Chapter 17. Using the Pass-through Authentication Plug-in

Chapter 17. Using the Pass-through Authentication Plug-in

17.1. How Directory Server Uses PTA
17.2. PTA Plug-in Syntax
17.3. Configuring the PTA Plug-in
17.3.1. Turning the Plug-in On or Off
17.3.2. Configuring the Servers to Use a Secure Connection
17.3.3. Specifying the Authenticating Directory Server
17.3.4. Specifying the Pass-through Subtree
17.3.5. Configuring the Optional Parameters
17.4. PTA Plug-in Syntax Examples
17.4.1. Specifying One Authenticating Directory Server and One Subtree
17.4.2. Specifying Multiple Authenticating Directory Servers
17.4.3. Specifying One Authenticating Directory Server and Multiple Subtrees
17.4.4. Using Non-Default Parameter Values
17.4.5. Specifying Different Optional Parameters and Subtrees for Different Authenticating Directory Servers

Pass-through authentication (PTA) is a mechanism which allows one Red Hat Directory Server instance to consult another to authenticate bind requests. Pass-through authentication is implement through the PTA Plug-in; when enabled, the plug-in lets a Directory Server instance accept simple bind operations (password-based) for entries not stored in its local database.

Directory Server uses PTA to administer the user and configuration directories on separate instances of Directory Server.


[21] The commands to start and stop the Directory Server on platforms other than Red Hat Enterprise Linux are described in Section 1.3, “Starting and Stopping Servers”.


Note: This documentation is provided {and copyrighted} by Red Hat®, Inc. and is released via the Open Publication License. The copyright holder has added the further requirement that Distribution of substantively modified versions of this document is prohibited without the explicit permission of the copyright holder. The CentOS project redistributes these original works (in their unmodified form) as a reference for CentOS-5 because CentOS-5 is built from publicly available, open source SRPMS. The documentation is unmodified to be compliant with upstream distribution policy. Neither CentOS-5 nor the CentOS Project are in any way affiliated with or sponsored by Red Hat®, Inc.