With this version of Adaptive Server, a new feature enables authentication of user logins by means of a directory service. On other platforms, this directory service is limited to an LDAP server, but on Mac OS X 10.3, Open Directory is used, and Adaptive Server utilizes this authentication service using directory native authentication.
A variety of authentication services are available with Open Directory plug-ins, including Netinfo, LDAP, Active Directory, etc.
There are three configuration values for the Adaptive Server configuration property enable ldap user auth:
0 – do not use a directory service to authenticate logins
1 – use the directory service to authenticate the login, but if the login is not found in the directory service, use Adaptive Server system catalogs to do so.
2 – logins are authenticated by the directory service only, and if they cannot be, the login is denied.
In the case of option 1 and 2, if the login is authenticated by the directory service, and the login is not present in Adaptive Server’s system catalogs, it is created automatically. This will allow any legal system user to login to Adaptive Server, but by default will be assigned no permissions or roles other than those assigned to ‘public’ or ‘guest’.
Open directory
user authentication requires an ASE_DIRS license.
