[Ltb-changes] [LDAP Tool Box (LTB)] page changed: documentation:general:sasl_delegation

Wed, 05 Apr 2017 07:09:02 -0700 

A page in your DokuWiki was added or changed. Here are the details:

Date        : 2017/04/05 16:08
Browser     : Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:52.0) Gecko/20100101 
Firefox/52.0
IP-Address  : 213.135.230.184
Hostname    : ip-213-135-230-184.static.luxdsl.pt.lu
Old Revision: 
http://ltb-project.org/documentation/general/sasl_delegation?rev=1485342542
New Revision: http://ltb-project.org/documentation/general/sasl_delegation
Edit Summary: 
User        : coudot

@@ -38,8 +38,10 @@
    - SASL return response to OpenLDAP (yes/no)
    - OpenLDAP return response to the LDAP client
   
  ===== Pass-Trough authentication on one LDAP directory =====
+ 
+ {{ :documentation:general:sasl_delegation.png |}}
  
  <note>This is the standard use case: the password is stored in a directory 
and other LDAP directories delegate authentication to it.</note>
  
  <note important>This chapter allows you to use several LDAP directories as 
authentication backend, but only for redundancy problems: all directories will 
have the same data inside. To see how use several directories with different 
data model, go to next chapter.</note>
@@ -227,8 +229,10 @@
  ldapsearch -x -H ldap://ldap.example.com -b dc=example,dc=com -D 
uid=coudot,ou=users,dc=example,dc=com -w password
  </code>
  
  ===== Pass-Trough authentication on several LDAP directories - with OpenLDAP 
meta backend =====
+ 
+ {{ :documentation:general:sasl_delegation_multi_ad.png |}}
  
  <note>This chapter explains how do Pass-Trough authentication on several LDAP 
backends with OpenLDAP meta backend. This adds complexity as SASL daemon can 
only be configured to connect a single remote directory, and OpenLDAP cannot 
use several SASL authentication daemon. The solution described here use a meta 
directory between SASL daemon and remote directories. The choice of the backend 
to contact will be done in the SASL password value, for example 
{SASL}user@LDAP1 and {SASL}user@LDAP2.</note>
  
  <note important>You need to install all the components of the previous 
chapter. This chapter will only describe the evolutions to do.</note>



-- 
This mail was generated by DokuWiki at
http://ltb-project.org/

_______________________________________________
ltb-changes mailing list
[email protected]
https://lists.ltb-project.org/cgi-bin/mailman/listinfo/ltb-changes

Reply via email to