|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
RE: Active Directory password external use
From: Michael Scheidell (scheidell
secnap.net)
Date: Wed Aug 31 2005 - 19:31:24 CDT
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
> -----Original Message-----
> From: Rodrigo Blanco [mailto:rodrigo.blanco.rgmail.com]
> Sent: Wednesday, August 31, 2005 2:27 AM
> To: focus-mssecurityfocus.com
> Subject: Active Directory password external use
>
>
> Hello list,
>
> I am currently doing a project that requires using the Active
> Directory users' password for other purposes other than just
> workstation logon or share access.
>
> What I would need to do is detect password change / reset
> events on the domain, capture the new password and send it to
> another application. This could be done with an agent or
> daemon running on the DC machine.
Better idea:
When a user logs on this other resource, just use an smb (or pam_smb?)
library, or maybe use LDAP to pass the username/password back to the AD
server.
That way there is no need to sync passwords, and no need to even store
them on the other servers.
---------------------------------------------------------------------------
---------------------------------------------------------------------------
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]