Configuring LDAP to use two containers
Is it possible to configure LDAP so that users in two different containers can be considered for authentication?
Our users are spread across two containers in LDAP:
1) OU=Accounts,DC=xyz,DC=com
2) CN=Users,DC=xyz,DC=com
When we initially configured it, we tried using only the common base DN but that did not work.
We are using Tomcat against Microsoft Active Directory.
Our users are spread across two containers in LDAP:
1) OU=Accounts,DC=xyz,DC=com
2) CN=Users,DC=xyz,DC=com
When we initially configured it, we tried using only the common base DN but that did not work.
We are using Tomcat against Microsoft Active Directory.
One answer
Ideally, mentioning DC=xyz,DC=com as base user/search DN should work. I did something similar in WAS and that worked.
I guess the trick is, the primary user name that you mention in the setup should have the capability to seach all the users across both the containers. That means the user should exist somewhere up in the LDAP hierarchy.
Hope this helps!