[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: OpenLDAP as proxy for another LDAP-Server [Virus checked]

On 9:03:07 am 2008-05-14 ems@sparkassen-informatik.de wrote:
> ems@sparkassen-informatik.de wrote:
> >>
> >> I need as a response of a request an interaction of two
> >> LDAP-Server. From the other LDAP-Server the authentification and
> >> if successfull from
> >> our LDAP-Server the attributes.
> >>
> >> Is there a fair chance to get a solution using the ldap/meta
> >> backend.
> michael@stroeder.com wrote:
> >  Just a hint without thoroughly thinking about it. Maybe you could
> >  use slapo-rwm for rewriting only the bind requests to another name
> >  space served by back-ldap. Or maybe have a look at
> >  slapo-translucent and combine it with back-ldap.
> It's sounds a little bit complicated. I've found some stuff under the
> keyword "single sign on".
> Do you think it's a better way to manage the problem with OpenLDAP
> and Kerberos.

This all really depends on what you want to achieve: Your applications,
security policy, etc.

Ciao, Michael.