IDP41 configuration problem to authenticate against multiples branches of an AD
Cantor, Scott
cantor.2 at osu.edu
Fri May 20 20:02:01 UTC 2022
Necroing this, there are a couple of updates regarding these LDAP use cases.
Daniel did some work to recover the full example XML needed to do this the "old" way and the V4 page is updated a bit with those changes, at least in part.
However, he also pointed out the obvious (that I clearly just didn't even pick up on), which is that these aggregated "multiple branches, multiple directories, etc.) use cases are not really meant to be handled anymore by making the single validator do these really complex things.
You just have to define different LDAPCredentialValidator beans that use different LDAP configurations, either different base DNs, or different bind strategies, or whatever is going on. Chaining them together is trivial now and there are examples showing how to do that in the earlier part of the page.
I should have realized that and just pointed it out. The crazy wiring really isn't required anymore.
-- Scott
More information about the users
mailing list