Re: [SOGo] Dear progammers and architects

Sat, 06 Jul 2013 11:36:13 -0700 

On 2013-07-06 1:05 PM, Paul Pathiakis wrote:
I'm attempting to get this ported over to FreeBSD as I believe it to be a superior product. However, if one little thing that I read over 10 times had to be, finally, pointed out by Jean (I believe), as to what I was looking for, that says something very, very bad.
Have you really read it ten times? This is clearly explained on pages 17 and 18 from the doc - the *very first* page on LDAP authentication. Here it is:/ 
//
For certain LDAP sources, SOGo also supports indirect binds for user authentication. Here is an example : 

//SOGoUserSources = (//
// {//
// type = ldap;//
// CNFieldName = cn;//
// IDFieldName = cn;//
// UIDFieldName = sAMAccountName;//
// baseDN = "cn=Users,dc=acme,dc=com";//
// bindDN = "cn=sogo,cn=Users,dc=acme,dc=com";//
// bindFields = (sAMAccountName);//
// bindPassword = qwerty;//
// canAuthenticate = YES;//
// displayName = "Active Directory";//
// hostname = ldap://10.0.0.1:389;//
// id = directory;//
// isAddressBook = YES;//
// }//
//);//
//

In this example, SOGo will use an indirect bind by first determining the 
user DN. That value is //
//found by doing a search on the fields specified in bindFields. Most of 
the time, there will be //
//only one field but it is possible to specify more in the form of an 
array (for example, //
//bindFields = (sAMAccountName, cn) ). When using multiple fields, only 
one of the fields //
//needs to match the login name. In the above example, when a user logs 
in, the login will be //
//checked against the sAMAccountName entry in all the user cards, and 
once this card is found, //

//the user DN of this card will be used for checking the user's password./


If have ideas on how to improve the doc, share them. We've written about 
100 pages of documentation on SOGo. Saying it is horrid is a pretty 
impressive statement.


--
Ludovic Marcotte
[email protected]  ::  +1.514.755.3630  ::  http://inverse.ca
Inverse inc. :: Leaders behind SOGo (http://sogo.nu) and PacketFence 
(http://packetfence.org)

--
[email protected]
https://inverse.ca/sogo/lists





















					Reply via email to