[Date Prev][Date Next] [Chronological] [Thread] [Top]

Controlled LDAP Proxy/Relay

I'v implemented a OpenLDAP Metadirectory that proxying 2 Microsft AD targets.
One target is customers AD, the second our AD for management purposes.
Problem: slapd-meta tries to authenticate the user first by one target and if this user there not exist will be the second target connected.
Means: in both directories Intrusion Detection register a lot of unsuccessfully authentication.
Is it possible to implement the controlled proxy with OpenLDAP ?
E.g., like Radiusproxy based on realm: when username is xxx@domain01.com go to the target1, and when username is xxx@domain99.net go to the target2.
Kind regards