On Wed, Jul 23, 2008 at 08:29:42AM -0500, Peter Karman wrote: > > > On 07/22/2008 10:37 PM, Matt S Trout wrote: > > On Wed, Jun 25, 2008 at 11:27:13AM -0700, Bruce J Keeler wrote: > >> Also, somewhat apropos, I have a > >> C::A::{Store,Credential}::ActiveDirectory that I based on the LDAP > >> stuff. The LDAP modules didn't work for me because they want to bind > >> anonymously and retrieve the crypted password, whereas AD just wants to > >> authenticate with a bind. > > > > So, having established this isn't true. > > > > Could you perhaps instead post a message asking why your config of the > > main LDAP store didn't work so we can figure out what configuration problem > > you had and document it? > > likely he is missing a 'binddn' and 'bindpw' config setting. The initial > bind() will try > anonymously if those are not set. What I usually do for Active Directory is > create a user > specifically for use with Net::LDAP (and by extension, C::A::Store::LDAP), > and then do all > my initial binds with that user/pass.
Hmmm. Should there be an alternative option where (if the user DN is deterministic from the username) it skips the first part and just tries the bind with $generated_dn and $supplied_password (where $generated_dn is the result of a subref/sprintf pattern/whatever supplied in config) ? -- Matt S Trout Need help with your Catalyst or DBIx::Class project? Technical Director http://www.shadowcat.co.uk/catalyst/ Shadowcat Systems Ltd. Want a managed development or deployment platform? http://chainsawblues.vox.com/ http://www.shadowcat.co.uk/servers/ _______________________________________________ List: Catalyst@lists.scsys.co.uk Listinfo: http://lists.scsys.co.uk/cgi-bin/mailman/listinfo/catalyst Searchable archive: http://www.mail-archive.com/catalyst@lists.scsys.co.uk/ Dev site: http://dev.catalyst.perl.org/