[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: multiple password attributes...

To: Paul Reilly <pareilly@tcd.ie>
Subject: Re: multiple password attributes...
From: Tony Earnshaw <tonni@billy.demon.nl>
Date: 10 Dec 2002 22:35:40 +0100
Cc: openldap-software@OpenLDAP.org
In-reply-to: <Pine.OSF.4.43L0.0212101659390.115334-100000@web2.tcd.ie>
Organization:
References: <Pine.OSF.4.43L0.0212101659390.115334-100000@web2.tcd.ie>

tir, 2002-12-10 kl. 18:05 skrev Paul Reilly:

> Is anyone using a LDAP in an authentication environment with
> multiple service based password fields?
> 
> I want a NIS type schema for authenticating access to services. I could
> reproduce the same tree per service, each with duplicated user details
> including the password field, but that seems wasteful. I'd like to have
> say 3 password attributes, each for a different service.

Strange, most people want Single Sign Ons these days. What you want is
what they already have and want to get away from.

I'm looking forward to reading the solution(s) to your problem.

> How does OpenLDAP know which attribute to check the bind credentials
> against?

My 2 cents' worth: different logins (CNs, DCs etc in the DN)? How would
=you= give a unique user 3 different passwords in NIS or /etc/shadow?
Then how do you suppose you could give a unique DN 3 different
passwords?

Best,

Tony

-- 

Tony Earnshaw

When all's said and done ...
there's nothing left to say or do.

e-post:		tonni@billy.demon.nl
www:		http://www.billy.demon.nl

Follow-Ups:
- Re: multiple password attributes...
  - From: Tony Earnshaw <tonni@billy.demon.nl>
- Re: multiple password attributes...
  - From: Paul Reilly <pareilly@tcd.ie>

References:
- multiple password attributes...
  - From: Paul Reilly <pareilly@tcd.ie>

Prev by Date: Intermittent problems in connection to slapd
Next by Date: Re: certificateExactMatch, why it doesn't work and how to fix it.
Index(es):
- Chronological
- Thread