On 16-aug-2005, at 18:27, [EMAIL PROTECTED] wrote:
>
> It would be really nice if python-ldap could just use the existing
> OpenLDAP with SASL support on Tiger; I recall from the python-ldap
> mailing list that this was do-able under Panther.
The required header files are not installed by defaul
Andrew Shearer wrote on 08/15/2005 07:54:00 PM:
> You don't necessarily have to use Kerberos. Here's a command line
that
> has worked for me on 10.3.9 against a Windows 2000 Active Directory
> server. It authenticates [EMAIL PROTECTED] by prompting
for
> the password and then printing out some
Ronald Oussoren <[EMAIL PROTECTED]> wrote
on 08/14/2005 12:12:17 PM:
> I could build python-ldap 2.0.9 after I removed 'sasl2' from the
> 'libs' line in setup.cfg, OSX doesn't seem to have the header files
> needed for sasl support in python-ldap.
I was trying to include SASL because I thoug
[EMAIL PROTECTED] wrote:
I haven't even started working on authorization. The first problem
is just basic authentication. Some LDAP servers, such as Active Directory,
supposedly supports authentication with queries, so if a username and
password are included as parameters to a query, they will b
Thanks for the info, Nicolas. I will
take a look at your Perl script.
Brad Allen
IT Desktop Support
[EMAIL PROTECTED]
Nicholas Riley <[EMAIL PROTECTED]> wrote on 08/15/2005
04:19:41 PM:
> On Mon, Aug 15, 2005 at 03:46:31PM -0500, [EMAIL PROTECTED] wrote:
> > Thanks for setting me straight. So
On Mon, Aug 15, 2005 at 03:46:31PM -0500, [EMAIL PROTECTED] wrote:
> Thanks for setting me straight. So, I'm unclear on whether LDAP
> authentication actually uses Kerberos in some underlying way
> (via SASL), or whether it actually sends the password across the
> network. Maybe I'm barking up the
[EMAIL PROTECTED] wrote on 08/15/2005 12:48:56
PM:
>
> > I thought one of the key concepts of Kerberos was that the password
> > is only ever sent to the authentication server by a client, and
that
>
> Horrors no. This is one of the common misconceptions about Kerberos.
> The password is *neve
On Mon, Aug 15, 2005 at 11:33:10AM -0500, [EMAIL PROTECTED] wrote:
> I haven't even started working on authorization. The first problem
> is just basic authentication. Some LDAP servers, such as Active Directory,
> supposedly supports authentication with queries, so if a username and
> password are
> I thought one of the key concepts of Kerberos was that the password
> is only ever sent to the authentication server by a client, and that
Horrors no. This is one of the common misconceptions about Kerberos.
The password is *never sent anywhere*. Not to application servers,
and not to the au
[EMAIL PROTECTED] wrote on 08/14/2005 12:17:31
PM:
> I suspect the original mention of LDAP was a bit of a distraction
-
> that's only useful for authORIZATION (ie. getting lists of groups
and
> acls that a user has and *deciding* what they can do, once you know
> who they are - it's the knowing
I suspect the original mention of LDAP was a bit of a distraction -
that's only useful for authORIZATION (ie. getting lists of groups and
acls that a user has and *deciding* what they can do, once you know
who they are - it's the knowing who they are part that is
authENTICATION, which is done with
On 14-aug-2005, at 17:34, [EMAIL PROTECTED] wrote:
>
> Wilfredo Sánchez Vega wrote on 08/14/2005 05:10:51 AM:
>
> >
> > On 13-aug-2005, at 19:43, Wilfredo Sánchez Vega wrote:
> >
> > >You said non-standard kerberos implementation. I'm wondering
> > > what's non-standard about it; I am under
> Because of the difficulty in getting python-ldap to build on Mac OS 10.4
Perhaps this helps:
http://twistedmatrix.com/users/tv/ldap-intro/ldap-intro.html
http://tv.debian.net/software/ldaptor/ (based on twisted, see
http://twistedmatrix.com)
Best regards,
Henning Hraban Ramm
Südkurier Medien
Wilfredo Sánchez Vega wrote on 08/14/2005 05:10:51
AM:
>
> On 13-aug-2005, at 19:43, Wilfredo Sánchez Vega wrote:
>
> > You said non-standard kerberos implementation. I'm
wondering
> > what's non-standard about it; I am under the impression it was
stock
> > MIT kerberos.
> >
> Active Direct
On 13-aug-2005, at 19:43, Wilfredo Sánchez Vega wrote:
>You said non-standard kerberos implementation. I'm wondering
> what's non-standard about it; I am under the impression it was stock
> MIT kerberos.
>
Active Directory uses the kerberos with some non-standard extensions.
IIRC they use
You said non-standard kerberos implementation. I'm wondering
what's non-standard about it; I am under the impression it was stock
MIT kerberos.
-wsv
On Aug 13, 2005, at 9:14 AM, Bob Ippolito wrote:
> That's nice, but since when does the implementation of Active
> Directory have a
That's nice, but since when does the implementation of Active
Directory have anything to do with OS X? :)
-bob
On Aug 13, 2005, at 6:08 AM, Wilfredo Sánchez Vega wrote:
> Non-standard how? The implementation in OS X is written and
> maintained by the folks at M.I.T. Information Systems.
>
Non-standard how? The implementation in OS X is written and
maintained by the folks at M.I.T. Information Systems.
-wsv
On Aug 5, 2005, at 7:05 PM, Bob Ippolito wrote:
> The generic way to do the authentication is just to use LDAP, since
> Active Directory is just a jazzed up LDAP da
Bob Ippolito <[EMAIL PROTECTED]> wrote on 08/05/2005
09:05:23 PM:
> The generic way to do the authentication is just to use LDAP, since
> Active Directory is just a jazzed up LDAP database server with a non-
> standard Kerberos implementation. You can crib some code from
> LDAPUserFolder fo
Jeff Rush <[EMAIL PROTECTED]> wrote on 08/05/2005
10:33:39 PM:
> If you have only the new stuff that *requires* COM, I don't know that
you can
> do COM programming on the Mac (not being a Mac developer).
Thanks, Jeff.
I don't think COM will be an option. Bob Ippolito
suggests
it should be do-a
On Aug 5, 2005, at 3:21 PM, [EMAIL PROTECTED] wrote:
> I'm looking for someone who can provide some limited consultation for
> a Python project we're doing in in the IT dept at my place
> of employment (OMS). In particular, we have a Python client/server app
> which needs to do Active Directory a
I'm looking for someone who can provide
some limited consultation for
a Python project we're doing in in the
IT dept at my place
of employment (OMS). In particular,
we have a Python client/server app
which needs to do Active Directory authentication
from both Mac OS X
and Windows XP clients.
The
22 matches
Mail list logo
