[ome-users] Using something other than CN for username with LDAP
josh.moore at gmx.de
josh.moore at gmx.de
Thu Jun 11 09:09:32 BST 2009
Hello Jay,
at the moment it is not possible to use anything other than CN as the
username without writing your own extension. Obviously this is a
limitation that'd we like to work around, but the flexibility of LDAP
makes it difficult to come up with a general (i.e. configurable)
solution.
Along with the other recent LDAP requests:
http://lists.openmicroscopy.org.uk/pipermail/ome-users/2009-June/001811.html
http://lists.openmicroscopy.org.uk/pipermail/ome-users/2009-June/001812.html
we're very interested in finding out, first, if we can support a common
subset of LDAP functionality that will meet most needs. Failing that,
if the existing plugin architecture is usable.
For example, you might take a look at:
https://trac.openmicroscopy.org.uk/omero/browser/trunk/components/server/src/ome/security/auth/LdapPasswordProvider.java
and see if implementing a similar- or sub-class for your site seems to
be a reasonable amount of work for having your LDAP integrated.
Let us know your thoughts. To let everyone take part in the
dicsussion, I've created a forum thread:
http://openmicroscopy.org/community/viewtopic.php?f=5&t=14
Best wishes,
~Josh
Jay Copeland writes:
> We using LDAP to authenticate our Omero users. Is it possible to set it up
> so that it uses something other than CN for username. In our environment CN
> is the user's full name in Active Directory. This can be in the form of John
> Smith, John Hugh Smith, John H. Smith, or John H Smith. Unfortunately the
> typical user does not know which. We have a shorter user ID that most people
> know and would prefer to use this as the username for Omero.
More information about the ome-users
mailing list