[Date Prev][Date Next] [Chronological] [Thread] [Top]

RE: LDAP/Kerberos user management

To: "John Green" <green@blueheronbio.com>, "Openldap-Software $E-mail$" <openldap-software@OpenLDAP.org>
Subject: RE: LDAP/Kerberos user management
From: "Matthew Hardin" <mhardin@symas.com>
Date: Thu, 22 Aug 2002 21:23:05 -0700
Importance: Normal
In-reply-to: <000601c249f6$5cf667f0$0a00000a@blueheronbio.com>

We did something like that, but we cheated a little bit by using a heimdal
KDC configured to use an LDAP key store instead of in a private database.
The build is a bit tricky because of some circular dependencies that can
develop, but it's doable. IIRC, the schema files needed to extend the user
object are readily available, too.


Matthew Hardin
Chief Technology Officer
Symas Corporation		Premier Open Source Development and Support



-----Original Message-----
From: owner-openldap-software@OpenLDAP.org
[mailto:owner-openldap-software@OpenLDAP.org]On Behalf Of John Green
Sent: Thursday, August 22, 2002 9:10 AM
To: Openldap-Software (E-mail)
Subject: LDAP/Kerberos user management

Hi, I am trying to find a method for a principal automatically being created
in a Kerberos database while at the same time adding a corresponding entry
to an LDAP database.  Has anyone heard of or is anyone using something like
this?  I have found some utilities for sale on the web (some might even
work), just looking for alternatives.  I am trying to automate the creation
of username/password/ldap_entry/Kerberos_principal/customer_web_site, which
the customer will be able to accomplish without IT intervention from a
common web site.

Thanks for any help or advice  --  John

References:
- LDAP/Kerberos user management
  - From: "John Green" <green@blueheronbio.com>

Prev by Date: RE: How can I resolve 'javaObject' Object class violation error? Plea se help
Next by Date: Re: what is STRUCTURAL,AUXILIARY, ABSTRACT,top?
Index(es):
- Chronological
- Thread