It's not so easy rewrite the source code, I will need spend a lot of time to understand the source and to change it. But I think that I have to do it, and change the bind method (I think it will work...).

OpenGroupware is for unix systems, you can learn more in www.opengroupware.org

Thanks
--
firma Aitzol Naberan Burgaña
CodeSyntax
[EMAIL PROTECTED]
www.codesyntax.com
Tel: 943  82 17 80


joe(e)k dio:
Ah. Interesting, so it sounds like they want to compare the hashes instead of actually use the authentication of the system. Well since it is OpenSource, that should be easy to rewrite and correct huh. :o)
 
You can open up the anonymous search but if they need to see the password, you are dead in the water right there. You either can't use AD, can't use that product, or you need to modify the authentication routines.
 
I have never heard of that product, is it *nix only or do they have Win32 ports?
 
   joe
 
 


From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of Aitzol Naberan Burgaña
Sent: Tuesday, May 18, 2004 9:21 AM
To: [EMAIL PROTECTED]
Subject: Re: [ActiveDir] Anonymous bind

I'm trying to authentificate OpenGroupware (open source groupware suite) against Active Directory. The problem is that OpenGroupware's authentification method is a litle bit curious:  It tries to do an anonymous bind to the ldap server before it will try to bind as the user name supplied at the login prompt.  Active Directory will allow an anonymous bind, so that part is successful, but it does not allow an anonymous search. I'm not sure where authentification fails, because I have read thet OpenGroupware search a password and when doesn't find it fails.

--
Aitzol Naberan Burgaña
CodeSyntax
[EMAIL PROTECTED]
www.codesyntax.com
Tel: 943  82 17 80


joe(e)k dio:
Correct.
 
Aitzol, what problem are you trying to solve?
 
  joe


From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of Brent Westmoreland
Sent: Tuesday, May 18, 2004 8:41 AM
To: [EMAIL PROTECTED]
Subject: Re: [ActiveDir] Anonymous bind

I know that the unicodePwd attributes can never be read by way of ldap, you will probably find that this is true for userPassword also.

http://support.microsoft.com/default.aspx?scid=kb;EN-US;269190


On May 18, 2004, at 6:29 AM, Aitzol Naberan Burgaña wrote:

Hi all

How can I grant "read" access to userPasswor attribute?


Thanks

--
Aitzol Naberan Burgaña
CodeSyntax
[EMAIL PROTECTED]
www.codesyntax.com
Tel: 943  82 17 80

List info : http://www.activedir.org/mail_list.htm List FAQ : http://www.activedir.org/list_faq.htm List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/
List info : http://www.activedir.org/mail_list.htm List FAQ : http://www.activedir.org/list_faq.htm List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/
List info : http://www.activedir.org/mail_list.htm List FAQ : http://www.activedir.org/list_faq.htm List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/

Reply via email to