smishler Posted February 9, 2009 Share Posted February 9, 2009 Will LDAP authentication work when a user attempts to log in with their long name (ie., Shawn Mishler) as opposed to their short name (ie., smishler)? If so, I assume Get (AccountName) will return the user's long name? Thanks. Link to comment Share on other sites More sharing options...
Steven H. Blackwell Posted February 9, 2009 Share Posted February 9, 2009 LDAP has nothing to do with External Server Authentication. Please see the External Server Authentication Tech Brief on this subject. Active Diretory and Open Directory are the supported protocols. On OS X, in Open Directory, the short name is the one used and recognized. Please remember that while there can be External Authentication under Open Directory, there is no Single Sign On. SSO can be emulated by use of the KeyChain in OS X. HTH Steven Link to comment Share on other sites More sharing options...
smishler Posted February 9, 2009 Author Share Posted February 9, 2009 Yes I was referring to Open Directory authentication (which I always confuse with LDAP). I was hoping to be able to use short name and/or long name. Also, I looked all through the tech brief and did several searches online and no where did I find any mention of Open Directory using only the short name. Thanks. Link to comment Share on other sites More sharing options...
Newbies nostromo1965 Posted February 27, 2009 Newbies Share Posted February 27, 2009 This *IS* possible. See this link: http://support.apple.com/kb/TA24157?viewlocale=en_US While the title of the document says it's just for AFP connections, this works for any network authentication dialog box that the user needs to authenticate to. Link to comment Share on other sites More sharing options...
Newbies lee_mackey Posted June 26, 2014 Newbies Share Posted June 26, 2014 "LDAP has nothing to do with External Server Authentication" -- this is a ridiculous thing to say. Open Directory and Active Directory are Apple's and Microsoft's implementations of the LDAP protocol, respectively. This is like saying "we don't support email, we only support Gmail." Link to comment Share on other sites More sharing options...
Wim Decorte Posted June 26, 2014 Share Posted June 26, 2014 "LDAP has nothing to do with External Server Authentication" -- this is a ridiculous thing to say. Well then, welcome to the forums. You're mistaken. OD and AD are implementations of a "Directory Service". LDAP is nothing but a protocol that can interact with a Directory Service. What you are saying is that HTTP is the same as IIS or Apache. Link to comment Share on other sites More sharing options...
Steven H. Blackwell Posted June 27, 2014 Share Posted June 27, 2014 What Wim said. Additionally, in the Console there are a number of settings regarding LDAP. These do not pertain in any fashion to External Server Authentication. Many people are understandably confused about this, thinking that the LDAP panel is where External Server Authtication resides. It does not reside there. Steven Link to comment Share on other sites More sharing options...
Recommended Posts
This topic is 3563 days old. Please don't post here. Open a new topic instead.
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now