Hi Lisa, Please tell me if the options that I have enabled are appropriate and if its set the same way in your server. Then probably I will have to look at my LDAP password.
Thanks Sivarama On Tue, Jul 29, 2008 at 12:44 PM, Lisa Westerfield < [EMAIL PROTECTED]> wrote: > ** > > When it's blank it will still show "xxxxx". That one threw me off the > first time I saw it too. > > > > > > *From:* Action Request System discussion list(ARSList) [mailto: > [EMAIL PROTECTED] *On Behalf Of *sivarama velicheti > *Sent:* Tuesday, July 29, 2008 2:18 PM > *To:* arslist@ARSLIST.ORG > > *Subject:* Re: Authentication from LDAP > > > > ** > > Hi Joe, > > Hi Joe let me confirm something from you. When you say that a > user who has a blank password I assume that the users password is not stored > in AR Server people form or user form. Only his login name is. When he > enters his user name and password to login to the user tool or midtier the > password he enters gets authenticated with the LDAP and he gets access. If > that is the case when I am importing data to the people form in the login > tab I can see "xxxxx" in the password field which beats be because I am not > importing any password and hence it should show blank instead of "xxxxx". Do > I need to change any settings in password management form?? > > Thanks > Sivarama > > On Tue, Jul 29, 2008 at 12:03 PM, Joe DeSouza <[EMAIL PROTECTED]> > wrote: > > ** > > Sivarama, > > > > I think you have a slight shroud of your understanding of how the LDAP > integration works. > > > > No you do not need to import any passwords from LDAP to the ARS. The > password is not communicated by the LDAP server to the AR Server, rather the > response after validation is.. This means that when a user that has a blank > password logs into an AR Server that is setup for LDAP authentication, the > request for authentication is sent from the ARS to the LDAP server, and if > the LDAP server validates the credentials to be valid, the user gets > authenticated to Remedy. > > > > IF the password for the user is not blank in Remedy, then there is no > request for authentication sent to the LDAP server, and the authentication > happens locally.. > > > > Hope this helps.. > > > > Joe > > > > > > ----- Original Message ---- > From: sivarama velicheti <[EMAIL PROTECTED]> > To: arslist@ARSLIST.ORG > Sent: Tuesday, July 29, 2008 2:50:04 PM > Subject: Re: Authentication from LDAP > > ** > > Hi Lisa, > > In the external authentication TAB are both the options i) > authenticate - unregistered users and ii) Cross refernce blank password > selected? I have external authentication plugin server program number as : > 390695. One more thing in the configuration TAB what are the check boxes > selected. I have enabled just i) allow unqualified searches and ii) enable > multiple assign groups. > > Thanks > Sivarama > > On Tue, Jul 29, 2008 at 11:11 AM, Lisa Westerfield < > [EMAIL PROTECTED]> wrote: > > ** > > In our current implementation we are also multi-tenant, and we do not store > passwords in ARS. We are authenticating externally, and our authentication > chaining mode is ARS-Area. > > > > Hope that helps. > > > > *From:* Action Request System discussion list(ARSList) [mailto: > [EMAIL PROTECTED] *On Behalf Of *sivarama velicheti > *Sent:* Tuesday, July 29, 2008 12:02 PM > *To:* arslist@ARSLIST.ORG > *Subject:* Authentication from LDAP > > > > ** > > > Hi, > > I have a question regarding LDAP pertaining to AR Server 7.1. I > have read in the guides somewhere that unless both the user name and > password are stored in the local AR Server, the users are not considered > registered users. In Multi-tenancy guest users are not allowed (and we have > multi-tenancy turned on). I want to know what are my options. Do I have to > import the password as well. I don't think its doable because LDAP would be > encrypting them and even if I do import them AR Server needs to know how to > decrypt them. Is my analogy of the situation right? if so what can I do. If > not please correct me. > > -- > > Sivarama > > __Platinum Sponsor: www.rmsportal.com ARSlist: "Where the Answers Are" > html___ > > *Error! Filename not specified.* <http://www.bmc.com/userworld/> > > TuringSMI is a Platinum Sponsor of both BMC UserWorld Events > > *Email Disclaimer* > This email has been sent from the TuringSMI Group > > This message is subject to and does not create or vary any contractual > relationship between TuringSMI, SMI Technologies, SMI Telco, its > subsidiaries or affiliates and you. Internet communications are not secure > and therefore the TuringSMI Group does not accept any legal responsibility > for the contents of this message. Any views or opinions expressed are those > of the author. This message is intended for the addressee(s) only and its > contents and any attached files are strictly confidential. If you have > received it in error, please contact the sender on the number above. > > > > __Platinum Sponsor: www.rmsportal.com ARSlist: "Where the Answers Are" > html___ > > > > __Platinum Sponsor: www.rmsportal.com ARSlist: "Where the Answers Are" > html___ > __Platinum Sponsor: www.rmsportal.com ARSlist: "Where the Answers Are" > html___ > _______________________________________________________________________________ UNSUBSCRIBE or access ARSlist Archives at www.arslist.org Platinum Sponsor: www.rmsportal.com ARSlist: "Where the Answers Are"