Here is the LDAP tag that I use to authenticate users against NDS
LDAP:
<CFLDAP ACTION="QUERY"
NAME="UserValidate"
ATTRIBUTES="cn"
START="#Username#"
SCOPE="BASE"
SERVER="ldap.mycompany.com"
USERNAME="#Username#"
PASSWORD="#Password#"
>
Basically, I query for the user using the user's username and password
as credentials. Note that you should wrap this in a CFTRY because if
the account is disabled or the password has expired, the tag will fail
with an error. If the user is not found, the query comes back empty.
The #Username# variable must be fully qualified using LDAP
terminology:
cn=username,ou=containter1,ou=container2,o=mycompany
Notice the commas rather than the periods separating the components.
Good luck,
Kevin
-----Original Message-----
From: Norman Elton [mailto:[EMAIL PROTECTED]]
Sent: Thursday, November 16, 2000 9:24 PM
To: CF-Talk
Subject: RE: Novell Advanced Security Woes
Kevin-
If you could detail how you accomplish this, many (MANY) developers
would be
most appreciative!
Do you authenticate off of GroupWise, or straight to NDS?
I'm not a Novell guy, so I don't know all the inner workings, but I
have
definitely struggled to authenticate Novell passwords.
Thanks!
Norman Elton
Information Technology
College of William & Mary
-----Original Message-----
From: Kevin Miller [mailto:[EMAIL PROTECTED]]
Sent: Thursday, November 16, 2000 11:51 AM
To: CF-Talk
Subject: RE: Novell Advanced Security Woes
I don't use Advanced Security, but I have and do authenticate to
Novell's LDAP server via the CFLDAP tag.
Kevin
Kevin Miller
Vascular Chief Technologist
Medtronic Vascular
[EMAIL PROTECTED]
(707) 566-1200
>>> [EMAIL PROTECTED] 11/15/00 12:10PM >>>
I know that if you want to do a look up to NDS with cfldap you can.
But you can't authenticate to it. Allaire has never tested it and
they
say it won't work. The built it for Netscape DS. The siteminder
piece
doesn't recognize Novell DS. I got your same problem some time ago
and
opened a ticket.....and nothing......doesn't work...You can verify the
connection and it works, but if you were to go to your policy and
check
the users your shouldn't see anything...
sorry...
Now should anyone have successfully auth against Novell DS, using cf
4.5.1, and advanced security please lets talk.....
Thanks
>>> [EMAIL PROTECTED] 11/06/00 10:32AM >>>
Yes, I should have mentioned Rick's tool. I was going down the CF
specific
route but, Rick's tool can solve your problem too.
Steve
-----Original Message-----
From: Rick Osborne [Mojo] [mailto:[EMAIL PROTECTED]]
Sent: Monday, November 06, 2000 1:06 AM
To: CF-Talk
Cc: [EMAIL PROTECTED]; [EMAIL PROTECTED]
Subject: RE: Novell Advanced Security Woes
FYI, I wrote an ISAPI DLL for IIS to do pretty much exactly what Steve
talks
about at the end there. It is completely free and comes with source.
It is
available at:
http://www.rixsoft.com/NWAuth/
Of course, it means that IIS does the authentication instead of CF,
but
that
may be good or bad depending on your situation.
-----Original Message-----
From: Steve Bernard [mailto:[EMAIL PROTECTED]]
Sent: Saturday, November 04, 2000 22:41
To: CF-Talk
Subject: RE: Novell Advanced Security Woes
With native CF capability you'll have to use CFLDAP to query NDS' LDAP
interface directly. This doesn't allow you to use NDS as your AS
repository
but, it's better than nothing. You could try hand building the schema
in
NDS. Another option is to use native OS authentication/authorization
but,
have that redirected to NDS. Like using Client32 for NT.
Steve
----------------------------------------------------------------------------
--------------------
Archives: http://www.mail-archive.com/[email protected]/
Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists or
send a
message with 'unsubscribe' in the body to
[EMAIL PROTECTED]
----------------------------------------------------------------------------
--------------------
Archives: http://www.mail-archive.com/[email protected]/
Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists or
send a message with 'unsubscribe' in the body to
[EMAIL PROTECTED]
----------------------------------------------------------------------------
--------------------
Archives: http://www.mail-archive.com/[email protected]/
Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists or
send a message with 'unsubscribe' in the body to
[EMAIL PROTECTED]
----------------------------------------------------------------------------
--------------------
Archives: http://www.mail-archive.com/[email protected]/
Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists or
send a
message with 'unsubscribe' in the body to
[EMAIL PROTECTED]
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Structure your ColdFusion code with Fusebox. Get the official book at
https://secure.houseoffusion.com
Archives: http://www.mail-archive.com/[email protected]/
Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Structure your ColdFusion code with Fusebox. Get the official book at
http://www.fusionauthority.com/bkinfo.cfm
Archives: http://www.mail-archive.com/[email protected]/
Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Structure your ColdFusion code with Fusebox. Get the official book at
http://www.fusionauthority.com/bkinfo.cfm
Archives: http://www.mail-archive.com/[email protected]/
Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists
