From f78d61de3d58c9fc256d7367d3ddbc1c7db54a53 Mon Sep 17 00:00:00 2001
From: Ralf Becker <ralfbecker@outdoor-training.de>
Date: Thu, 3 Sep 2015 09:02:59 +0000
Subject: [PATCH] give an error message "%1 does NOT have a password
 (userPassword attribute) or we are not allowed to read it!", if LDAP does not
 allow us to read passwords

---
 setup/inc/class.setup_cmd_ldap.inc.php | 5 +++++
 1 file changed, 5 insertions(+)

diff --git a/setup/inc/class.setup_cmd_ldap.inc.php b/setup/inc/class.setup_cmd_ldap.inc.php
index 7a3a8147f6..e3b7001fdd 100644
--- a/setup/inc/class.setup_cmd_ldap.inc.php
+++ b/setup/inc/class.setup_cmd_ldap.inc.php
@@ -480,6 +480,11 @@ class setup_cmd_ldap extends setup_cmd
 					$msg[] = lang('%1 does NOT exist in %2.',$what,$target);
 					$errors++;
 				}
+				elseif(empty($account['account_pwd']))
+				{
+					$msg[] = lang('%1 does NOT have a password (userPassword attribute) or we are not allowed to read it!',$what);
+					$errors++;
+				}
 				else
 				{
 					$sql_account['account_passwd'] = self::hash_ldap2sql($account['account_pwd']);