Question:

What kind of bind method is being used by JAWS/AAI for LDAP?

Release : 5.8.X, 6.0.X

Component : AUTOMIC AUTOMATION INTELLIGENCE ENGINE

Answer:

AAI is utilizing SIMPLE LDAP Bind and Search mechanisms.

When the LDAP domain is set up by and AAI admin in AAI, a user is provided that must have permission to SEARCH the directory.

When an end-user logs on to AAI using the LDAP domain, a BIND is performed with the SEARCH user to see if the end user is defined to LDAP (to get the end user’s DN). If the user is found in the directory, another SIMPLE BIND is performed with that end user’s DN.

All binds are SIMPLE and do not use the Windows-specific NTLM authentication