[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: rewrite a login into a dn in simple bind

To: openldap-software@OpenLDAP.org
Subject: Re: rewrite a login into a dn in simple bind
From: Francois Beretti <francois.beretti@enatel.com>
Date: Wed, 08 Oct 2003 15:42:17 +0200
In-reply-to: <20031008152554.3112318d.schaber@scan-plus.de>
References: <3F83DF4D.1070007@enatel.com> <20031008152554.3112318d.schaber@scan-plus.de>
User-agent: Mozilla/5.0 (Windows; U; Windows NT 5.0; en-US; rv:1.5b) Gecko/20030827

Hello Markus

Markus Schaber wrote:

So I would like to map the login provided by the client to the dn of
the entry which has this value in its "uid" attribute


AFAIR, the common method to do this is to do an anonymous bind, and use
this to search for (uid=whateveryouneed) to get the dn. Then, use this
dn to bind with the password.

Ok, but if the access control rules of the server don't allow any anonymous bind, or don't give search access on uid attribute, or read access on users' entries, I can't use this method, because I think some LDAP administrators won't let me set such access rules on their openldap server for my application to work on their network.

>
> Thanks,
> Markus
>
>

thank you,

François

Follow-Ups:
- Re: rewrite a login into a dn in simple bind
  - From: Craig Dunigan <cdunigan@doit.wisc.edu>
- Re: rewrite a login into a dn in simple bind
  - From: Markus Schaber <schaber@scan-plus.de>

References:
- rewrite a login into a dn in simple bind
  - From: Francois Beretti <francois.beretti@enatel.com>
- Re: rewrite a login into a dn in simple bind
  - From: Markus Schaber <schaber@scan-plus.de>

Prev by Date: Getting LDAP: Error Code 11 - Administrative Limit Exceeded with JDBC-LDAP-Bridge
Next by Date: Re: filter="(?=undefined)"
Index(es):
- Chronological
- Thread