Oracle FAQ Your Portal to the Oracle Knowledge Grid
HOME | ASK QUESTION | ADD INFO | SEARCH | E-MAIL US
 

Home -> Community -> Mailing Lists -> Oracle-L -> RE: ldap authentication

RE: ldap authentication

From: Goulet, Dick <DGoulet_at_vicr.com>
Date: Fri, 26 Aug 2005 11:19:56 -0400
Message-ID: <4001DEAF7DF9BD498B58B45051FBEA6502BE5E22@25exch1.vicorpower.vicr.com> 





Jason,



        Would you care to share that proof of concept code??? 



-----Original Message-----


From: oracle-l-bounce_at_freelists.org


[mailto:oracle-l-bounce_at_freelists.org] On Behalf Of Jason Heinrich
Sent: Friday, August 26, 2005 11:16 AM


To: stellr_at_cns.vt.edu; oracle-l


Subject: Re: ldap authentication



The article in question is talking about logging into an application
(especially an HTMLDB application), not logging into the database.  The
assumption is that the application is already connected/authenticated
with


the database.  The only software requirement for the LDAP authentication
then is an Oracle database with the DBMS_LDAP package, which comes with
Standard edition.



I did something like this last month as a proof-of-concept for
authenticating against our Active Directory.  Basically it involves
connecting to AD as a read-only lookup user, retrieving the user's DN,
then


attempting to reconnect to AD as that DN with the user-supplied
password.


If the second connection worked, we return TRUE that they're
authenticated.





Jason Heinrich


Oracle Database Administrator


Pensacola Christian College


(850) 478-8496 x2509


jheinrich_at_pcci.edu




> From: Ray Stell <stellr_at_cns.vt.edu>

> Reply-To: <stellr_at_cns.vt.edu>

> Date: Fri, 26 Aug 2005 10:56:31 -0400

> To: oracle-l <oracle-l_at_freelists.org>

> Subject: ldap authentication

> 

> 

> In this howto:

> 

>



http://www.oracle.com/technology/products/database/htmldb/howtos/how_to_
ldap_a


> uthenticate.html

> 

> there is a link for "software requirements" that goes

> to /dev/null.  Anybody know how this works, is advanced

> security product required?   I don't see how the

> standard shared secret/net8 encryption would work.

> ============================================================

> Ray Stell  stellr_at_vt.edu  (540) 231-4109  Tempus fugit  28^D

> --

> http://www.freelists.org/webpage/oracle-l



--
http://www.freelists.org/webpage/oracle-l
--
http://www.freelists.org/webpage/oracle-l


Received on Fri Aug 26 2005 - 10:22:07 CDT












Original text of this message













  HOME |
  ASK QUESTION |
  ADD INFO |
  SEARCH |
  E-MAIL US