Heroux, Bernard R a écrit :
Hi,
Has anyone had issues with NDS and LDAP Authentication for E-Directory?
We have 6.5 and it appears that the only way we can log in is by
providing the fully qualified dn name ie (cn=vbrand,dc=xerox, c=us).
This seems awefully cumbersome for a user to need to key in this info.
>
> Isn't there a way they can just enter vbrand and password?
>
> If so, how did people deal with this for NDS? Did you use the RootDSE
> under the hood, hiding details from the user. And if so, how do you
> handle different domain regions?
With Novell you can use SASL/NMAS mechanism to authenticate using a
login and a password (and probably a domain). But I think this mechanism
is only available with the Novell LDAP SDK, and requires the Novell
client (or maybe at least nmas.dll) to be installed on the workstation.
The only other way is to search in the directory for a user having this
login, retrieve his DN, and use the DN to do a bind. You have to be able
to do an anonymous search for this, or use a generic account.
_______________________________________________
dev-tech-ldap mailing list
[email protected]
https://lists.mozilla.org/listinfo/dev-tech-ldap
