On 14/11/10 18:29, Paulo Jorge N. Correia (paucorre) wrote:
Hi all,
I’m just starting with openLDAP and saslauth, and I’m trying to replicate what I can achieve with ADAM/AD LDS in Windows platform.
I’m trying to use openldap to aggregate user information from several AD servers under different forests.
So single point of contact from an LDAP perspective for an organization, and then openldap should pass-through the authentication request that receives to the AD DC of the respective user.
This works well with /saslauthd /for a single domain/, but if I need to do this with multiple domains, I don’t know how to configure saslauthd./
saslauthd can only launch one LDAP search to find a user and check his password. So if you're using several AD domains, you need to be able to perform a single search over all those domains : set up a back-meta with all the AD forests under it, and point saslauthd at that.
Jonathan