ldap

Using JavaScript to get an LDAP multi-valued string attribute

I am trying to retrieve an object attribute in Active Directory that appears to be a multi-valued string (See canonicalName). After performing a search: var conn; conn.Open = 'Provider=ADsDSOObject;'; var command = '<LDAP://CN=Partitions,CN=Configuration,DC=domain,DC=com>;(&(objectcategory=crossRef)(systemFlags=3));name,nETBIOSName,nCN...

LDAP Active Directory path

I am trying to add a user to Active Directory through an MPS Web Service. I've been trying a long time to find the correct LDAP-url to use to tell it to add the new user to the Users group. I've tried things like: LDAP://XXXX.YYY/OU=Users,DC=XXXX,DC=YYY LDAP://XXXX.YYY/CN=Users,DC=XXXX,DC=YYY LDAP://XXXX.YYY/DN=Users,DC=XXXX,DC=YYY ...

How to specify a baseDN when connecting to LDAP via python?

I want to connect to a ldap server with python-ldap using a specific baseDN. import ldap baseDN="ou=unit,o=org.c=xx" # doesn't work #baseDN="" # works host="ldaps://test.org.xx:636" userDN="cn=proxyhlrb,ou=services,o=org,c=xx" passwd="secret" server=ldap.initialize(host+"/"+baseDN) server.bind_s(userDN,passwd,ldap.AUTH_SIMPLE) Wha...

Mixed Forms and LDAP authentication with auto-registration with ASP.NET MVC.

Hi, I need to use Form-Based authentication on an ASP.NET MVC web site with LDAP (Active Directory) backend like TeamCity for instance. So i need to query LDAP first if the requested user is valid, then auto-register user in database according to LDAP user authentication infos in order to use mixed authentication : Users : Admin (loc...

Retrieve all users from Active Directory (LDAP) using VBScript

How can I retrieve all users from Active Directory using VBScript? ...

SVN + SASL + ActiveDirectory: How to

I'm trying to set up SVN to authenticate against an ActiveDirectory. I know this is possible if you set up SVN to be served using Apache, but doing so introduces too much overhead, and SVN runs too slow. From reading the SVN docs, it sounds like it should now be possible (since SASL was integrated into SVN in 1.5) to configure SVN to a...

Paged ldap_search in OpenLDAP to get around size limit?

Hi there! We are currently in the process of migrating from an aged proprietary directory service to OpenLDAP. Today we ran into the problem that ldap_search_ext_s or ldapsearch in general does not return any results, if the number of entries, which were to be returned by the current search, would hit a certain limit. Unfortunately set...

How can I cause ldap_simple_bind_s to timeout?

We recently had a problem with our test LDAP server - it was hung and wouldn't respond to requests. As a result, our application hung forever* while trying to bind to it. This only happened on Unix machines - on Windows, the ldap_simple_bind_s call timed out after about 30 seconds. * I don't know if it really was forever, but it was at ...

How can the windows xp login be passed to my jboss portal application?

My users will be logging into a secure windows xp workstation. They will be launching a jboss portal (app server = 4.2.2.GA, portal = 2.6.5) web application. This web application currently has them log in again. I can set this up to authenticate against an LDAP server but what I really want is to have them be authenticated based on th...

ASP.NET membership providers in non-web apps?

Does anyone know if it's possible to use an ASP.NET membership (and role) provider in a non-web app (ie in a desktop C# app)? Related question -- is there an LDAP membership provider (it looks like SharePoint has one, but I don't think it's the same as the ASP.NET provider). I'm sure the Active Directory one is probably close, but I'm ...

How to identify if currently logged in user is an LDAP user in Solaris

Hi I am new to LDAP. I want to know how to identify if the currently logged in user in Solaris is a LDAP user or local user. Any command? or any C Run time functions like getspname, getpwnam which returns an attribute saying it is an LDAP user or local user after user logged in. I am looking for Solaris. ...

LDAP Gettling a list of logon names

I have the need in my program to get the list of user logon names in a group. This is what I have so far but it only returns all the users...which I need cut down to those in a group, of which i have the name of. Option Explicit On Imports System.DirectoryServices Imports System.DirectoryServices.ActiveDirectory Module Module1 ...

How to avoid plain password in mod_ldap

There are a plain password store in mod_ldap. Is there any way to encrypt the password? AuthLDAPBindPassword password Thank You. ...

Strange issue with System.DirectoryServices.AccountManagement.UserPrincipal.FindByIdentity

We're writing a system that allows a user to change their account password through a web application on our intranet. At first, everything appeared to be running smoothly. During development passwords for our test accounts could be changed with no problem. When we made the system live, however, we started running into issues. Here are...

DirectoryServices.AccountManagement - group membership checking efficiency

We have a group in Active Directory with over 70k user accounts. I need to check whether someone is a member of that group. The code is going to run in a web app with a high volume of concurrent users. I'd prefer to stick to System.DirectoryServices.AccountManagement if possible to reduce the amount of code that's written for this app. ...

Websphere Server 5.1.2 Ldap Multiple URLS

I am trying to make some ldap calls in Websphere 5.1.2 (which is an IBM 1.4.2 jvm?) and I'm trying to pass it multiple URLS in the format of "url url url url" etc. Does this build of websphere server/jvm support multiple URLs? Supposedly Sun's build of java 1.4.2 supports urls in this fashion. Is there anyway to do this? ...

Integrating AD with web application running on Tomcat

Hello all Am trying to change my web application using AD for authentication. My application uses Tomcat 5.5.17. Currently it uses UserDatabaseRealm to authenticate users of the application. After reading many posts here, I used the following configuration in server.xml. (Since am just getting started, I didn't bother about roles). ...

How to change ldap password using zend

I am working with zend framework, PHP , Ldap on Ubuntu. I am authenticating users from ldap using zend library. Now I want to change user's ldap passwords using zend. Any Idea? This is the method that I am using to get zend authentication adapter. It is working perfectly and users are authenticated using this adapter. public function g...

ForeignSecurityPrincipals with LDAP connection on Active Directory servers with trusted forest

The context is the following : Two domains mutually trusted dc=dom1 dc=dom2 a group cn=group1,ou=someou,dc=dom1 with users inside : cn=user11,ou=anotherou,dc=dom1 cn=user12,ou=anotherou,dc=dom1 cn=user13,ou=anotherou,dc=dom1 cn=user21,ou=anotherou,dc=dom2 cn=user22,ou=anotherou,dc=dom2 cn=user23,ou=anotherou,dc=dom2 The que...

Legacy application with JDBC and JNDI REALM authentication

Hello All, My application currently relies on JDBC realm authentication. Recent needs have forced us to think about having LDAP authentication as well. We are thinking about using Active Directory for both authentication as well as authorization (roles). As a standalone test, I was able to authenticate my application with AD. But here i...