Hi! Our software has it's own user/groups/rights management built into it, but we're being asked to integrate with LDAP servers. I've done some searches, but I'm not exactly clear what LDAP provides and what I'd have to provide. Just so I'm clear in my message, let me define the terms I'm using (I'm new to LDAP so I'm not sure if it has these terms built in):
User -- Obvious, but it's a representation of a user that accesses our software. In our software, users have a user name and a password for authentication. Group -- A mapping of Users to rights. In our system, rights are not assigned directly to a user, they are only assigned to a user by the user's group memberships. So a group is essentially a container of users and rights. Right -- A protected operation within our software. A user must have the right to perform an operation or they are not allowed to perform it. I know, basic, but I want to make sure I'm clear in what I'm asking. I know that LDAP schemas have provisions for users and groups, but how do I integrate my rights system with LDAP? Is there some standard? Or should I be building my own DIT (if I understand the concept correctly)? Are there any examples of other software that I could look at for reference? Thanks for any help, sorry if this is such a basic question, but I did a bunch of google searches last night and couldn't find any clear answers. Cheers, Craig --- You are currently subscribed to [email protected] as: [EMAIL PROTECTED] To unsubscribe send email to [EMAIL PROTECTED] with the word UNSUBSCRIBE as the SUBJECT of the message.
