Multiple LDAP domains on the same IDP
Adriano
Adriano.Dalessio at avasad.ch
Fri Oct 25 10:11:05 EDT 2019
Losen, Stephen C (scl) wrote
> Hi Adriano,
>
> We are using JAAS with IDP Password authentication. We have three LDAP
> servers listed in JAAS for password verification. At our site the
> usernames are standard, so user X on one LDAP server is the same user X on
> the other two. However, the passwords can differ. Since your two LDAP
> servers have different naming conventions, JAAS should work fine for you.
>From what I understand JAAS replaces the username/password check (and does
it for all LDAP configurations until one matches?), does it allow for the
same configurations for attribute, dataconnectors, etc.?
Craig Pluchinsky wrote
> There are docs on setting up multiple directories using aggregate dn
> resolver. Maybe that's what you're looking for?
>
> https://wiki.shibboleth.net/confluence/display/IDP30/LDAPAuthnConfiguration#LDAPAuthnConfiguration-MultipleDirectories
This seems to look like this:
tutorial (github)
<https://github.com/ConsortiumGARR/idem-tutorials/blob/master/idem-fedops/HOWTO-Shibboleth/Solutions/HOWTO%20Configure%20a%20Shibboleth%20IdP%20v3.2.1%20to%20authenticate%20Users%20existing%20on%20different%20LDAP%20Servers.md>
Is the main tutorial I could find on this topic...Would that work for my
"issue"?
--
Sent from: https://shibboleth.1660669.n2.nabble.com/Shibboleth-Users-f1660767.html
More information about the users
mailing list