On 10/19/10 5:07 PM, Jeremy Shoemaker wrote: > How do your valid accounts create the sponsored accounts?
We authenticate against Sun LDAP servers. We have a simple web application where a "regular" user may log in, create a time-limited sponsored account, which sits in a different OU in LDAP. Rights can be inherited from the OU, or the guest SSID may be treated differently in firewalls, ACLs, etc. We don't run Active Directory on campus, but it seems this separate OU approach might work there, too. -- Best regards -- Cal Frye, Network Administrator, Oberlin College Mudd Library, x.56930 -- CIT will NEVER ask you for your password! www.calfrye.com, www.oberlin.edu/cit/ "The real voyage of discovery consists not in seeking new landscapes but in having new eyes." --Marcel Proust.
