neenunc

LDAP bind gives this error –
Can't contact LDAP server

stripslashes() is already there in my code. I removed it and tried but didn’t work.

As you said, I checked whether SELinux preventing httpd from using the LDAP ports.
https://stackoverflow.com/questions/8291631/ldap-works-with-php-cli-but-not-through-apache/15117996#15117996

In my case, httpd_can_network_connect was set to off.

Upon further checking, I found LDAP bind is failing and move to next authentication and exit the method custom_ldap_authentication.

I am not sure why the LDAP binding is failing – because ldapsearch command seems to be working with the same configuration.

ldapsearch -x -D "uid=neenu,ou=people,dc=example,dc=com" -W -H "ldaps://ldap.example.com:636" -b "ou=people,dc=example,dc=com" -s sub 'uid=neenu'

I tried to print the Auth settings mentioned in the function custom_authenticate_ldap(inside custom_authentication.php after line 538). I got below message:

PHP message: Array
(
    [access_who_can_login] => external_users
    [access_role_receive_pending_emails] => ---
    [access_pending_redirect_to_message] => <p>You're not currently allowed to view this site. Your administrator has been notified, and once he/she has approved your request, you will be able to log in. If you need any other help, please contact your administrator.</p>
    [access_blocked_redirect_to_message] => <p>You're not currently allowed to log into this site. If you think this is a mistake, please contact your administrator.</p>
    [access_should_email_approved_users]

In my authorizer settings; my settings are like this –

Who can log in to sites in this network?	 
All authenticated users (All external service users and all WordPress users)

Any idea why?