Oliver,
Olivier Bitsch schrieb (04.03.2013 10:49 Uhr):
I made several tries without success, but I would like to know if it's
possible to bind by taking care of the following points :
* Active Directory users can authenticate with
cn=login,cn=Users,dc=domain, but it's also possible to bind with
login@domain, is it possible to give this information to SOGo?
(not only for the Administrator).
This is not pure LDAP so linux ldap libs do not support this, this is
special to MS ADS. An LDAP bind has to be by DN (simple bind) or by an
SASL identity (sasl bind).
* Actually, when a user authenticate, SOGo uses the Administrator
account to search in LDAP then check the login exist, but I don't
like to have clear password in my files, is it possible to bind
directly with the user account then use the same login to get the
other user information useful for SOGo (with the format
login@domain explain before).
You don't need an administrator account for search, if all the data
needed to identify the user in the DIT (find the DN) is available by
anonymous search.
Marc
--
[email protected]
https://inverse.ca/sogo/lists
