[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: ntlm authentication for LDAP



Dave Snoopy wrote:

Anyone know of NTLM authentication plugins for
OpenLDAP servers?

1677 [root:billy.demon.nl] /var/named # ldapsearch -x -s base -b "" supportedsaslmechanisms <
# extended LDIF
#
# LDAPv3
# base <> with scope base
# filter: (objectclass=*)
# requesting: supportedsaslmechanisms
#


#
dn:
supportedSASLMechanisms: LOGIN
supportedSASLMechanisms: NTLM
supportedSASLMechanisms: GSSAPI
supportedSASLMechanisms: PLAIN
supportedSASLMechanisms: KERBEROS_V4
supportedSASLMechanisms: OTP
supportedSASLMechanisms: DIGEST-MD5
supportedSASLMechanisms: CRAM-MD5

# search result
search: 2
result: 0 Success

# numResponses: 2
# numEntries: 1

'ls -l /usr/local/lib/sasl2/libntlm*'

-rwxr-xr-x    1 root     root        24967 jun 21 13:11 libntlm.so
-rwxr-xr-x    1 root     root        24967 jun 21 13:11 libntlm.so.2
-rwxr-xr-x    1 root     root        24967 jun 21 13:11 libntlm.so.2.0.13

http://pgienger.de/postfix/

This is *only* for Openldap linked against Cyrus SASL 2 .1.13. How you'd implement the NTLM authorisation is left to your (and others') ingenuity. Personally I use Pascal Gienger's patched libs for something completely different ;)

--Tonni

--
Tony Earnshaw

Millom kaksar eg litet kann trivast, millom jamningar helst er eg nøgd

http://www.billy.demon.nl
Mail: tonni@billy.demon.nl