What do people here use for LDAP password managment password, maintain, people, place

amy

What do people generally use to maintain their user ids and passwords in an LDAP environment.

We have a requirement for single on (no problem there, we are using CAS), but want to do things like enforce password validation rules and expiration on the LDAP, as we have other non-Java systems that will not be using CAS, but we want a single place to administer users and passwords.

I've seen commerical products like IBM's Tivoli Access Manager, are there any other (hopefully free) products out there worth looking at ?

I'd be very interested in this too - also switched to CAS but have yet to figure out how to handle expired/locked accounts etc.

If you get a good solution, please post your findings here. I will too if I have any success.


Originally Posted by richardgundersenI'd be very interested in this too - also switched to CAS but have yet to figure out how to handle expired/locked accounts etc.

If you get a good solution, please post your findings here. I will too if I have any success.

Will do, I really don't want to have to write something to do it all, there must be something out there.

At the moment we are using JDBC authentication to passwords encrypted using SHA on a table, the reason for the switch to LDAP makes sense so that non-CAS apps can authenticate against that too.

Perhaps OpenId is an alternative ?