From security@
Mediawiki v1.31.5 with extensions LDAPProvider v1.0.1 and LDAPAuthentication2 v1.0.0 With $LDAPAuthentication2AllowLocalLogin = true; and choosing the local database as domain in the login screen, I can log in with a username from LDAP or the local database with nearly any random Password. This problem is reported by another user here : https://www.mediawiki.org/wiki/Extension_talk:LDAPAuthentication2 Best, Henrik Schmidt