[Fedora-directory-users] Re: Can't authenticate to directory server
Mont Rothstein
mont.rothstein at gmail.com
Sun Nov 13 17:42:26 UTC 2005
Thanks for the reference, I hadn't found that yet.
-Mont
On 11/12/05, Noriko Hosoi <nhosoi at redhat.com> wrote:
>
> Mont Rothstein wrote:
>
> I solved my own problem, partially, but there is still something I don't
> understand.
>
> My problem was in trying to use the Secure authentication type in my
> Windows app. When I changed the authentication type to None (which in
> Windows parlance means a simple bind) it worked. All of the entries I had
> made for allowing my specific host access, and permissions I had granted the
> account (adding the user to the Domain Admins) were unnecessary.
>
> However, what I can't figure out is how to use any authentication that is
> stronger. I presume that the Windows None/simple bind equates to Plain. My
> supported sasl mechanisms are: external, plain, gssapi, digest-md5,
> cram-md5, and anonymous.
>
> FDS supports digest-md5 and gssapi:
> http://www.redhat.com/docs/manuals/dir-server/ag/7.1/ssl.html#1083165
>
> Thanks,
> --noriko
>
>
> Do I need to add to this list to communicate via stronger authentication
> with my Windows app, and if so how do I add to this list?
>
> Thanks,
> -Mont
>
>
> On 11/12/05, Mont Rothstein <mont.rothstein at gmail.com> wrote:
> >
> > I can't authenticate to my directory server from another machine.
> >
> > My directory server is running on RedHat ES4. I am trying to use Secure
> > authentication (NTLM?) from a Windows C# .NET application. I suspect my
> > problem is one of incorrect configuration on the directory server side.
> >
> > I can access the directory server from the Windows app using anonymous
> > access.
> >
> > I created a user in the directory server and added that user to the
> > Directory Administrators Group's ACI. I also added the IP address of the
> > machine I am trying to communicate from to the Hosts list in the Directory
> > Administrators Group ACI.
> >
> > I can login to the console using my user
> > (uid=mont,ou=people,dc=foray,dc=com) on my Linux server. I have tried
> > logging in from the Windows app using both the full RDN and simply the user
> > name "mont". Neither work.
> >
> > Any ideas as to what needs to be done to enable authentication from a
> > remote machine would be greatly appreciated.
> >
> > Thanks,
> > -Mont
> >
> >
> ------------------------------
>
> --
> Fedora-directory-users mailing list
> Fedora-directory-users at redhat.com
> https://www.redhat.com/mailman/listinfo/fedora-directory-users
>
>
>
> --
> Fedora-directory-users mailing list
> Fedora-directory-users at redhat.com
> https://www.redhat.com/mailman/listinfo/fedora-directory-users
>
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://listman.redhat.com/archives/fedora-directory-users/attachments/20051113/b65318e1/attachment.htm>
More information about the Fedora-directory-users
mailing list