I would start here:
and see where that leads.
On Tue, Oct 14, 2014 at 1:46 PM, Jeff Lebo <jeflebo(a)outlook.com> wrote:
Goal: LDAP server in Internet facing DMZ to provide authentication
externally hosted applications using internal AD credentials.
I've done a LOT of reading and testing, and there is one thing I am still
not 100% clear on:
Is it possible to do this WITHOUT having a local user database on the
OpenLDAP proxy? We will have thousands of users that will need to
authenticate, and I can't maintain another user database (adds, removes,
etc..). Is there a way to make OpenLDAP just act more like a reverse proxy
and forward anything that matches a specific domain on to the internal
LDAP/AD server for password verification?
College of Education, University of Hawaii at Manoa
Cell (260) 232-2357