Le 20/11/2015 17:25, Scott Owen a écrit :
Got it ! Thanks !
We currently use AD , but (as you know) AD hashes the passwords...this
makes it most difficult for us to look up a students (k-12) password
to ensure that they are entering it correctly.
We also want to give students the ability to change their password if
they desire.
LTB SSP allows to change the password in AD.
I understand the security implications, but we also need to balance
the user experience and the ability for staff/teachers to assist
students, and to assist in reseting a student password if need be.
Well, SSP is able to let a user reset his password. But you will need
another tool to let staff/teachers to reset password of a student.
We also need to be able to export the login/pass for use in different
applications such as:
Compass Learning
Moodle
SIS
Office 365
Google Apps
Khan Academy
etc....
This is needed to keep students on a "one-login-one-password for
everything" track.
Thanks again for your project and assistance !
Exporting the password is a bad idea. Either plug your applications to
AD authentication, else use a SSO software (hint: http://lemonldap-ng.org).
--
Clément OUDOT
Consultant en logiciels libres, Expert infrastructure et sécurité
Savoir-faire Linux
_______________________________________________
ltb-users mailing list
[email protected]
http://lists.ltb-project.org/listinfo/ltb-users
