[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Alias password?

To: MT <mlist@cmcflex.com>
Subject: Re: Alias password?
From: "Kurt D. Zeilenga" <Kurt@OpenLDAP.org>
Date: Thu, 15 Jun 2006 10:11:36 -0700
Cc: openldap-software@OpenLDAP.org
In-reply-to: <D3FC6187-A866-48E9-934A-D1E5402B2B01@cmcflex.com>
References: <D3FC6187-A866-48E9-934A-D1E5402B2B01@cmcflex.com>

At 08:54 AM 6/15/2006, MT wrote:
>I thought maybe an alias would do:

RFC 4511, Section 4.2 (Bind Operation)
     Where the server attempts to locate the named object,
     it SHALL NOT perform alias dereferencing.

>As you can see I'm pretty lost and any help would be  
>greatly appreciated.

I note that if you want to use an email address as the
authentication identity, you could use a SASL authentication
mechanism which uses simple user names for authentication
identities (e.g., PLAIN, DIGEST-MD5), and then use slapd(8)
identity mapping capabilities to associate this with the
appropriate object (and password).

Kurt

References:
- Alias password?
  - From: MT <mlist@cmcflex.com>

Prev by Date: Alias password?
Next by Date: No structuralObjectClass
Index(es):
- Chronological
- Thread