IdP Connection to Active Directory

Cantor, Scott cantor.2 at
Wed Apr 29 19:43:52 EDT 2020

I guess it's not common to debug this way, but personally it seems like connecting a DataConnector for attribute lookup with an obviously valid bind credential (since the user's password has nothing to do with that step) might be a good way to debug the basic connection and credential without getting authentication complexities in the way.

LDAP is not an authentication protocol anyway, so starting with using it for the purpose its actually intended might be a simplifying starting point.

And as always, if you have AD, Kerberos >>> LDAP for the authentication step anyway, and is much easier to set up.

-- Scott

More information about the users mailing list