Originally Posted by Felipe
I'm using Openldap. But I want to chain some searches to Active Directory.
What I try is to use openldap as a front-end that solves queries of domain.com an ad.red (chaining).
- Can any tell me how can be configured openldap for this (don't need secure connections with ldaps).
And a second question:
- Can any tell me how to pass authentication from opemldap to Active Directory using users/password and/or kerberos?
Not exactly sure what you're referring to by "chaining".
At any rate, Active Directory is
an LDAP system (granted, it's also Kerberos extensions to it, but still...). As such, you can query AD with the standard LDAP tools so long as you have an account in the directory to proxy your requests with. So, treat it like any other LDAP source - use the normal extensions to OpenLDAP that you would for any multi-source query system.
You'd probably want to look at OpenLDAP's "meta" backend
for linking multiple LDAP sources into a common query-space.