1 Reply
      Latest reply: Dec 22, 2016 3:21 PM by eskimo RSS
      Ninad_Vartak Level 1 Level 1 (0 points)

        Currently my Mac has been successfully configured to be in Active Directory Domain. (System Preferences -> Users & Groups -> Login Options -> Network Account Server)

         

        We are developing a Mac application that has following requirements:

        1. It should communicate with the LDAP server in Active Directory Domain and retrieve users & their attributes from LDAP server.
        2. While communicating (bind or search) with the LDAP server, we are not allowed to explicitly specify logged-in user's credentials. (e.g. we should not prompt username / password screen to the user)

        If we explicitly specify logged-in user's credentials,

        • we are able to bind to the LDAP server
        • we are able to search the users & their attributes in LDAP server.

        If we do not specify logged-in user's credentials,

        • we are able to bind to the LDAP server,
        • but it does not allow us to search the users & their attributes in LDAP server.

        Is there a way with which we can use logged-in user's credentials implicitly while communicating with the LDAP server?

         

        Can you please guide us how we can query LDAP server (search users & their attributes in LDAP server) without specifying logged-in user's credentials explicitly.

         

        Any kind of help is highly appreciable.

         

        Thanks