Good morning, Hoping to join to right forum, I please would like to describe how I configured apache/openldap on my linux box in order to get your suggestion and verify if it could be the clever way or not.
Customer asked me to protect via basic-authentication/mod_ldap a site, where users that can access have to be validated into two different ldap repository depending on the user type: - If the user is in "flat" format, like "Surname Name", it has to be checked on an active directory - if the user is in "e-mail" format, like [EMAIL PROTECTED], it has to be checked on an Ibm ldap server In both cases, the given username is the first part of a bind DN, so it can directly used to bind on ldap (other OU and suffix after "cn=xxxxx," are not the same on both ldap) In order to solve that, I configured an ldap server, where apache mod-ldap points to; this ldap server, via back-meta and regular expression, then contacts the right ldap and authenticate. Do you think it could be the right approach to the problem? Thank you very much, Kind Regards Valerio Morozzo Valerio Morozzo External Consultant (Qinet srl) Wintel & Mail Integrated Technology Delivery Global Value Services S.p.A. Sede legale: Corso Orbassano, 367 - 10137 Torino - Italy Cap. Soc. Euro 10.730.000 i.v. Data di costituzione 29-05-2001 P.I. Cod. Fisc. e numero d'iscrizione Registro Imprese: 08232640014 N. R.E.A.: 955787 Società appartenente al Gruppo IBM Italia S.p.A. Società con unico azionista (quanto sopra prevale nei confronti di qualsiasi altra informazione diversamente indicata) ---------------------------------------------------------------------- For LINUX-390 subscribe / signoff / archive access instructions, send email to [EMAIL PROTECTED] with the message: INFO LINUX-390 or visit http://www.marist.edu/htbin/wlvindex?LINUX-390