[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: rewrite a login into a dn in simple bind


On Wed, 08 Oct 2003 11:56:29 +0200
Francois Beretti <francois.beretti@enatel.com> wrote:

> For technical reasons, I would like to bind to my openldap server
> using a login, not a dn, and I can't use other method than simple bind
> (with or without ssl/tls)
> The login would identify the user by being an attribute of its entry, 
> like uid
> But openldap wait for a dn when one use simple bind.
> So I would like to map the login provided by the client to the dn of
> the entry which has this value in its "uid" attribute

AFAIR, the common method to do this is to do an anonymous bind, and use
this to search for (uid=whateveryouneed) to get the dn. Then, use this
dn to bind with the password.


|  ScanPlus GmbH NOC Ulm                       Tel +49 731 92013 106  |
|  Koenigstr. 78 * D 89077 Ulm                 Fax +49 731 92013 290  |
|  http://www.scan-plus.de/                 Amtsgericht Ulm HRB 3220  |
|  mailto:info@scan-plus.de           Geschaeftsf.: Juergen Hoermann  |
Diese  E-Mail  koennte  vertrauliche  und/oder  rechtlich   geschuetzte
Informationen enthalten. Wenn Sie nicht der richtige Adressat sind oder
diese E-Mail irrtuemlich erhalten haben, informieren Sie  bitte  sofort
den Absender und vernichten Sie diese  Mail.  Das  unerlaubte  Kopieren
sowie die unbefugte Weitergabe dieser Mail ist nicht gestattet. 
This e-mail may contain  confidential  and/or  privileged  information.
If you are not the intended recipient (or  have  received  this  e-mail
in error) please notify the sender immediately and destroy this e-mail.
Any unauthorised copying, disclosure or distribution  of  the  material
in this e-mail is strictly forbidden.