On Thu, Feb 14, 2008 at 9:13 AM, Radosław Antoniuk<radek.antoniuk@xxxxxxxxx> wrote:> So, Is it possible? The question is, is there a way of using the> actual login/password credentials for the binding phase and if bind> succeeds ==> authentication true and go to authorization phase? The problem you're hitting is that before Apache can use theusername/password provided, it needs to translate the "web" usernameinto an LDAP distinguished name by querying LDAP -- this is what theBindDN/Password are for. Maybe your MSAD folks can setup a limited access user that can performthis specific query? -- Eric Covenercovener@xxxxxxxxx
|