Hello,
Here is my information: 
We've been using the auth ldap plugin successfully for several years to authorize agents. With the latest upgrade I've been working on trying to enable users to use it too, and I've read everybody's issues with that -- the fact that the database doesn't sync, etc. No suggested fixes worked for me, so I stripped the install down to nothing. I still can't make it work.
I have tried several methods --
- Having the first-time user register through the client portal - creates a password which would seem to get in the way of the LDAP login/
- Having the admin create the user -- there is one window in this process that allows you to specify that they can login using the auth-ldap instance that you've set up, but I can't ever find that again.
- Having an unregistered user try to log in straight from the client portal using LDAP credentials.
I think that the problem we're having is that the agents login using their LDAP user name -- we have a separate ID called the UID that is not the same as the canonical email (my canonical email is elizabeth.altman@domain.tld but my UID is not elizabeth.altman, although it is all part of the LDAP record). Could that be the issue? There is no place in the user table to specify a username for regular users to login via LDAP. We're using AD for our LDAP directory, by the way. The search base is o=csun.
Any help, including which logs I can look at to understand the failure, appreciated.
-Elizabeth
