[Date Prev][Date Next]
[Chronological]
[Thread]
[Top]
AW: pass-through authentication
- To: "openldap-technical@openldap.org" <openldap-technical@openldap.org>
- Subject: AW: pass-through authentication
- From: "Hering, Uwe" <uwe.hering@cgi.com>
- Date: Mon, 21 Dec 2015 18:04:39 +0000
- Accept-language: de-DE, en-US
- Authentication-results: spf=none (sender IP is 78.41.242.18) smtp.mailfrom=cgi.com; openldap.org; dkim=none (message not signed) header.d=none;openldap.org; dmarc=none action=none header.from=cgi.com;
- Content-language: de-DE
- In-reply-to: <CAGraDoGD6=vJ-6JMK1OoWFLC92EFTa_QPMwJGTZ0FSM2vM7-ww@mail.gmail.com>
- References: <CAGraDoGD6=vJ-6JMK1OoWFLC92EFTa_QPMwJGTZ0FSM2vM7-ww@mail.gmail.com>
- Spamdiagnosticmetadata: NSPM
- Spamdiagnosticoutput: 1:23
- Thread-index: AQHROd5QLrzul3vjF0uelgdvA2Tw2J7Vv2bg
- Thread-topic: pass-through authentication
Hello Tim,
we have set up such a setup where one can authenticate against OpenLDAP which redirects the request via saslauthd/kerberos to an AD server. Within the AD a service account with corresponding keytab will be necessary.
If you are interested I can try to get the pieces of information together again.
Regards,
Uwe
-----Ursprüngliche Nachricht-----
Von: openldap-technical [mailto:openldap-technical-bounces@openldap.org] Im Auftrag von Timothy Keith
Gesendet: Freitag, 18. Dezember 2015 01:33
An: openldap-technical@openldap.org
Betreff: pass-through authentication
We are attempting to set up an LDAP server which will answer queries from an application. The database will contain metadata on a set of users in the application. The application will also query the server to authenticate the user’s password, however, this server will not house the password. That resides on another server, which our server
will query. We do not have administrative rights to the other
server.
The difficulty we are having now is setting up the pass-through authentication for the passwords. Any pointers in how to proceed with this would be greatly appreciated.
Regards,
Tim