Re: Querying AD via LDAP w/ simple authentication - need domain name?
From: Dave Harry (DaveHarry_at_please.keep.replies.in.the.newsgroup)
Date: 05/18/04
- Next message: Rod: "Re: Windows 2003 from W2K"
- Previous message: Chriss3: "Re: Logon scripts"
- In reply to: Joe Kaplan \(MVP - ADSI\): "Re: Querying AD via LDAP w/ simple authentication - need domain name?"
- Messages sorted by: [ date ] [ thread ]
Date: Tue, 18 May 2004 16:39:23 +1000
Hi Folks
This is something I'm also having trouble with. I've spent hours on the
thing.
I want to be able to use a 'public address book' method for finding email
addresses in W2k3 STD.
We're currently still using a Windows Messaging Postoffice for internal
mail, with it's address book, but want to dump it for POP/SMTP. Some clients
are still on Win98, and the PC's are not "IN" the domain. But the username
and passwords are identical in and out of the domain.
Can I have these users' PCs access and search for email addresses by name
without the computer itself in the domain? If so, how?
Would someone be so kind as to indicate the basic steps required to get a
postoffice-type address list running under 2003's LDAP?
TIA
-- Dave Harry "Joe Kaplan (MVP - ADSI)" <joseph.e.kaplan@removethis.accenture.com> wrote in message news:%23mgBSTIPEHA.1612@TK2MSFTNGP11.phx.gbl... > Doh! Not sure why I always get that confused. What I think I meant was > that you can't use the DN with a secure bind. > > Thanks! > > Joe K. > > "Joe Richards [MVP]" <humorexpress@hotmail.com> wrote in message > news:u8SGnBGPEHA.2468@TK2MSFTNGP11.phx.gbl... > > Pst... check out my response... Not sure with dot NET but the underlying > LDAP > > API will let you use all three for a simple bind... > > > > joe > > > > -- > > Joe Richards Microsoft MVP Windows Server Directory Services > > www.joeware.net > > > > > > > > Joe Kaplan (MVP - ADSI) wrote: > > > With Simple bind, you must use the DN. However, if you use Secure > binding > > > (available with the MS LDAP API, ADSI, S.DS, etc.), then you can specify > DN, > > > NT Logon Name, UPN or just samAccountName. > > > > > > Make sure if you are using Simple Bind that you use SSL with LDAP or you > > > will be passing those credentials over the network in plain text (unless > you > > > use IPSEC or something). > > > > > > Joe K. > > > > > > "corky" <twistdpair@hotmail.com> wrote in message > > > news:e2d5abce.0405171212.3bcb6a37@posting.google.com... > > > > > >>Hello all: > > >> > > >>I have a question tht does not seem to be easily answered by > > >>searching. > > >> > > >>When using the "simple authentication" mechanism in LDAP, do you need > > >>to qualify it with a domain name? If not, what conditions would force > > >>you to? > > >> > > >>We are trying to query AD via LDAP using just a username and password. > > >>It will not work, unless it is in the format of [domain > > >>name]\[username]. > > >> > > >>Is this expected behavior? Are there circumstances when this would not > > >>be required? We have an office machine that is supposed to gather > > >>email addresses from AD without having to use the [domain > > >>name]\[username] format, but rather the [username only] format. > > >> > > >>Thanks. > > >> > > >>-corky > > > > > > > > > > >
- Next message: Rod: "Re: Windows 2003 from W2K"
- Previous message: Chriss3: "Re: Logon scripts"
- In reply to: Joe Kaplan \(MVP - ADSI\): "Re: Querying AD via LDAP w/ simple authentication - need domain name?"
- Messages sorted by: [ date ] [ thread ]
Relevant Pages
|
