[124067] in North American Network Operators' Group
Re: OpenLDAP and Active Directory
daemon@ATHENA.MIT.EDU (Dan White)
Mon Mar 22 13:42:05 2010
Date: Mon, 22 Mar 2010 12:41:27 -0500
From: Dan White <dwhite@olp.net>
To: Andrews Carl 448 <Carl.Andrews@crackerbarrel.com>
In-Reply-To: <73BF1D6676C4E04E9675A08BA0C9825A07CB8466@exchsrvr01.CBOCS.com>
Cc: nanog@nanog.org
Errors-To: nanog-bounces+nanog.discuss=bloom-picayune.mit.edu@nanog.org
On 22/03/10 12:24 -0500, Andrews Carl 448 wrote:
>Please forgive me if this is an inappropriate place to make this
>requests.
>
>
>I need to setup an OpenLDAP server for proxy authentication to Microsoft
>Active Directory. From what I have been able to determine this is
>completely possible but I am missing something. I have the O'Reilly LDAP
>book but it was written several years prior to the current OpenLDAP
>version and there has been a major rewrite of the software.
Depending on details, you might find assistance with these two lists:
http://www.openldap.org/lists/mm/listinfo/openldap-software
http://lists.andrew.cmu.edu/mailman/listinfo/cyrus-sasl
If you're wanting to authenticate based on username/password (as apposed to
client Kerberos credentials), include 'saslauthd' in your search.
>Can anyone help me or point me to somewhere I can get assistance? I have
>tried one consulting firm and that was a stellar failure.
>
>I've tried many different searches but a search for 'active directory,
>openldap, authentication, proxy, pass-through' either gives information
>for Squid or all go back to the same OpenLDAP Administrators guide from
>which I am missing something.
--
Dan White
