[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: proxying authentication

To: openldap-software@openldap.org
Subject: Re: proxying authentication
From: "Gavin Henry" <ghenry@suretecsystems.com>
Date: Tue, 19 Dec 2006 14:40:07 -0000 (UTC)
Importance: Normal
In-reply-to: <7f61bc8f0612190615t3e943070i41cb4aa7116de4cd@mail.gmail.com>
References: <7f61bc8f0612190615t3e943070i41cb4aa7116de4cd@mail.gmail.com>
User-agent: SquirrelMail/1.4.9a-1

<quote who="sishkebab">
> Hi everyone,
>
> consider the following setup:
>
> * A central accounts OpenLDAP directory, where user credentials are
> stored,
> among others.
>
> * An LDAP enabled service using a separate OpenLDAP directory containing
> service related attributes for a subject of the user objects contained in
> the central directory.
>
> Is it possible to configure my servers so that users connecting to the
> service directory can authenticate using the credentials stored in the
> central directory, while the proccess stays transparent for the end user?
>
> I know that this may be achieved by replicating user credentials to the
> service directory, but it would be prefered if it was done without
> replication.
>
> So, is there any way doing it, either using some overlay or some means of
> proxy authentication?
>

Of course.

See:

http://www.openldap.org/doc/admin23/referrals.html

-- 
Kind Regards,

Gavin Henry.
Managing Director.

T +44 (0) 1224 279484
M +44 (0) 7930 323266
F +44 (0) 1224 824887
E ghenry@suretecsystems.com

Open Source. Open Solutions(tm).

http://www.suretecsystems.com/

References:
- proxying authentication
  - From: sishkebab <sishkebab@gmail.com>

Prev by Date: proxying authentication
Next by Date: Re: proxying authentication
Index(es):
- Chronological
- Thread