On Tue, 2010-02-09 at 14:21 -0700, Craig White wrote: > On Tue, 2010-02-09 at 18:08 +0000, Joseph L. Casale wrote: > > >This looks like the way to go, I don't like the username /pass stored in plain text but maybe if I create a special group that doesn't really have any privileges this would work, geez AD is just plain bad...lol, Thanks. > > > > I guess you think insecure would be better? If I understand your need, you want > > to make AD insecure, so please enable anonymous binds so you don't need a user/pass > > to make the query:) > > > > Or program your own auth backend that binds with the intended creds asking for auth:) > > Oh, and do this w/o tls/ssl because you want it insecure:) > ---- > seems to me that permitting an anonymous bind to LDAP is inherently more > secure than requiring a user/password combination so I don't think that > your explanation is exactly true. In Microsoft's view, the only systems > querying LDAP would be systems automatically passing the authentication. > > Craig ---- Yes it is true, you have to have that for it to work correctly. John _______________________________________________ CentOS mailing list CentOS@xxxxxxxxxx http://lists.centos.org/mailman/listinfo/centos
Re: Anyone using Active Driectory auth with Centos 5.4.....?
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
- To: CentOS mailing list <centos@xxxxxxxxxx>
- Subject: Re: Anyone using Active Driectory auth with Centos 5.4.....?
- From: JohnS <jses27@xxxxxxxxx>
- Date: Wed, 10 Feb 2010 02:31:04 -0500
- Delivered-to: centos@xxxxxxxxxx
- In-reply-to: <1265750469.19927.4.camel@xxxxxxxxxxxxxxxxxxxxxxxxxxx>
- References: <fc808e201002080818s28289733rf7e478594b1deb1b@xxxxxxxxxxxxxx> <d62d87b11002081649r3af1d458l1496e41901356b27@xxxxxxxxxxxxxx> <fc808e201002090835y2b036771y23747c20b66ce70b@xxxxxxxxxxxxxx> <d10cc3ba1002090857w32e10303m64af00434894853a@xxxxxxxxxxxxxx> <fc808e201002090921r3f26fef0w80acd9e8c8aaf525@xxxxxxxxxxxxxx> <CA5A491E9DEFBE4CB777DE97E21575E90D2A05@xxxxxxxxxxxxxxxxxxxxxxxxx> <1265750469.19927.4.camel@xxxxxxxxxxxxxxxxxxxxxxxxxxx>
- Follow-Ups:
- Re: Anyone using Active Driectory auth with Centos 5.4.....?
- From: Dan Burkland
- Re: Anyone using Active Driectory auth with Centos 5.4.....?
- References:
- Anyone using Active Driectory auth with Centos 5.4.....?
- From: Tom Bishop
- Re: Anyone using Active Driectory auth with Centos 5.4.....?
- From: Arvind P R
- Re: Anyone using Active Driectory auth with Centos 5.4.....?
- From: Tom Bishop
- Re: Anyone using Active Driectory auth with Centos 5.4.....?
- From: Pat and Lori Boyer
- Re: Anyone using Active Driectory auth with Centos 5.4.....?
- From: Tom Bishop
- Re: Anyone using Active Driectory auth with Centos 5.4.....?
- From: Joseph L. Casale
- Re: Anyone using Active Driectory auth with Centos 5.4.....?
- From: Craig White
- Anyone using Active Driectory auth with Centos 5.4.....?
- Prev by Date: Re: R package on centos 5.1
- Next by Date: Re: what causes CUPS to dis-enable a printer?
- Previous by thread: Re: Anyone using Active Driectory auth with Centos 5.4.....?
- Next by thread: Re: Anyone using Active Driectory auth with Centos 5.4.....?
- Index(es):
 |