[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: ldapbind command

To: "Dave Horsfall" <daveh@ci.com.au>
Subject: Re: ldapbind command
From: "Pierangelo Masarati" <ando@sys-net.it>
Date: Mon, 21 Mar 2005 08:57:55 +0100 (CET)
Cc: "OpenLDAP Software List" <openldap-software@OpenLDAP.org>
Importance: Normal
In-reply-to: <20050321160504.F42623@mippet.ci.com.au>
References: <20050321160504.F42623@mippet.ci.com.au>
User-agent: SquirrelMail/1.4.3a-1

"ldapwhoami -n" should do exactly what you're looking for, and can do a
bit more (whoAmI exop).

p.


> We administer our directory with amongst other things a simple web
> interface that's specific to our needs.  Authenticating an admin user (by
> the web server) is done by binding with the supplied user/password and
> reading their password attribute, relying on ACLs to allow authenticated
> admin users to read others' (encrypted) passwords.
>
> Yeah, I think it's ugly too, but I didn't write it.  Anyway...  I see that
> other LDAP implementations (Oracle Internet Directory, for example)
> support an "ldapbind" command that simply takes the credentials and
> attempts to bind with them.
>
> Has anyone written such a thing for OpenLDAP and would be willing to share
> it?  Would anyone be interested in such a thing if I wrote it (seems to be
> a simple change to ldapsearch, by invoking it as ldapbind)?  Or is there a
> better way to do it?



-- 
Pierangelo Masarati
mailto:pierangelo.masarati@sys-net.it


    SysNet - via Dossi,8 27100 Pavia Tel: +390382573859 Fax: +390382476497

Follow-Ups:
- Re: ldapbind command
  - From: Dave Horsfall <daveh@ci.com.au>

References:
- ldapbind command
  - From: Dave Horsfall <daveh@ci.com.au>

Prev by Date: ldapbind command
Next by Date: Redo slurpd actions [auf Viren überprüft]
Index(es):
- Chronological
- Thread