Hi, The password you enter in the dialog of the user tool or midtier will get passed to AREA and will be used to verify with your domain. The "switch" to do this is if you have a blank password in the user record.
So thats what "Cross Reference Blank Password" means on the AR Server. If the user has a blank password in the user form, cross reference that with the active directory Kind regards Danny SSO for ARS http://www.javasystemsolutions.com/jss/ssoplugin From: Action Request System discussion list(ARSList) [mailto:arsl...@arslist.org] On Behalf Of Renee Santos Sent: 21 May 2010 17:02 To: arslist@ARSLIST.ORG Subject: Re: Alias login in Remedy 7.5. patch 3 ** Danny, Thank you for replying so quick! If I use filed 117 to authenticate from ldap, then what about the password being sent to ldap server? In documentation it states to remove the entry in the password field.. From: Action Request System discussion list(ARSList) [mailto:arsl...@arslist.org] On Behalf Of Danny Kellett Sent: Friday, May 21, 2010 10:34 AM To: arslist@ARSLIST.ORG Subject: Re: Alias login in Remedy 7.5. patch 3 ** --> Hi, This applies to having the login name different to the name you have in your active directory. Example: My AR System login name might be Danny. My domain account is dkellett. So if you setup your AREA LDAP to use something like samaccountname=$\USER$ Then when you run the user tool and enter Danny, the AR system looks at your user record and if there is anything in field 117, it then passes that onto the AREA LDAP for authentication. So, make sure you have AREA LDAP setup correctly first. You can use some LDAP/AD query tool, we use this one, http://www.javasystemsolutions.com/downloads/ldp.exe to see what your repository. To track what the AR System is sending to LDAP, turn on arplugin logging to ALL and you can see the entries. Regards Danny SSO for ARS http://www.javasystemsolutions.com/jss/ssoplugin From: Action Request System discussion list(ARSList) [mailto:arsl...@arslist.org] On Behalf Of Renee Santos Sent: 21 May 2010 16:14 To: arslist@ARSLIST.ORG Subject: Alias login in Remedy 7.5. patch 3 ** I read in BMC's documentation that you can use a 'Alias' login (field id 117) in the USER form. This field will only be used to authenticate login and then use 'Login Name' (field id 101) for process. Does anyone have this working? We are setting up to authenticate through LDAP and I am using the 'Alias' to login. The Login Name is never being used. I've even tried to assign a temp field to 'Login Name' field, but this comes back empty. Any suggestions would be greatly appreciated! Thank You Renee Santos _attend WWRUG10 www.wwrug.com ARSlist: "Where the Answers Are"_ _attend WWRUG10 www.wwrug.com ARSlist: "Where the Answers Are"_ _attend WWRUG10 www.wwrug.com ARSlist: "Where the Answers Are"_ _______________________________________________________________________________ UNSUBSCRIBE or access ARSlist Archives at www.arslist.org attend wwrug10 www.wwrug.com ARSlist: "Where the Answers Are"
