LDAP Custom Returne...
 
Notifications
Clear all

LDAP Custom Returned Fields

1 Posts
1 Users
0 Reactions
249 Views
(@anomaly0617)
Joined: 9 months ago
Posts: 16
Topic starter  

Hi there,

If we're using External Active Directory LDAP authentication for a certain domain, is there a way to have a different username format and email address format? For instance, our usernames are first_initial+lastname@domain.local, but our email addresses are firstname.lastname@domain.com. Like so:

  • User = jappleseed@domain.local
  • Email = johnny.appleseed@domain.com

When I'm trying to establish LDAP authentication in the external LDAP (Active Directory) screen, If specify my BindDN like this:

  • OU=Mobile,OU=Users,DC=domain,DC=local

... then the user logs in with their email address, and it doesn't match their username, so it fails authentication:

  • login: johnny.appleseed@domain.com != jappleseed@domain.local

... so no authentication occurs.

If I follow what some of the other forum posts suggest and I change the DN to %u@domain.local, ie:

zextras@mail:~$carbonio prov modifyDomain domain.com zimbraAuthLdapBindDn %u@domain.local

 

Then have the user try to log in as "jappleseed", this happens:

  • jappleseed@domain.local != johnny.appleseed@domain.com

 

I even tried getting a little fancier, and tried this as a BindDN:

  • BindDN: OU=Mobile,OU=Users,DC=domain,DC=local
  • Filter: (mail=%n)

... but that didn't work either.

 

I'm sure there's some way to make this work. Anyone able to help?

 

Thanks!

 

This topic was modified 8 months ago by anomaly0617

   
Quote