tags:

views:

14

answers:

1

We are looking at building an application that either proxies a standalone LDAP server or delegates to an embedded Java LDAP instance (ie: ApacheDS, OpenDS) in order to log requests and determine who is accessing which applications on our very large corporate network.

My question is is there a good way to intercept an LDAP request and "pull it apart" or have either OpenDS/ApacheDS push notifications of requests coming into LDAP.

+1  A: 

You don't need to do any of that. You can configure LDAP servers to log accesses, either in the LDAP directory itself or elsewhere.

EJP