OpenLDAP + User Authentication

Tue Jan 31 01:07:28 UTC 2006

It really isn't very efficient attempting to maintain two separate
directories; shame on the other department for setting up that other
ldap server; best thing to do is to reconcile user and groups to 1 ldap
server and migrate the member servers that are authenticating against
the rogue ldap sever to yours after reconciling both. 

-----Original Message-----
From: redhat-list-bounces at redhat.com
[mailto:redhat-list-bounces at redhat.com] On Behalf Of Job Cacka
Sent: Monday, January 30, 2006 7:47 PM
To: golharam at umdnj.edu; General Red Hat Linux discussion list
Subject: RE: OpenLDAP + User Authentication

It may be possible to accomplish this, but you have a bigger problem
than that. Who is ultimately responsible for your network? They should
be the one that should have the authority to fix this. If No One person
is sresponsible for Network services then you will have many problems
like this in the future.

Alternatively, You have a few choices.
1. Do what you propose = Alot of work and research and it may not be a
success 2. Combine the two LDAP servers into one server with two trees
make sure to use the least expensive non-proprietary server.
3. Install two routers and break the departments out of the sharing the
same network. This is only cost effective if it prevents problems like
this in the future. It may break other services too.

BTW shame on the other guy for not checking the services that were
running first before installing the same one. How many resources did he
waste of the organizations' time and money by not doing his homework.

Job Cacka

-----Original Message-----
From: redhat-list-bounces at redhat.com
[mailto:redhat-list-bounces at redhat.com]On Behalf Of Ryan Golhar
Sent: Monday, January 30, 2006 1:45 PM
To: 'General Red Hat Linux discussion list'
Subject: OpenLDAP + User Authentication

I have an LDAP server which I'm using to authenticate my users from.
Recently, another dept here put their own LDAP server in place with a
different set of users that may/may not be in my LDAP.

What I'd like to do is have my machines attempt to authenticate a user
from my LDAP, and if the user doesn't exist, have the LDAP refer to the
other dept's LDAP server.  Is this possible with LDAP?  If so, can
anyone point me to where I can read up on this?  I found a little
information on superior referrals, but no detailed information on how it
works.

Ryan

--
redhat-list mailing list
unsubscribe mailto:redhat-list-request at redhat.com?subject=unsubscribe
https://www.redhat.com/mailman/listinfo/redhat-list

--
redhat-list mailing list
unsubscribe mailto:redhat-list-request at redhat.com?subject=unsubscribe
https://www.redhat.com/mailman/listinfo/redhat-list

www.preferredcare.org
"An Outstanding Member Experience," Preferred Care HMO Plans -- J. D. Power and Associates

Confidentiality Notice:
The information contained in this electronic message is intended for the exclusive use of the individual or entity named above and may contain privileged or confidential information.  If the reader of this message is not the intended recipient or the employee or agent responsible to deliver it to the intended recipient, you are hereby notified that dissemination, distribution or copying of this information is prohibited.  If you have received this communication in error, please notify the sender immediately by telephone and destroy the copies you received.