Re: LDAP advice needed

Rod,

You need to consult with the people that run your server, and see what attribute they are using that DOES
identify valid users.

We test against our campus LDAP server, too (though not Active Directory). We test on two different fields,
to identify whether the user is a library employee (a certain department number), given access to all
resources including the library intranet, as well as testing against a location field, to identify if
they are main campus, or a branch campus to put them into the right groups within EZProxy so they have access
to the correct resources.

Does anyone know if EZProxy is able to test against two different fields from LDAP?  Such as "location x AND an
active employee" or even more complex - "location x AND (active employee OR registered student"?

John

>>> On 6/15/2012 at 1:17 PM, "Bustos, Rod" <rbustos2 <at> aug.edu> wrote:
> We are looking at moving to LDAP authentication for our EZproxy 
> installation.  Our campus has an LDAP server (using Active Directory) and I 
> am trying to figure out how we can limit access to only currently enrolled 
> students, faculty and staff.  I found a section on limiting access to users 
> who have a specific attribute value in the following documentation:
> 
> http://www.oclc.org/support/documentation/ezproxy/usr/ldap.htm 
> 
> however, this example uses an attribute named eduPersonAffiliation and my 
> campus network contact indicates we are not using this value.

---