Multiple username attribute
Morgan, Andrew Jason
morgan at oregonstate.edu
Wed Mar 25 13:10:30 EDT 2020
You can do something like this in idp.properties:
idp.authn.LDAP.userFilter = (|(cn={user})(mail={user}))
Thanks,
Andy
________________________________
From: users <users-bounces at shibboleth.net> on behalf of Peter Schober <peter.schober at univie.ac.at>
Sent: Wednesday, March 25, 2020 2:03 AM
To: users at shibboleth.net <users at shibboleth.net>
Subject: Re: Multiple username attribute
* Kicic Sakib <Sakib.Kicic at smhi.se> [2020-03-25 09:07]:
> > * Kicic Sakib <Sakib.Kicic at smhi.se> [2020-03-24 13:42]:
> > > Is it possible to configure multiple "username" attributes for authentication in ldap.properties?
> > > idp.authn.LDAP.userFilter = cn, mail
> >
> > Yes, by using a valid LDAP search filter.
>
> Do you have any example of that?
Besides searching the web for "LDAP search filters", you mean?
LDAP is defined in RFC 4510 and that tells you that search filters are
defined in RFC 4515 and that actually has examples:
https://tools.ietf.org/html/rfc4515#section-4
-peter
--
For Consortium Member technical support, see https://wiki.shibboleth.net/confluence/x/coFAAg
To unsubscribe from this list send an email to users-unsubscribe at shibboleth.net
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://shibboleth.net/pipermail/users/attachments/20200325/772ddf21/attachment.html>
More information about the users
mailing list