[prev in list] [next in list] [prev in thread] [next in thread]
List: forgerock-openidm
Subject: [OpenIDM] OpenIDM with ActiveDirectory: ADSI or LDAP
From: sasi.kelam () idamta ! com (Sasi Kelam)
Date: 2012-04-25 17:53:08
Message-ID: 5FE291E3-97DA-427C-93E7-21348E06907F () idamta ! com
[Download RAW message or body]
Yes, I can take it as I have the required setup. Let me review the link and get back \
to you.
Regards,
Sasi
On Apr 25, 2012, at 1:48 PM, Gael Allioux wrote:
> http://alextch.members.winisp.net/ResetADPasswordFromJava/SetADPasswordFromJava.htm
>
> would need some LDAP connector change...
>
> Any volunteer? :-)
>
> Gael
>
>
> On 04/25/2012 07:43 PM, Nick Belaevski wrote:
> > Right, that's what I use. I've tracked down the problem to the place
> > where AD expects UTF-16 string (2 byte chars), while OpenIDM provides
> > UTF-8 (variable-width encoding) string.
> >
> > On 4/25/2012 10:31 AM, Sasi Kelam wrote:
> > > Good. Regarding password reset in AD, if you use LDAP connector you could only \
> > > do password reset only on port 636(SSL).
> > > Regards,
> > > Sasi
> > >
> > > -----Original Message-----
> > > From: Nick Belaevski [mailto:nbelaevski at exadel.com]
> > > Sent: Wednesday, April 25, 2012 1:21 PM
> > > To: Sasi Kelam
> > > Cc: openidm at forgerock.org
> > > Subject: Re: [OpenIDM] OpenIDM with ActiveDirectory: ADSI or LDAP
> > >
> > > Sasi,
> > >
> > > Thanks for sharing your experience!
> > >
> > > Anyway, I was not able to do user password reset via LDAP connector. So I've \
> > > installed Connector Server and now things are fine.
> > > On 4/24/2012 9:58 PM, Sasi Kelam wrote:
> > > > Nick,
> > > >
> > > > > From my past experience with Sun IDM, it was always recommended to use the \
> > > > > connectorServer/Gateway Sever and the main reason was that the \
> > > > > connectorServer/Gateway gives the ability to create home directories and \
> > > > > also provides the flexibility of running the scripts natively on the domain \
> > > > > controller. I am not sure how the Java-COM bridge works but as long as it \
> > > > > can do all the native functions then it should work too. As your know, at \
> > > > > the end this comes down to supportability of the prosed solution by the \
> > > > > product vendor.
> > > > Regards,
> > > > Sasi
> > > >
> > > > ------------------------------
> > > >
> > > > Message: 2
> > > > Date: Fri, 20 Apr 2012 18:53:14 -0700
> > > > From: Nick Belaevski<nbelaevski at exadel.com>
> > > > Subject: [OpenIDM] OpenIDM with ActiveDirectory: ADSI or LDAP
> > > > To: openidm at forgerock.org
> > > > Message-ID:<4F92130A.4070503 at exadel.com>
> > > > Content-Type: text/plain; charset="utf-8"
> > > >
> > > > Hello all,
> > > >
> > > > Can please someone advise on the recommended way of using OpenIDM with \
> > > > ActiveDirectory? I see two options there: LDAP vs ADSI. ADSI requires \
> > > > connector server to be installed and this is something I would like to avoid. \
> > > > Furthermore, Microsoft documentation states that:
> > > >
> > > > > Usually, LDAP provides faster access than ADSI, but LDAP is also more \
> > > > > difficult to code than ADSI. LDAP requires less overhead.
> > > > > LDAP provides access to more functionality than ADSI.
> > > > So I would be interested in finding out pros and cons of using AD via ADSI vs \
> > > > LDAP(S).
> > > > Thanks!
> > > >
> > > > P.S. On the side note, ADSI is exposed as COM objects as well. There are \
> > > > Java-COM bridges that enable Java classes to useCOM objects APIs. In this \
> > > > case, OpenIDM has to be deployed on Windows. Is this another option for ADSI? \
> > > >
> > > > --
> > > > Best regards,
> > > > Nick Belaevski
> > > >
> > > > -------------- next part -------------- An HTML attachment was
> > > > scrubbed...
> > > > URL:
> > > > http://lists.forgerock.org/pipermail/openidm/attachments/20120420/4078
> > > > 08a7/attachment-0001.html
> > > >
> > > > ------------------------------
> > > >
> > > > Message: 3
> > > > Date: Sat, 21 Apr 2012 08:03:25 +0200
> > > > From: Anders Ask?sen<anders.askasen at forgerock.com>
> > > > Subject: Re: [OpenIDM] OpenIDM with ActiveDirectory: ADSI or LDAP
> > > > To: openidm at forgerock.org
> > > > Message-ID:<4F924DAD.6040704 at forgerock.com>
> > > > Content-Type: text/plain; charset="us-ascii"
> > > >
> > > > An HTML attachment was scrubbed...
> > > > URL:
> > > > http://lists.forgerock.org/pipermail/openidm/attachments/20120421/f809
> > > > 6fb1/attachment.html
> > > > -------------- next part -------------- A non-text attachment was
> > > > scrubbed...
> > > > Name: forgerock_logo.png
> > > > Type: image/png
> > > > Size: 7117 bytes
> > > > Desc: not available
> > > > Url :
> > > > http://lists.forgerock.org/pipermail/openidm/attachments/20120421/f809
> > > > 6fb1/attachment.png
> > > >
> > > > ------------------------------
> > > >
> > > > _______________________________________________
> > > > OpenIDM mailing list
> > > > OpenIDM at forgerock.org
> > > > https://lists.forgerock.org/mailman/listinfo/openidm
> > > >
> > > >
> > > > End of OpenIDM Digest, Vol 23, Issue 29
> > > > ***************************************
> > > >
> > > >
> > > >
> > > >
> > > > ------------------------------
> > > >
> > > > Message: 2
> > > > Date: Mon, 23 Apr 2012 16:05:57 +0200
> > > > From: Matthias Tristl<matthias.tristl at forgerock.com>
> > > > Subject: Re: [OpenIDM] Viewing/managing relation aka links through
> > > > REST api?
> > > > To: openidm at forgerock.org
> > > > Message-ID:<evmh66gbdisarfr842nl9trf.1335189957085 at email.android.com>
> > > > Content-Type: text/plain; charset=utf-8
> > > >
> > > > Yes, it is possible, but I need to get the URL. I am currently traveling and \
> > > > will be able to get back to this on Wednesday.
> > > > Matthias
> > > >
> > > > Silvan Marco Fin<Silvan.Fin at uni-siegen.de> wrote:
> > > >
> > > > > Hi!
> > > > >
> > > > > Is it possible to access the link table through the REST api? If this
> > > > > is possible, what URIs are needed?
> > > > >
> > > > > Kind regards,
> > > > > Silvan
> > > > >
> > > > > --
> > > > > Silvan Marco Fin
> > > > > Universit?t Siegen
> > > > > Zentrum f?r Informations- und Medientechnologie (ZIMT)
> > > > > Adolf-Reichwein-Str. 2
> > > > > 57076 Siegen
> > > > > Telefon: +49 271 740-4092
> > > > > E-Mail: Silvan.Fin at uni-siegen.de
> > > > >
> > > > >
> > > > > _______________________________________________
> > > > > OpenIDM mailing list
> > > > > OpenIDM at forgerock.org
> > > > > https://lists.forgerock.org/mailman/listinfo/openidm
> > > > ------------------------------
> > > >
> > > > _______________________________________________
> > > > OpenIDM mailing list
> > > > OpenIDM at forgerock.org
> > > > https://lists.forgerock.org/mailman/listinfo/openidm
> > > >
> > > >
> > > > End of OpenIDM Digest, Vol 23, Issue 31
> > > > ***************************************
> > > >
> > > >
> > > >
> > > --
> > > Best regards,
> > > Nick Belaevski
> > >
> > >
>
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic