[Date Prev][Date Next]
RE: OpenLDAP 2.4 authentication methods
But if I go direct to AD LDAP with UPN it works fine, and I am not sure where the authentication is actually performed in Proxy mode, weather it is authenticated on the openldap side or if the credentials are passed straight through without any processing in openldap.
From: Michael Ströder [mailto:firstname.lastname@example.org]
Sent: Friday, December 03, 2010 12:14 PM
To: Josh Spranger
Subject: Re: OpenLDAP 2.4 authentication methods
Josh Spranger wrote:
> I have OpenLDAP version 2.4 installed on an OpenSUSE box. I am using it
> as an LDAP Proxy to Windows AD domain. It works perfectly using standard
> LDAP logon credentials (cn=user,DC=domain,DC=com). But I have some
> applications that use email@example.com <mailto:firstname.lastname@example.org> logon
> credentials. Is there a way to configure OpenLDAP to authenticate in
> this way? Slapd config file available on request.
Simple LDAP Bind with userPrincipalName instead of a Bind-DN is a AD-specific
thing. You have to fix your client apps.