All geek questions in one place

How is an ActiveDirectory cross-domain proxy transferred to an LDAP request?

I use LDAP inside Plone, working for Apache on RHEL5, to authenticate users with ActiveDirectory. This did a great job until we realized the cross-domain trust. Now the LDAP client does not know how to authenticate against other trusted domains so that our other users cannot use the web service.

Is there a good way for a standard LDAP client to detect cross-domain trust and try to authenticate it as well?

+3
source share
1 answer

Here is the beginning of the answer:

'trustedDomain', (TDO), . , , TDO ( System). , , , TDO.

'LDIFDE.EXE', Windows, 'ldapsearch', OpenLDAP :

C:\>ldifde -f trustedDomain.lfd -d "cn=system,dc=dom,dc=fr" -r "objectClass=trustedDomain" -l cn

:

dn: CN=mod.dom.fr,CN=System,DC=dom,DC=fr
changetype: add
cn: mod.dom.fr

dn: CN=soc.fr,CN=System,DC=dom,DC=fr
changetype: add
cn: soc.fr

, "CN" .

+2

Source: https://habr.com/ru/post/1752717/

More articles:


All Articles