The environment
I configured a AD LDS instance and sync it with an existing AD. To help and guide me in this process I followed this tutorials: http://www.thegeekispeak.com/archives/64 http://lab.technet.microsoft.com/en-us/magazine/dd228991
I am using a Windows 2008 R2 Server (the AD and AD LDS are running in the same server). I successfully manage to sync the AD LDS with the AD and at this moment I have all the objects that I want in the AD LDS. All objects are user proxies pointing to their corresponding AD objects.
The problem
I have a tomcat application, more exactly a Bonitasoft installation, to bind to this AD LDS so the users can login to the Bonita User Experience (Portal and process manager) Here is how I did: http://priyankacool10.wordpress.com/2012/07/25/how-to-configure-ldap-with-bonita-user-xp/
With this small adaptation:
BonitaAuth {
com.sun.security.auth.module.LdapLoginModule REQUIRED
userProvider="ldap://10.1.222.254:50000/CN=Users,CN=bonitadir,DC=ZZZ,DC=YYY,DC=XX"
authIdentity="CN={USERNAME},CN=Users,CN=bonitadir,DC=ZZZ,DC=YYY,DC=XX"
useSSL=false
debug=true;
};
BonitaStore {
org.ow2.bonita.identity.auth.LocalStorageLoginModule required;
};It's working but not exactly like I wold expected: The problem is that the user proxy's "CN" is the same as "displayName" that is a normal name like "John Doe" not a expected user name like "jdoe".
Is there a way to sync the AD LDS with AD but make the "CN" at the user's proxy equal to perhaps sAMAccountName?
At this moment i have this:
AD LDS | AD
-----------------------------------
User's Proxy | User
CN = CN
And I want this:
AD LDS | AD
----------------------------------------
User's Proxy | User
CN = sAMAccountNameCan this be done, and how?
If you see a different and easier solution please let me know.
Thanks in advance:)
Best regards.