Hello there.<br>
<br>
I've been using the Fedora Directory Server for very small scale
testing at work, but actually know rather little about LDAP
unfortunately. Hopefully you won't mind.<br>
Anyway, is it possible to bind with an entry other than CN? I have the following user (LDIF format):<br>
<br>
dn: uid=RSmith,ou=People, dc=fedora,dc=test,dc=com<br>
mail: <a href="mailto:blablabla@test.com">blablabla@test.com</a><br>
uid: RSmith<br>
givenName: Richard<br>
objectClass: top<br>
objectClass: person<br>
objectClass: organizationalPerson<br>
objectClass: inetorgperson<br>
objectClass: ntuser<br>
objectClass: posixAccount<br>
sn: Smith<br>
cn: RSmith<br>
creatorsName: uid=admin,ou=administrators,ou=topologymanagement,o=netscaperoot<br>
modifiersName: uid=admin,ou=administrators,ou=topologymanagement,o=netscaperoot<br>
createTimestamp: 20050905103419Z<br>
modifyTimestamp: 20050916131603Z<br>
nsUniqueId: 86b5b081-1dd211b2-806ddcd6-e1700000<br>
ntUserDomainId: smithr<br>
uidNumber: 1<br>
gidNumber: 2<br>
homeDirectory: /home/smithr<br>
<br>
<br>
When attempting to bind using the following (as taken from the access log):<br>
BIND dn="ntUserDomainId=Richard Smith,ou=People,dc=fedora,dc=test,dc=com" method=128 version=3<br>
<br>
...I get "No such object". This user does exist though. Is binding using the ntUserDomainId out of the question?<br>
<br>
I notice from the following discussion that the same sort of thing is
possible in Active Directory, although I have not tried it myself:<br>
<a href="http://groups.google.co.uk/group/microsoft.public.adsi.general/browse_thread/thread/b5fc22bfdd9079fe/f1caf3c9cf6c8188?lnk=st&q=ldap+bind+only+via+CN%3F&rnum=1&hl=en#f1caf3c9cf6c8188">http://groups.google.co.uk/group/microsoft.public.adsi.general/browse_thread/thread/b5fc22bfdd9079fe/f1caf3c9cf6c8188?lnk=st&q=ldap+bind+only+via+CN%3F&rnum=1&hl=en#f1caf3c9cf6c8188
</a><br>
<br>
Any pointers would be greatly appreciated.<br>
<br>
Thanks<br>
Rich<br>
<br>