Mailing List CGatePro@mail.stalker.com Message #92201
From: Thom O'Connor <thom@communigate.com>
Subject: Re: XMPP LDAP authentication
Date: Mon, 13 Aug 2007 14:35:53 -0700
To: <cgatepro@mail.stalker.com>
Thom O'Connor wrote:
>> From:   Jonn R Taylor
>> Sambedi Fahted wrote:
>> Under Users --> Domain Defaults --> Login Methods un-check the CRAM-MD5
>> box. This controls SASL auth for Pronto. You can not use SASL with authLDAP.
>
> Hi folks,
>
> This is not exactly accurate - SASL can be used with external LDAP
> authentication. SASL with an external LDAP server requires that the LDAP
> server be able to either perform the necessary SASL calculations in
> tandem with CommuniGate Pro, or even easier, to simply return the PLAIN
> text password to CommuniGate Pro, and allow CGatePro to perform the SASL
> methods.
>
> This is documented in the Guide in External Authentication:
>   http://www.communigate.com/CommunigatePro/Helpers.html#AUTH
>
> This will allow SIP, XMPP, and Pronto to work using SASL authentication
> methods with an external Directory.
>
> CommuniGate has a newly written authLDAP-SASL Perl plugin to do this,
> which just needs to be tested and the method documented somewhat. We
> hope to do this within the next few days.

As mentioned previously, the following page on the Support Knowledge
Base now contains the instructions and script required to perform one
method of external LDAP SASL authentication:

https://support.communigate.com/tickets/kb_article.php?ref=2272-WTXV-8661

An example is provided there for OpenLDAP configuration.

Please review this and let us know if you have any questions.
 Sincerely,
  -thom
Subscribe (FEED) Subscribe (DIGEST) Subscribe (INDEX) Unsubscribe Mail to Listmaster