Mihamina Rakotomandimby wrote: > What is the common way to check if a user has the good password: > > - Bind with that user DN and if binding is OK: credentials are OK
This is the preferred method. You MUST also check at the client-side whether the password is not a null-length string since most LDAP servers will accept this being an anonymous bind by default! > - Bind with a generic DN and search for username and password and: > - no results: credentials are KO > - result: credentials OK Unusual and might fail in some scenarios. Ciao, Michael. -- Michael Ströder E-Mail: [email protected] http://www.stroeder.com
