Jump to content

  •  

Photo

LDAP & Long Names


  • Please log in to reply
6 replies to this topic

#1 smishler  novice

smishler
  • Members
  • 31 posts
  • FM Application:11 Advance
  • Platform:Mac OS X Snow Leopard
  • Skill Level:Intermediate
  • Membership:TechNet
  • Time Online: 9h 49m 14s

Posted 09 February 2009 - 09:17 AM

Will LDAP authentication work when a user attempts to log in with their long name (ie., Shawn Mishler) as opposed to their short name (ie., smishler)? If so, I assume Get (AccountName) will return the user's long name? Thanks.
  • 0

#2 Steven H. Blackwell  Humble Servant

Steven H. Blackwell
  • Moderators
  • 4,763 posts
  • FM Application:13 Advance
  • Platform:Cross Platform
  • Skill Level:Expert
  • Certification:7, 8, 9, 10, 11, 12
  • Membership:FileMaker Business Alliance, FIleMaker Platinum Member
  • Time Online: 9d 6h 47m 50s

Posted 09 February 2009 - 11:40 AM

LDAP has nothing to do with External Server Authentication. Please see the External Server Authentication Tech Brief on this subject. Active Diretory and Open Directory are the supported protocols.

On OS X, in Open Directory, the short name is the one used and recognized.

Please remember that while there can be External Authentication under Open Directory, there is no Single Sign On. SSO can be emulated by use of the KeyChain in OS X.

HTH

Steven
  • 0

Steven H. Blackwell
Platinum Member Emeritus, FileMaker Business Alliance
Platinum Member, FileMaker Business Alliance (2007-2011)
Partner Member, FileMaker Solutions Alliance (1998-2007)
Partner Member, Claris Solutions Alliance (1997)
FileMaker Certified Developer 7|8|9|10|11|12
FileMaker Authorized Trainer 9|10|11|12
_ _ ____________________________ _ _
http://www.fmp-power.com
http://www.filemakersecurity.com


#3 smishler  novice

smishler
  • Members
  • 31 posts
  • FM Application:11 Advance
  • Platform:Mac OS X Snow Leopard
  • Skill Level:Intermediate
  • Membership:TechNet
  • Time Online: 9h 49m 14s

Posted 09 February 2009 - 11:49 AM

Yes I was referring to Open Directory authentication (which I always confuse with LDAP). I was hoping to be able to use short name and/or long name. Also, I looked all through the tech brief and did several searches online and no where did I find any mention of Open Directory using only the short name. Thanks.
  • 0

#4 nostromo1965  newbie

nostromo1965
  • Newbies
  • Pip
  • 1 posts
  • FM Application:9

Posted 27 February 2009 - 11:50 AM

This *IS* possible.

See this link:

http://support.apple...iewlocale=en_US

While the title of the document says it's just for AFP connections, this works for any network authentication dialog box that the user needs to authenticate to.
  • 0

#5 lee_mackey  newbie

lee_mackey
  • Newbies
  • Pip
  • 1 posts
  • FM Application:11 Advance
  • Platform:Mac OS X Mavericks
  • Skill Level:Expert

Posted 26 June 2014 - 09:55 AM

"LDAP has nothing to do with External Server Authentication" -- this is a ridiculous thing to say. Open Directory and Active Directory are Apple's and Microsoft's implementations of the LDAP protocol, respectively.

 

This is like saying "we don't support email, we only support Gmail."


  • 0

#6 Wim Decorte  Carpal Tunnel

Wim Decorte
  • Moderators
  • 3,603 posts
  • LocationToronto
  • FM Application:13 Advance
  • FMGo:iPhone / iPod Touch, iPad
  • Platform:Cross Platform
  • Skill Level:Expert
  • Certification:7, 8, 9, 10, 11, 12, 13
  • Membership:TechNet
  • Time Online: 35d 4h 44m 37s

Posted 26 June 2014 - 11:20 AM

"LDAP has nothing to do with External Server Authentication" -- this is a ridiculous thing to say. 

 

Well then, welcome to the forums.

 

You're mistaken.  OD and AD are implementations of a "Directory Service".  LDAP is nothing but a protocol that can interact with a Directory Service.

 

What you are saying is that HTTP is the same as IIS or Apache.


  • 0

#7 Steven H. Blackwell  Humble Servant

Steven H. Blackwell
  • Moderators
  • 4,763 posts
  • FM Application:13 Advance
  • Platform:Cross Platform
  • Skill Level:Expert
  • Certification:7, 8, 9, 10, 11, 12
  • Membership:FileMaker Business Alliance, FIleMaker Platinum Member
  • Time Online: 9d 6h 47m 50s

Posted 27 June 2014 - 10:26 AM

What Wim said.

 

Additionally, in the Console there are a number of settings regarding LDAP.  These do not pertain in any fashion to External Server Authentication.  Many people are understandably confused about this, thinking that the LDAP panel is where External Server Authtication resides.  It does not reside there.

 

Steven


  • 0

Steven H. Blackwell
Platinum Member Emeritus, FileMaker Business Alliance
Platinum Member, FileMaker Business Alliance (2007-2011)
Partner Member, FileMaker Solutions Alliance (1998-2007)
Partner Member, Claris Solutions Alliance (1997)
FileMaker Certified Developer 7|8|9|10|11|12
FileMaker Authorized Trainer 9|10|11|12
_ _ ____________________________ _ _
http://www.fmp-power.com
http://www.filemakersecurity.com





FMForum Advertisers