Hello Oliver,
in our case we needed two things concerning the LDAP
a) to hang the certificate and its serial number under the user entry in
LDAP and not as a different entry, so we also added the attribute
serialNumber.
b)to translate the dn from the certificate to the correspoding LDAP dn
(ui
Hi Chrysa,
we had the same need for a transformation of the dn, so we implemeted a
function in LDAP.pm that translates the dn to the appropriate form if a
configuration parameter LDAP_TRANSLATE_DN (ldap.conf) is set to 1. The
function extracts the uid from the cert, builds the new dn and can con
hello,
we had the same need for a transformation of the dn, so we implemeted a
function in LDAP.pm that translates the dn to the appropriate form if a
configuration parameter LDAP_TRANSLATE_DN (ldap.conf) is set to 1. The
function extracts the uid from the cert, builds the new dn and can continue
Hi Oli,
Oliver Welter wrote:
Can I do this transformation via the schema-descriptions in ldap.xml
or have I to rewrite the ldap-export Module =
AFAICS there are no DN-Transformation rules implemented, thus
subjectDN equals the DN of the LDAP entry. Michael please correct me,
if I am wrong
Perhaps you can use the perl backend of openldap to proxy the request,
rewrite the query and DNs as necessary, sent the transformed request to
the real ldap server, get the response back, rewrite it and then send it
back to opena as it expects. This can solve the general problems of DNs
is cert
Hi Peter,
Can I do this transformation via the schema-descriptions in ldap.xml
or have I to rewrite the ldap-export Module =
AFAICS there are no DN-Transformation rules implemented, thus subjectDN
equals the DN of the LDAP entry. Michael please correct me, if I am
wrong here.
What you need
Oliver Welter wrote:
Hi Folks,
I have a nice feature-request here :)
I have a certificate that contains a unique ID in the DN (number of
company register)
I have a LDAP Server that has a completely differnt DN scheme, but the
mentioned ID is a unique attribute in the LDAP tree, too. So thi
Hi Folks,
I have a nice feature-request here :)
I have a certificate that contains a unique ID in the DN (number of
company register)
I have a LDAP Server that has a completely differnt DN scheme, but the
mentioned ID is a unique attribute in the LDAP tree, too. So this means
I can search f
