[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: rewrite a login into a dn in simple bind



On Wed, 8 Oct 2003, Markus Schaber wrote:

> Hello,
>
> On Wed, 08 Oct 2003 11:56:29 +0200
> Francois Beretti <francois.beretti@enatel.com> wrote:
>
> > For technical reasons, I would like to bind to my openldap server
> > using a login, not a dn, and I can't use other method than simple bind
> > (with or without ssl/tls)
> >
> > The login would identify the user by being an attribute of its entry,
> > like uid
> >
> > But openldap wait for a dn when one use simple bind.
> >
> > So I would like to map the login provided by the client to the dn of
> > the entry which has this value in its "uid" attribute
>
> AFAIR, the common method to do this is to do an anonymous bind, and use
> this to search for (uid=whateveryouneed) to get the dn. Then, use this
> dn to bind with the password.
>

Use sasl bind (the ldap server will map login id to dn).

-- 
Igor