I need to provide SSO for a Webpshere portal. The authentication process needs to be handled by a PHP site (which itself should authenticate a user against an Active Directory via LDAP - think I have this bit covered though). I have been told I need to create an LTPA cookie. How would I go about doing this? What information need to be se...
How do you do a query of an LDAP store by sAMAccountName and Domain? What is the "domain" property named in Active Directory or LDAP terms? This is what I have for the filter so far. I'd like to be able to add in the domain: (&(objectCategory=Person)(sAMAccountName=BTYNDALL)) ...
I would like to have a single LDAP command that would delete an entire OU atomically, including all children. I see there's a command for the windows command-line: Delete an Organizational Unit dsrm <OrganizationalUnitDN> [-subtree] That -subtree option deletes children too. Is there a way to do that using LDAP? Bonus points, if som...
I am using an LdapContext in java to query an LDAP server (I think the server is Sun server version 5.2). I use the LdapContext.search(String name, String filter, SearchControls cons) method for the regular querys, but I don't know how to run a query equivalent to sql's "select count(*)". Any idea? Performance is important so I don't wan...
Hi my project is to make an module enrollment system for our university. So I contacted the IT people in my university for details to authenticate students to the system we are developin using the existing university login. They give me some LDAP information, I don't know how I can use it in my project. For the project I'm using PHP,Mysq...
Can anyone point me to a resource that defines the maximum allowable length of the LDAP filter string in Active Directory? ...
I need to access information in my Active Directory domain using domain credentials. The DirectorySearcher class does not have user and password arguments. How can I specify them? ...
Hi, there. I'm interesting in best practices of using LDAP authentication in java-based web application. In my app I don't want to store username\password, only some id. But, I want retrieve addition information (Name, Last name) if any exists on LDAP catalog. ...
We logon users to Active Directory via LDAP using the Java LDAP API. We want to enhance our logon functionality to further check if the user is in a given AD group. Does anyone know how to do this? Current code: import javax.naming.*; import javax.naming.ldap.*; LdapContext ctx = null; Hashtable env = new Hashtable(); env.put(Contex...
Using a JSP page I get username and password. How do I check this in active directory. Please give example with some code. ...
We start to use LDAP and I wonder why LDAP is not that popular? I read that it has faster reads than database, however slower writes. EDIT: Its the first time i use LDAP and i have been programming in enterprise for sometime now. That is the reason why i thought its not popular, plus i never heard about it at school. ...
I would like to use an LDAP server (probably Apache directory) to manage logins and credentials for an application. From time to time the application needs to work offline (on a laptop) without a connection to the LDAP server. What is the best way to replicate the credentials localy? I have already thought about: Using Mitosis to rep...
I'm referencing LDAP in a Tomcat security realm in the Tomcat server.xml file. However I'm getting an unusual error: Tomcat doesn't start, and going into the logs I see that it's failed to connect to localhost:389 - Tomcat's default LDAP URL. However, Tomcat is configured to point at a different URL (not the external URL of the same mac...
How do you check if a computer account is disabled in Active Directory using C#/.NET ...
Currently, we have a small group of users that are set-up on an Microsoft SBS machine, hence available under active directory. These users, as well as a bunch of others also have entries on a second LDAP server (openLDAP). This second server is used for authentication and access control for a few different things such as our internal t...
Oracle Internet Directory is Oracle's version of LDAP. It comes with a web-based directory administration interface http://hostname/oiddas By default, all authenticated users can browse the directory to see the basic public profile of all other users. I want to restrict access so that only authorised directory administrators can brows...
Using Ruby LDAP running on Linux, I can create a new Active Directory user account without a problem. Now I want to be rename a user account username. When I try to change the sAMAccountName, it doesn't work. Is it possible to change an AD user account using Ruby LDAP? If so, how? ...
I am working on an C# and ASP.Net application, that uses Windows Authentication. i.e. in Web.config: <system.web> <authentication mode="Windows" /> </system.web> I want to get details for the current user (full name, email address, etc) from Active Directory. I can get their pre Windows 2000 user login name (eg: SOMEDOMAIN\so...
I am fairly new to LDAP and AD. I want to create an LDAP filter to show all the students in the AD. But the problem is that the students are in different BASE DN: OU=STUDENTS,OU=USERS,OU=SOE,OU=FOAE,OU=UNIVERSITY,DC=sepang OU=STUDENTS,OU=USERS,OU=SOMLC,OU=FOAE,OU=UNIVERSITY,DC=sepang OU=STUDENTS,OU=USERS,OU=SOCS,OU=FOS,OU=UNIVERSITY,DC...
I can add two descriptions (attribute) using my IDE, but from Java I can only add one description. How to add the second one? I'm using the JDK LDAP library. ...