Home.... | log in.... | Pub my question! | Sign-up....
Java-index >> Core >> Core APIs

Active Directory and many OUs

Hello all,

This topic might have been talked about before but after a lot of searching I still have not found a solution, so I ask for a bit of help.

In our Active Directory there are many OUs where users are kept. There is no one top OU where you can start your search. I don't really know why it was set up this way and I don't have an option to change that. I would *really* like to have ou=users like most have!

So when I try to authenticate a user (I'm installing DSpace in my uni) I cannot automatically add the OU for the user trying to log in and the users themselves don't know their OU (well, why would they!).

I'm hoping there is some simple solution to this. Maybe JNDI API allows for searching in many OUs at the same time (some fixed list in the code)? Or maybe the OU is not needed at all in the search?

Any help/hints would be appreciated.

best regards, Logi

[925 byte] By [LogiPa] at [2007-11-26 17:05:21]
«« Fixing a JScrollPane to center.
»» ASP CDONTS problem
# 1

?

For searching, you can issue a subtree search will search through the entire subtree, irrespective of how many levels of OU's may exist, by using SearchControls.SUBTREE_SCOPE

Have a look at the tutorial at http://java.sun.com/products/jndi/tutorial/basics/directory/scope.html

For authentication, you can either get the user to enter their:

distinguished name

(cn=Albert Eirnstein, ou=Research,dc=Antipodes,dc=com), although that is not entirely user friendly

their NT style logon name (samAccountName)

ANTIPODES\alberte, more user friendly,

or their Windows 200 style logon name (userPrincipalName),

alberte@antipodes.com, equally as user friendly.

You may also want to look at some of the following posts:

JNDI, Active Directory and Authentication (Part 1) (Kerberos)

http://forum.java.sun.com/thread.jspa?threadID=579829&tstart=300

JNDI, Active Directory & Authentication (part 2) (SSL)

http://forum.java.sun.com/thread.jspa?threadID=581425&tstart=50

JNDI, Active Directory & Authentication (part 3) (Digest-MD5)

http://forum.java.sun.com/thread.jspa?threadID=581868&tstart=150

JNDI, Active Directory & Authentication (part 4) (SASL EXTERNAL)

http://forum.java.sun.com/thread.jspa?threadID=641047&tstart=0

JNDI, Active Directory and Authentication (part 5, LDAP Fastbinds)

http://forum.java.sun.com/thread.jspa?threadID=726601&tstart=0

JNDI, Active Directory, Referrals and Global Catalog

http://forum.java.sun.com/thread.jspa?threadID=603815&tstart=15

adler_stevena at 2007-7-8 23:33:06 > top of Java-index,Core,Core APIs...
Core
Core APIs

Core New Topic

Core Hot Topic

Core

All Classified