Hi all, Just wanted some idea how to make this to work Server 1 = Certificate Server Server 2 = LDAP server (AD) Realm is configured in a way that the : 1. Primary authentication is the certificate (passport of the user) 2. Secondary authentication is the AD username and password Now what we want to do is that the user will be only prompted for his AD password and that the rest happens automatically. The serial of the user's certificate is in the PO Box field in AD. What we have done so far is : - configured the LDAP server to find user entries POBox=CertAttr.SerialNumber - defined the user[2] field in the authentication realm as
[email protected] Can you give me some ideas? I cannot really find a lot of info about these fields that you can have customized options, in the Juniper Help pages or the KB. Thanks for your replies, Kristof
... View more