[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: some questions.

Am Mittwoch, 14. Februar 2001 03:39 schrieb Adam Shand:
> okay so i finally found some references on the mailing list that state
> that referals are always followed anonymously.  so how is this supposed to
> work?
> i'm using solaris 8's nss/pam ldap, if i want the user to be able change
> their password it means that the only ldap server i can specify is the
> master one for everything.
> how to i make queries go to the slave and changes go to the master if you
> can't do authenticated referrals?
> how are people solving this problem?


in C you can define a rebind function that can be registered as callback for 
reauthentication when chasing referrals with the following call:

ldap_set_rebind_proc(ld,(LDAP_REBIND_PROC *) &rebindproc);

for simple authentication the rebind function may look as follows (of course 
ldap_binddn and ldap_bindpassw must be set somewhere appropriate and the 
whole procedure might include some security problem since the password is 
stored somewhere...

int rebindproc( LDAP *ld, LDAP_CONST char *url, int request, ber_int_t msgid)
	return ldap_simple_bind_s( ld, ldap_binddn, ldap_bindpassw);

Stephan Siano

Stephan Siano                           Mail:  Stephan.Siano@suse.de
SuSE Linux Solutions AG                 Phone: 06196 50951 31
Mergenthalerallee 45-47			Fax:   06196 409607
D-65760 Eschborn