Hello,
 
I'v implemented a OpenLDAP Metadirectory that proxying 2 Microsft AD targets.
 
One target is customers AD, the second our AD for management purposes.
 
Problem: slapd-meta tries to authenticate the user first by one target and if this user there not exist will be the second target connected.
Means: in both directories Intrusion Detection register a lot of unsuccessfully authentication.
 
Is it possible to implement the controlled proxy with OpenLDAP ?
 
E.g., like Radiusproxy based on realm: when username is xxx@domain01.com go to the target1, and when username is xxx@domain99.net go to the target2.
 
 
Kind regards
Waldemar