Hi, I am new to zope and I am facing the problem using LDAPLoginAdapter Product. We Have Active Directory on windows 2000 server in place. following is a sample of a user record/entry in the Directory. CN=zope,OU=myCity,OU=migrated_user,OU=User Community,DC=myCompanyName,DC=com. Following are the sample user object attributes mail zzope@yahoo.com objectClass top objectClass person objectClass user name zzope sn zzope I am able to connect to the Directory service for sure because I can see all the groups listed in the cache tab. But my problem is that I am not able to log into the site using my NT UserId and Password. Secondly I dont see any users listed in the Cache tab. That is understandable because it says that only the currently loged in users would be listed and that the superuser would not be listed. I need help on this urgently. One more thing - I would like to know if there exists any article on the usage of LDAPLoginAdapter. I want to know how the authentication happens and how roles are fetched and how roles are internally mapped to prevent unauthorized access to restricted areas. I have gone through the readme.txt that accompanies the product. But it did'nt turn out to be very helpful. Kindly help. thanks. __________________________________________________ Do You Yahoo!? Make a great connection at Yahoo! Personals. http://personals.yahoo.com
hi, to find out if users can be found you need to go to the "Search" tab and try to search for a record. whatever you input in the input field will be "wildcarded" before a search is undertaken, meaning input "ens" would find "jens" as well. as a general note, since i personally do not run any microsoft-based OS and have never worked with active directory i cannot promise that this product will work for you. it does work for standards-compliant LDAP servers, like OpenLDAP, netscape, etc. knowing micro$oft there might be things in active server that make it just ever so slightly incompatible with the LDAP spec. as far as usage information goes, you have README.txt, INSTALL.txt, SAMPLE_RECORDS.txt and a help link in every single screen of the zope management pages for this product. if you have specific questions please ask them after reading the available documentation. jens On Friday, October 12, 2001, at 10:24 , zope zope wrote:
Hi, I am new to zope and I am facing the problem using LDAPLoginAdapter Product. We Have Active Directory on windows 2000 server in place. following is a sample of a user record/entry in the Directory.
CN=zope,OU=myCity,OU=migrated_user,OU=User Community,DC=myCompanyName,DC=com.
Following are the sample user object attributes
mail zzope@yahoo.com objectClass top objectClass person objectClass user name zzope sn zzope
I am able to connect to the Directory service for sure because I can see all the groups listed in the cache tab. But my problem is that I am not able to log into the site using my NT UserId and Password. Secondly I dont see any users listed in the Cache tab. That is understandable because it says that only the currently loged in users would be listed and that the superuser would not be listed. I need help on this urgently. One more thing - I would like to know if there exists any article on the usage of LDAPLoginAdapter. I want to know how the authentication happens and how roles are fetched and how roles are internally mapped to prevent unauthorized access to restricted areas. I have gone through the readme.txt that accompanies the product. But it did'nt turn out to be very helpful. Kindly help. thanks.
__________________________________________________ Do You Yahoo!? Make a great connection at Yahoo! Personals. http://personals.yahoo.com
_______________________________________________ Zope maillist - Zope@zope.org http://lists.zope.org/mailman/listinfo/zope ** No cross posts or HTML encoding! ** (Related lists - http://lists.zope.org/mailman/listinfo/zope-announce http://lists.zope.org/mailman/listinfo/zope-dev )
On Fri, 12 Oct 2001, Jens Vagelpohl wrote:
as a general note, since i personally do not run any microsoft-based OS and have never worked with active directory i cannot promise that this product will work for you. it does work for standards-compliant LDAP servers, like OpenLDAP, netscape, etc.
LDAPLoginAdaptor also works with NetWare. -Tim -- Tim Wilson | Visit Sibley online: | Check out: Henry Sibley HS | http://www.isd197.org | http://www.zope.com W. St. Paul, MN | | http://slashdot.org wilson@visi.com | <dtml-var pithy_quote> | http://linux.com
On 12 Oct 2001 at 10:45, Timothy Wilson wrote:
On Fri, 12 Oct 2001, Jens Vagelpohl wrote:
as a general note, since i personally do not run any microsoft-based OS and have never worked with active directory i cannot promise that this product will work for you. it does work for standards-compliant LDAP servers, like OpenLDAP, netscape, etc.
LDAPLoginAdaptor also works with NetWare.
Yes with some twisting of the code. I have it working with Linux eDirectory here, but there were issues. I posted bugs on the bugtracker. I should go back and look at the resolution. btw, the LDAPUserAdapter authentication sequence always checks for the cookie before looking for form variables. I think this is backwards, because there's no way to login as another user without logging out first. I switched it on my setup. Brad Clements, bkc@murkworks.com (315)268-1000 http://www.murkworks.com (315)268-9812 Fax netmeeting: ils://ils.murkworks.com AOL-IM: BKClements
participants (4)
-
Brad Clements -
Jens Vagelpohl -
Timothy Wilson -
zope zope