Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

SEC-130: Support for Active Directory logins #391

Closed
spring-projects-issues opened this issue Dec 20, 2005 · 1 comment
Closed

SEC-130: Support for Active Directory logins #391

spring-projects-issues opened this issue Dec 20, 2005 · 1 comment

Comments

@spring-projects-issues
Copy link

@spring-projects-issues spring-projects-issues commented Dec 20, 2005

Luke Taylor(Migrated from SEC-130) said:

This can probably be done using a specific authenticator implementation or by extending the existing BindAuthenticator.

@spring-projects-issues
Copy link
Author

@spring-projects-issues spring-projects-issues commented Feb 3, 2006

Luke Taylor said:

It seems that AD can be supported using the existing authentictor. From my post of the dev list:

[quote]
I’ve heard of two “alternative” pseudo-DN syntaxes supported by AD. One
is “username@domain” and the other is “domain\username”.

I think you can try binding with either of these using the existing
BindAuthenticator. If the user types in the entire name, you could have:

{0}

or if they only type in the username part, you could use something like

{0}@mycompany.com

```
domain\{0}

```

[/quote]

Anthony Geoghegan’s response:

[quote]

I’ve tested both:
{0}@mycompany.com

```
domain\{0}
```

And they work with Active Directory 2003. The top one is of special
interest as this is the Kerberos service principal name.

[/quote]

User’s can of course also bind with a full DN directly.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Projects
None yet
Linked pull requests

Successfully merging a pull request may close this issue.

None yet
2 participants
@spring-projects-issues and others