Hello Tim, You can generally communicate with Active Directory via the LDAP protocol. If that is the case for your installation, there is a feature in 2.2 which allows for basic authentication using LDAP user bind. To answer your listed concern, it is possible to limit this feature to a single org unit. You can read a description here:
http://www.open-ils.org/documentation/release/RELEASE_NOTES_2_2.html#_authentication_proxy Alternative methods of LDAP authentication (anonymous or admin bind) are not currently supported. Also, this feature has not been ported to TPAC, but I intend to do so before our migration to 2.2 in a few weeks. TPAC integration will then very likely be part of 2.3. Please let us know if you have any other questions. Thanks, Dan -- ********************************************************************************* Daniel Wells, Library Programmer Analyst d...@calvin.edu Hekman Library at Calvin College 616.526.7133 >>> On 5/16/2012 at 6:38 AM, Tim Spindler <tspind...@cwmars.org> wrote: > We have a question if a library could connect to active directory for > authentication. Is this possible and has someone done this? We are of > course in consortium environment so it would only be one library among 150 > if it was even possible.