APEX

Hello All,

(I am sure you can relate to this) . I have been using the regular LDAP Authentication Scheme in APEX to authenticate against ActiveDirectory for 8 years now, and I have never had any issues.

I had been entering the standard LDAP Container at the ‘LDAP DN String” as
cn=%LDAP_USER%,CN=Users,DC=Company,DC=domain, DC=com

Now all of a sudden, the A.D. Administrators have decided to play God and pull the carpet . They demand that I start authenticate against the BASE DN. I.e. to remove the “CN=Users” and feed the “LDAP DN String” with the Base DN , which is now :

LDAP DN String = cn=%LDAP_USER%, DC=Company,DC=domain, DC=com
( Notice the “CN=Users” have been removed above)

Obviously, now the previous ‘LDAP DN String =cn=%LDAP_USER%,CN=Users,DC=Company,DC=domain, DC=com” does not work anymore.


Their rationale? Having the “LDAP DN String” statically binding to the specific container is “old” and now APEX needs to become “more intelligent” to search for user objects which are sitting in multiple locations\containers, and have APEX search from the BASE DN. Which is why I have been asked to remove the “CN=Users” and … die.

Does anyone already know how to get the APEX Authentication Scheme use the BASE DN ?

BTW, I use Apex 3.2.0.00.27, and Oracle 11GR1.

Thanks in advance. :)