IdP Connection to Active Directory
Cantor, Scott
cantor.2 at osu.edu
Wed Apr 29 19:43:52 EDT 2020
I guess it's not common to debug this way, but personally it seems like connecting a DataConnector for attribute lookup with an obviously valid bind credential (since the user's password has nothing to do with that step) might be a good way to debug the basic connection and credential without getting authentication complexities in the way.
LDAP is not an authentication protocol anyway, so starting with using it for the purpose its actually intended might be a simplifying starting point.
And as always, if you have AD, Kerberos >>> LDAP for the authentication step anyway, and is much easier to set up.
-- Scott
More information about the users
mailing list