Warning: You are browsing the documentation for Symfony 2.8, which is no longer maintained.

Read the updated version of this page for Symfony 5.3 (the current stable version).

The Ldap Component

The Ldap Component

The Ldap component provides a means to connect to an LDAP server (OpenLDAP or Active Directory).

New in version 2.8: The Ldap component was introduced in Symfony 2.8.


$ composer require symfony/ldap

Alternatively, you can clone the https://github.com/symfony/ldap repository.


If you install this component outside of a Symfony application, you must require the vendor/autoload.php file in your code to enable the class autoloading mechanism provided by Composer. Read this article for more details.


The Symfony\Component\Ldap\LdapClient class provides methods to authenticate and query against an LDAP server.

The Symfony\Component\Ldap\LdapClient class can be configured using the following options:

IP or hostname of the LDAP server
Port used to access the LDAP server
The version of the LDAP protocol to use
Whether or not to secure the connection using SSL
Whether or not to secure the connection using StartTLS
Specifies whether to automatically follow referrals returned by the LDAP server

For example, to connect to a start-TLS secured LDAP server:

use Symfony\Component\Ldap\LdapClient;

$ldap = new LdapClient('my-server', 389, 3, false, true);

The bind() method authenticates a previously configured connection using both the distinguished name (DN) and the password of a user:

use Symfony\Component\Ldap\LdapClient;
// ...

$ldap->bind($dn, $password);

Once bound (or if you enabled anonymous authentication on your LDAP server), you may query the LDAP server using the find() method:

use Symfony\Component\Ldap\LdapClient;
// ...

$ldap->find('dc=symfony,dc=com', '(&(objectclass=person)(ou=Maintainers))');

This work, including the code samples, is licensed under a Creative Commons BY-SA 3.0 license.