This is an ugliness of using 2 different directories. We are looking into
how to coordinate passwords eDirctory and Active Directory. The problem
is that password values are stored internally and can't be read, thus not
copiable between the two. The only way to make this work is to have the
password changing mechanisms send things to both places. That in itself
is very difficult if you have multiple mechanisms.
--Jim Harle
On Tue, 26 Mar 2002, Edd Dawson wrote:
>
> Hi,
>
> Just an idea i'd like to run past people, and see if you think i'm barking
> up the wrong tree completely!
>
> At work we use Novell E-Directory for all our authentication needs, and i
> have used perl-ldap for talking to and unpdating E-directory.
>
> We have bought Cognos Impromptu Web, which for those who dont know serves
> reports via the web. Users have to log into it, and it uses Netscape
> Directory Server (which is ldap based) for user authentication... it will
> not let us use E-Directory for user authentication.
>
> We want to be able to sync the usernames and passwords in Netscape
> Directory Server with those in Novell E-Directory using Ldap, and most
> likely perl for writing the sync-ing mechanism.
>
> Does this seem like a reasonable proposition, and has anyone here ever had
> any experience of doing such a thing?
>
> Thanks for your time
> Edd Dawson
>
>
|
