Hi Nick,
On 18/05/2023 18:19, Nick Couchman wrote:
On 17/05/2023 08:00, Brian Wolfe wrote:
While i'm not exactly an expert on ApacheDS, I work with other OpenDS based
Directories and Access products all the time. So let me give you some
general knowledge as there seems to be some confusion as how these
things work.. Afaik from what I have looked at in ApacheDS, it doesn't
support any type of LDAP proxy or mechanism to send bind credentials to
another LDAP server during the bind operation,
Actually, ApacheDS support delegated Authentication.
It requires some specific configuration though:
- Declare the DelegatedAuthenticator as a valid Authenticator
- Set the delegated port (if it's not 389)
I think that by default, the authenticator is present in the
configuration, but disabled:
Thank you - I will take a look at this and see if it works for what
I'm needing to do. Appreciate the quick response!
Hope it clarifies something that requires documentation...
Not sure if documentation is updated via Git pull requests, but,
assuming I get it working, I can take a go at documenting it...
The documentation is available on https://github.com/apache/directory-site.
The whole site is using markdown, and the Apache Directory Server
documentation is in source/apacheds/advenced-ug.
The part on delegated authentication should most certainly be a
dedicated page (4.1.2.7-delegated-authn.md).
If you check one of the chapter 4 pages, you'll see that some are
completed, and some are empty. In any case, there is a navigation
mechanism in place, as a header in each page:
---
title: 4.1.2.6 - SASL NTLM Authentication
navPrev: 4.1.2.5-sasl-external-authn.html
navPrevText: 4.1.2.6 - SASL EXTERNAL Authentication
navUp: 4.1.2-sasl-authn.html
navUpText: 4.1.2 - SASL Authentication
navNext: 4.1.3-kerberos-authn.html
navNextText: 4.1.3 - Kerberos authentication
---
# 4.1.2.6 - SASL NTLM Authentication
It's pretty straightforward, it has a title, links to a previous and
next page at the same level, and to the upper level. Each link has a
reference to the HTML page and a text that is visible on the site.
The rendering of this page can be seen here:
https://directory.apache.org/apacheds/advanced-ug/4.1.2.6-sasl-ntlm-authn.html
The rest is pure markdown, when the has some content (for instance,
https://github.com/apache/directory-site/blob/master/source/apacheds/advanced-ug/4.1.2.2-sasl-cram-md5-authn.md?plain=1)
Thanks !
-Nick
--
*Emmanuel Lécharny - CTO* 205 Promenade des Anglais – 06200 NICE
T. +33 (0)4 89 97 36 50
P. +33 (0)6 08 33 32 61
[email protected] https://www.busit.com/
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
