[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Authentication Problem Regarding aliasedObjectName

Christian Felsing wrote:

my installation has two OUs, one contains real inetOrgPerson objects,
other one contains aliases to the first OU. First OU contains DNs which
are not acceptable to a specific application (pls. don't ask me why) so
2nd OU was introduced with DNs which are acceptable to that application.
Unfortunally, authentication to an alias seems to be not possible,
because that application is not able to do dereferencing.

Aliases can only be dereferenced by Search operations. They're a pretty poor mechanism for just about anything, really. You should look into using back-relay for this purpose instead.

  -- Howard Chu
  CTO, Symas Corp.           http://www.symas.com
  Director, Highland Sun     http://highlandsun.com/hyc/
  Chief Architect, OpenLDAP  http://www.openldap.org/project/