New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Be able to configure multiple service accounts for different purposes #18

Open

fredreichbier opened this issue Jun 21, 2017 · 1 comment

Labels

Contributor

fredreichbier commented Jun 21, 2017

Right now, we use the service account specified in [service-account] for two purposes:

If bind-service-account is set to true, a bind request that was authenticated successfully against privacyIDEA will result in a bind request using the service account credentials against the LDAP backend. This makes it possible to perform searches (if allow-searches is also true).
The lookup user mapping strategy uses the service account credentials to look up usernames.

Maybe we should make it possible to use different service account credentials here?

The text was updated successfully, but these errors were encountered:

Member

cornelinux commented Jun 27, 2017

If there are different applications connected to the LDAP proxy, this exspecially seems to make sense...

fredreichbier added the prio:high label

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment