Re: LDAP Authentication in a NT Domain

From: Jim Campau (Jim_Campau@bausch.com)
Date: 08/27/02 

From: "Jim Campau" <Jim_Campau@bausch.com>
Date: Tue, 27 Aug 2002 17:18:37 -0400

Shawn,

NT4 uses a SAM database not a LDAP relational database. Furthermore you need
authentication. Like it or not you have 2 choices, upgrade to 2000 AD or
waste alot of time and resourses looking for a third party solution ( I know
of none). IIS does it because the metabase it uses is LDAP acessable. It can
be read using LDAP but it will not help you to authenticate. Exchange 5.5
uses a connector to allow LDAP access but again it will not help you for
authentication.
I fail to see the issue with an AD 2000 upgrade. As long as you have a NT4
PDC and a NT4 BDC, upgrade the PDC to 200 AD and run in mixed mode with the
NT4 BDC leave the domain as it is untill you are ready. The upgrade process
is very simple, quick and painless as well as completely reversable since
you still have the BDC to promote to PDC if need be. Then you can plan and
execute a real migration when you have time.

"Shawn" <shawn.weishalla@courts.state.mn.us> wrote in message
news:#KVHyogTCHA.2400@tkmsftngp13...
> I am looking for a solution to a problem we have with a application that
was
> developed for us.
> We are currently still in a NT domain structure (moving to AD, just not in
> time for release), the new application does LDAP calls to AD, nds, or any
> other type of directory service.
> Has anyone seen a way to do LDAP calls to a NT domain for authentication
> purposes?
> I know IIS supports both types of authentication, how does it do that?
>
>

Relevant Pages

  • Re: Directory Services, LDAP or similar
    ... In other projects, we managed the user authentication by creating tables that define all users and its allowed capacities, then the application queryies that data to verify if a user has access to some feature or not. ... The above ID and password are sent to the service at login time. ... They are using Novell eDirectory at the enterprise level; yes it's LDAP. ... We already do that for three different DB servers; ...
    (borland.public.delphi.non-technical)
  • Re: noob on slapd with sasl errors
    ... If I may share advice based on my own trials & tribulations with LDAP ... people who need network authentication and the current state of ... context of network authentication, LDAP really is just a protocol used ... I have no idea how sasl works and why it is needed here, or even more, ...
    (Ubuntu)
  • Re: Directory Services, LDAP or similar
    ... we managed the user authentication by creating tables ... The above ID and password are sent to the service at login ... Novell eDirectory at the enterprise level; yes it's LDAP. ... servers; ...
    (borland.public.delphi.non-technical)
  • Re: Recommended strategy for providing access to web apps via Inte
    ... LDAP is an ugly solution on the public internet, ... These federated authentication protocols are designed to address these ... Co-author of "The .NET Developer's Guide to Directory Services Programming" ...
    (microsoft.public.windows.server.active_directory)
  • Re: check a user password
    ... ADAM user you'll have perform an LDAP Bind operation, ... However, as I said in another thread, LDAP is not an *authentication* protocol nor is "LDAP server" an authentication service. ... The LDAP bind operation is meant to "validate" the LDAP clients credentials in order, for the server, to be able to perform directory "authorization" checks. ... between a SQL client and a SQL server, or an authenticated session between a "Windows" client and a "File server" service. ...
    (microsoft.public.dotnet.languages.csharp)