[Date Prev][Date Next] [Chronological] [Thread] [Top]

RE: OpenLDAP Proxy to AD of User Objects with full/correct schema

To: Pierangelo Masarati <masarati@aero.polimi.it>
Subject: RE: OpenLDAP Proxy to AD of User Objects with full/correct schema
From: Alex Samad - Yieldbroker <Alex.Samad@yieldbroker.com>
Date: Thu, 22 Nov 2012 22:33:21 +0000
Accept-language: en-AU, en-US
Cc: Mailing Lists <lists@masterofpenguins.com>, "openldap-technical@openldap.org" <openldap-technical@openldap.org>
Content-language: en-US
In-reply-to: <d9b6e4fd853b7d030d983fa39559ffad.squirrel@www.aero.polimi.it>
References: <CAD-3wgoqu9C6Ajwr_HPDmcDxhVrsR07wLxexDD5Fuq3HDRODvg@mail.gmail.com> <A3FB5D9FD28C50429DF7692DC31054E604B6D793@DC1INTADCW8201.yieldbroker.com> <d9b6e4fd853b7d030d983fa39559ffad.squirrel@www.aero.polimi.it>
Thread-index: AQHNyCoKjmDcsr2lwkuh6yGN6RYI3Jf01aeQgADSmACAAMmWgA==
Thread-topic: OpenLDAP Proxy to AD of User Objects with full/correct schema

Pretty sure I tried that
Go back and give it another test.

How does it different between anon and non anon binds to openldap 

So if its an 
anon to openldap ->  I want to bind with the supplied credentials
non anon to openldap -> I want to bind with the supplied credential that are supplied to openldap from the client

Does that make sense ?

Thanks
Alex

> -----Original Message-----
> From: Pierangelo Masarati [mailto:masarati@aero.polimi.it]
> Sent: Friday, 23 November 2012 8:30 AM
> To: Alex Samad - Yieldbroker
> Cc: Mailing Lists; openldap-technical@openldap.org
> Subject: RE: OpenLDAP Proxy to AD of User Objects with full/correct schema
> 
> 
> > I would be interested in this.
> >
> > Where you able to get it to convert anonymous searches on openldap to
> > non anon searches into ad
> >
> > So I wanted to be able to search email addresses from ad from openldap
> > . I created a read only userid for ad. But I could never work  out how
> > to configure openldap to use the given user/password when there was a
> > anon request.
> 
> within the "ldap" database specification:
> 
> idassert-bind   bindmethod=simple
>                 binddn="cn=substitute-identity"
>                 credentials="password"
>                 mode=none
> idassert-authzFrom dn.exact:""
> 
> p.
> 
> --
> Pierangelo Masarati
> Associate Professor
> Dipartimento di Ingegneria Aerospaziale
> Politecnico di Milano

Follow-Ups:
- Re: OpenLDAP Proxy to AD of User Objects with full/correct schema
  - From: Pierangelo Masarati <masarati@aero.polimi.it>

References:
- OpenLDAP Proxy to AD of User Objects with full/correct schema
  - From: Mailing Lists <lists@masterofpenguins.com>
- RE: OpenLDAP Proxy to AD of User Objects with full/correct schema
  - From: Alex Samad - Yieldbroker <Alex.Samad@yieldbroker.com>
- RE: OpenLDAP Proxy to AD of User Objects with full/correct schema
  - From: "Pierangelo Masarati" <masarati@aero.polimi.it>

Prev by Date: RE: OpenLDAP Proxy to AD of User Objects with full/correct schema
Next by Date: Fail to pass the basic functionality testing (test058-syncrepl-asymmetric)
Index(es):
- Chronological
- Thread