Luke Taylor (Migrated from SEC-1181) said:
Active directory is sufficiently different from standard LDAP and is very commonly used, so we should probably have a specific authentication provider which handles typical AD authentiation, plus namespace support.
Luke Taylor said:
I've implemented a simple AuthenticationProvider which authenticates using the AD userPrincipalName. It is configured with the domain name and the server URL. It can also optionally be configured to parse the Active Directory error codes from failed authentication messages and raise corresponding exceptions (expired, locked etc).
This issue supersedes #1215
This issue supersedes #1427