex@tayts.com and also to sim0n of silicium.mine.nu ## Meta * Version **3.1.3** * Last updated **12 сар ago** * Active installations **5,000+** * WordPress version ** 2.5.0 or higher ** * Tested up to **6.8.5** * PHP version ** 7.4 or higher ** * Language * [English (US)](https://wordpress.org/plugins/authldap/) * Tags * [active directory](https://mn.wordpress.org/plugins/tags/active-directory/)[auth](https://mn.wordpress.org/plugins/tags/auth/) [authentication](https://mn.wordpress.org/plugins/tags/authentication/)[ldap](https://mn.wordpress.org/plugins/tags/ldap/) [OpenLDAP](https://mn.wordpress.org/plugins/tags/openldap/) * [Advanced View](https://mn.wordpress.org/plugins/authldap/advanced/) ## Ratings 5 out of 5 stars. * [ 19 5-star reviews ](https://wordpress.org/support/plugin/authldap/reviews/?filter=5) * [ 0 4-star reviews ](https://wordpress.org/support/plugin/authldap/reviews/?filter=4) * [ 0 3-star reviews ](https://wordpress.org/support/plugin/authldap/reviews/?filter=3) * [ 0 2-star reviews ](https://wordpress.org/support/plugin/authldap/reviews/?filter=2) * [ 0 1-star reviews ](https://wordpress.org/support/plugin/authldap/reviews/?filter=1) [Add my review](https://wordpress.org/support/plugin/authldap/reviews/#new-post) [See all reviews](https://wordpress.org/support/plugin/authldap/reviews/) ## Contributors * [ heiglandreas ](https://profiles.wordpress.org/heiglandreas/) ## Support Got something to say? Need help? [View support forum](https://wordpress.org/support/plugin/authldap/)