Hi!

I'm new to OpenLDAP / Slapd and try to integrate it into our AD setup.

I followed this howto: https://wiki.samba.org/index.php/OpenLDAP_as_proxy_to_AD

... and ended up with this config: https://bitbucket.org/code-orange/django-cdstack-tpl-openldap-proxy/src/mast...

Proxy mode works fine, I can bind with DN and password. So far so good. TLS works perfectly.

On AD, I can bind using either domain\username or username@example.com. Can I enable this again for my proxy? Atm this does not work: Invalid DN-Syntax, invalid DN.

I try to provide a secure way to connect a remove machine to our AD to read the contacts (a pbx). Using the DN worked for some devices but some have issues because of the length. If the DN is several OUs deep, the string is to long. Thats why I would like to allow the sAMAccountName as username (or USN, etc.).

How can I solve this? Do I need SASL for this?

Thank you very much!

Kind regards Kevin