[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: OpenLDAP as proxy for another LDAP-Server [Virus checked]

To: <ems@sparkassen-informatik.de>
Subject: Re: OpenLDAP as proxy for another LDAP-Server [Virus checked]
From: "Michael StrÃder" <michael@stroeder.com>
Date: Wed, 14 May 2008 10:29:36 +0200
Cc: openldap-software@openldap.org
In-reply-to: <OF13E46BC1.78F6E613-ONC1257449.002519DE-C1257449.0026C8E9@sparkassen-informatik.de>
References: <OF13E46BC1.78F6E613-ONC1257449.002519DE-C1257449.0026C8E9@sparkassen-informatik.de>

On 9:03:07 am 2008-05-14 ems@sparkassen-informatik.de wrote:
> ems@sparkassen-informatik.de wrote:
> >>
> >> I need as a response of a request an interaction of two
> >> LDAP-Server. From the other LDAP-Server the authentification and
> >> if successfull from
> >> our LDAP-Server the attributes.
> >>
> >> Is there a fair chance to get a solution using the ldap/meta
> >> backend.
>
> michael@stroeder.com wrote:
>
> >  Just a hint without thoroughly thinking about it. Maybe you could
> >  use slapo-rwm for rewriting only the bind requests to another name
> >  space served by back-ldap. Or maybe have a look at
> >  slapo-translucent and combine it with back-ldap.
>
> It's sounds a little bit complicated. I've found some stuff under the
> keyword "single sign on".
> Do you think it's a better way to manage the problem with OpenLDAP
> and Kerberos.

This all really depends on what you want to achieve: Your applications,
security policy, etc.

Ciao, Michael.

References:
- Re: OpenLDAP as proxy for another LDAP-Server [Virus checked]
  - From: ems@Sparkassen-Informatik.de

Prev by Date: Re: OpenLDAP as proxy for another LDAP-Server [Virus checked]
Next by Date: Re: OpenLDAP as proxy for another LDAP-Server [Virus checked]
Index(es):
- Chronological
- Thread