|
»
»
»
ldap authentication
|
View:
New views
5 Messages
—
Rating Filter:
Alert me
|
 |
ldap authentication
by Mohsen A. Momeni-2
::
Rate this Message:
Hi, Is there any standard for authentication with LDAP? or we just set a tree of users and keep the passwords as their attribute and search for them? regards,
What are the most popular cars? Find out at Yahoo! Autos --- You are currently subscribed to ldap@... as: [lists@...] To unsubscribe send email to ldap-request@... with the word UNSUBSCRIBE as the SUBJECT of the message. |
|
|
Re: ldap authentication
by Bill.Costa
::
Rate this Message:
> Is there any standard for authentication with LDAP? or we just set a
> tree of users and keep the passwords as their attribute and search for > them? While you could do it that way, I believe it is more common to just bind to the LDAP using the credentials provided by the user. If the bind succeeds, that's your authentication (don't forget to release the connection when you're done). If the bind fails, check the return codes for why. The LDAP will tell you why it didn't work, i.e. no such user, password mismatch, etc. Although for best security practices, your application shouldn't tell the user that, just give them a go/no-go. ...BC -- +-------------------------[ Bill.Costa@... ]---+ | Bill Costa | No good | 1 Leavitt Lane Voice: | deed... | CIS/Telecom -- 2nd Floor +1-603-862-3056 | | University of New Hampshire | Goes | Durham, NH 03824 USA | unpunished. +---------------[ http://pubpages.unh.edu/~wfc/ ]--+ --- You are currently subscribed to ldap@... as: [lists@...] To unsubscribe send email to ldap-request@... with the word UNSUBSCRIBE as the SUBJECT of the message. |
|
|
Re: ldap authentication
by Francis Swasey
::
Rate this Message:
Good morning,
The standard way that I've always told people is: - Bind to the ldap server - Search for the uid provided - Obtain the DN from the search - Attempt to BIND as the DN using the password they provided. Today at 1:53am, mohsen A. Momeni wrote: > Hi, > Is there any standard for authentication with LDAP? or we just set a tree of users and keep the passwords as their attribute and search for them? -- Frank Swasey | http://www.uvm.edu/~fcs Sr Systems Administrator | Always remember: You are UNIQUE, University of Vermont | just like everyone else. "I am not young enough to know everything." - Oscar Wilde (1854-1900) --- You are currently subscribed to ldap@... as: [lists@...] To unsubscribe send email to ldap-request@... with the word UNSUBSCRIBE as the SUBJECT of the message. |
|
|
Re: ldap authentication
by Quanah Gibson-Mount
::
Rate this Message:
--On Wednesday, February 22, 2006 9:08 AM -0500 Frank Swasey <Frank.Swasey@...> wrote: > Good morning, > > The standard way that I've always told people is: > > - Bind to the ldap server > - Search for the uid provided > - Obtain the DN from the search > - Attempt to BIND as the DN using the password they provided. Of course, assuming that the LDAP server is used for authentication can be a bad mistep for any application. Plenty of people use things like a Kerberos KDC for the authentication bit, meaning that users often have authenticated long before getting to any applications. In that case, then the directory is often used for *authorization* using the credentials the user has already obtained (See things like SASL/GSSAPI or SASL/EXTERNAL for LDAP). One of the most painful things I deal with in applications is ones that want to use their own username/password space. Second to that are applications that want to take a username and bind against an LDAP directory. Too many application developers spend their time re-inventing the wheel over and over again on how to do authentication, when what they need to focus on is the authorization aspects, since most institutions have already have an authorization scheme in place that the application developers simply need to plug into. --Quanah -- Quanah Gibson-Mount Principal Software Developer ITS/Shared Application Services Stanford University GnuPG Public Key: http://www.stanford.edu/~quanah/pgp.html --- You are currently subscribed to ldap@... as: [lists@...] To unsubscribe send email to ldap-request@... with the word UNSUBSCRIBE as the SUBJECT of the message. |
|
|
Need help on LDAP
by vishu4u22
::
Rate this Message:
hi i am working on ldap requirement.
details are as bellow. 1) we need to pull windows logon username and windows logon domain name from ldap/ad, and save it to sql server database table (Once win user name and domain has been saved in DB, my application will use this info for Authontication). is it possible to pull? and how to do that using C# code. also i have doubt that, 2) my windows logon user name is "vpatil". machine name is "vpatil-xp".domain name is FCY_nt..i have got sample code which returns me users from active directory. the output i am getting is "Patil\, varun". but i want to the result as "vpatil". how can i get this "vpatil" instead of "Patil\, varun"? thanks in advance, kindly reply
|
| Free Forum Powered by Nabble | Forum Help |