[Date Prev][Date Next]
[Chronological]
[Thread]
[Top]
RE: Question about OpenLDAP and rwm overlay
- To: Michael Ströder <michael@stroeder.com>
- Subject: RE: Question about OpenLDAP and rwm overlay
- From: "Vandenburgh, Steve Y" <Steve.Vandenburgh@centurylink.com>
- Date: Mon, 13 Jan 2020 22:20:07 +0000
- Accept-language: en-US
- Arc-authentication-results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=centurylink.com; dmarc=pass action=none header.from=centurylink.com; dkim=pass header.d=centurylink.com; arc=none
- Arc-message-signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=13RQRuQDLGiamAxP4j2PAUUWw5K2bJwvojWhh+CTN8g=; b=S1G84q/GW5is1BGRzMFS6LgJMeKfxi/mX+HevGsWYeKvmVEu7/re2e9IQNPbY0417LO7/AOyfuWIpuAJiRHdA+u9RiyavF99vuTEgfXWl7Cwc6t8PrMsKRr9zJuBUB2fskfaCUH4/qNCoFZxYUKS+epTf2nN2QkzUk/F/ambqRHsrE9O7w84m1OJ66c2t/ajPLoOYogmCIXliY29rk4bjeIhbxjfrIEDPuqjQlX7WCM3TwkyS7GslQMdQrRVnhFsVtEEDbTbdclkynxXz+MuWsWOC32jqKwqyNAGYibyewzUxqSUrOJPr1OjmkDUqrBjUOgbLkQFLnnxCercTxS1JA==
- Arc-seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=ayWJ4cWTp0wEt+bwIVB/IGDbjE9uS6uX5fC1+bNq+X9GVim4K/wmf1OmY5y4dbOK+e2rSoeDCXXqCnC7Wmwnzk6Q8Bs5rK9cxTV6mDey+Sh3Fxa18b9nCEwkZZYnJvQmLoPr1QVIKkAnUXCRLP7dSzDh00OKdVajH/6NxkCt4izU9HWuMjDoDmAIqfx1WC+ZxJlvf3w9q5o/6tiRjGj1Ow7iVuxqAtgXiP0QNM9YwD7AVBvAz6TjrMRYNobY3lVz8lMgmz5YSB8w2S3B6etcw4De/jGP8B6tfefYhexCaRb4JyQLX6nmzM7ogkaKWFm7AROC3mFzRZoWE3pUBliXvw==
- Authentication-results: spf=none (sender IP is ) smtp.mailfrom=Steve.Vandenburgh@centurylink.com;
- Cc: "openldap-technical@openldap.org" <openldap-technical@openldap.org>
- Content-language: en-US
- Dkim-filter: OpenDKIM Filter v2.11.0 lxdnp29m.centurylink.com 00DMKFcG042590
- Dkim-signature: v=1; a=rsa-sha256; c=relaxed/simple; d=centurylink.com; s=default; t=1578954016; bh=VYYdApm/GhkuzwnMbYRs/ukHWBkx5LU1B/h7oHuuY0w=; h=From:To:CC:Subject:Date:References:In-Reply-To:From; b=cZdRG9q/l4jXC9AoUad7Um+iK19Ynh53NQYNZlieujkjrKkB4EBJ40eiWHG3baePh UIXgzEWRAh19RWfEMXttIBSjfdYsyFOUgrRFZXrSrK8k+ET5GcBJtEa8OzUrDUHTgh YgmX1FlExhNEq6oDr8xR1pMOLlOjIJIrSM9a7gQY=
- In-reply-to: <3bc4dd00-b5ce-57aa-46af-83df25f37c77@stroeder.com>
- References: <BN7PR02MB3938806E548A066A7C8E24DAF4640@BN7PR02MB3938.namprd02.prod.outlook.com> <20191026202739.4a2cfed3@pink.fritz.box> <EC89FCC762466F6DF7F62D2D@[192.168.1.144]> <BN7PR02MB3938DF22E38CC952A12A777CF4660@BN7PR02MB3938.namprd02.prod.outlook.com> <87zhhkr9qn.fsf@pink.fritz.box> <BN7PR02MB39383AEECCFC4CBD002A8140F4610@BN7PR02MB3938.namprd02.prod.outlook.com> <3bc4dd00-b5ce-57aa-46af-83df25f37c77@stroeder.com>
- Thread-index: AdWLlE3Oy/YAo7/+RAi9SwUqCXrWHwAlr4yAAAMfAIAAYhIDBQATBh1QACZMA4AO7lasYA==
- Thread-topic: Question about OpenLDAP and rwm overlay
Michael,
I know this thread is old, but wanted to follow up by asking: would it be possible to delay the BIND DN syntax check until after rwm manipulations are completed? Unfortunately, there is a lot of client software that is dependent on this quirk but it would be very beneficial to be able to use OpenLDAP as a proxy to AD. I suspect that delaying the syntax check until after rwm manipulations would allow UPN-based authentication to work.
Thanks,
Steve Vandenburgh
-----Original Message-----
From: Michael Ströder <michael@stroeder.com>
Sent: Tuesday, October 29, 2019 4:06 PM
To: Vandenburgh, Steve Y <Steve.Vandenburgh@centurylink.com>
Cc: openldap-technical@openldap.org
Subject: Re: Question about OpenLDAP and rwm overlay
On 10/29/19 4:55 AM, Vandenburgh, Steve Y wrote:
> I'm trying to perform a simple bind operation with a UPN and password.
This AD-specific quirk is not possible with OpenLDAP.
Ciao, Michael.
This communication is the property of CenturyLink and may contain confidential or privileged information. Unauthorized use of this communication is strictly prohibited and may be unlawful. If you have received this communication in error, please immediately notify the sender by reply e-mail and destroy all copies of the communication and any attachments.