Live Chat Software by Kayako |
What is LDAP?
Posted by Sean Lee on 23 April 2013 09:44 AM
|
|
What is LDAP? LDAP (Lightweight Directory Access Protocol) is an application protocol for querying and modifying items in directory service providers like Active Directory, which supports a form of LDAP. Short answer: AD is a directory services database, and LDAP is one of the protocols you can use to talk to it. This will enable your users to use their current university username/password to log into TutorTrac, with minimal setup. There are two methods for authenticating a user in TutorTrac using LDAP: Single Bind and Double Bind. Single Bind: The most common use of LDAP is to perform single (simple) binds. A user enters a user name and password in the log-in fields on the Trac login page. The system takes those values and attempts to log into the campus domain. If the user name and password are correct, we will get back a positive response, if not, we'll receive an error. From that information, we will know if the password was correct or not. We then search the local accounts for a user matching the user name provided on the log in form. Once found, they are permitted into the system. Double Bind: Some directory servers do not allow users to bind with just a user name. In those cases, your system performs a “double bind”. The steps for this process are as follows:
For information on setting up LDAP, please see How To: Set Up LDAP | |
|