In order ro reduce costs, i have a single machine server handling a set of kerberos domains One domain for each of my clients. Now some client want to have access to OpenLDAP service.
My initial ideia is to create a "root" node for each client and have access to anything below this node being authenticated under the client kerberos domain. For instance: *,o=org_0 will authenticate against kerberos realm org_0.com *,o=org_1 will authenticate against kerberos realm xxx.net So, i would have to create a ldap/[EMAIL PROTECTED] for each of the realm kerberos. Does openldap support such? If not, how could i handle this task ? Thank you a lot.
